LI.FI - The Cross-Chain Insider Newsletter

Share this post

Quix's Optimism NFT Bridge | IBC Critical Vulnerability Patched | Across ACX Airdrop | LayerZero Aptos Integration | Beamer Live on Mainnet & More!

lifi.substack.com

Discover more from LI.FI - The Cross-Chain Insider Newsletter

The Cross-Chain Insider is LI.FI's newsletter about everything cross-chain.
Over 14,000 subscribers
Continue reading
Sign in

Quix's Optimism NFT Bridge | IBC Critical Vulnerability Patched | Across ACX Airdrop | LayerZero Aptos Integration | Beamer Live on Mainnet & More!

Last Week In The Multi-Chain Ecosystem (10-16 Oct 2022)

Arjun Chand
and
kram.eth
Oct 17, 2022
1
Share this post

Quix's Optimism NFT Bridge | IBC Critical Vulnerability Patched | Across ACX Airdrop | LayerZero Aptos Integration | Beamer Live on Mainnet & More!

lifi.substack.com
Share

Welcome to LI.FI’s Cross Chain Insider newsletter. If you want to join this community of cross-chain aficionados learning about bridges, interoperability, and the multi-chain ecosystem, subscribe below:

You can also check out LI.FI’s research articles, and follow us on Twitter!

Bridge Updates

1) Quix Launches Optimism NFT Bridge 🔴

Quix, an NFT marketplace on Optimism, has launched an NFT bridge between Ethereum and Optimism. The bridge allows users to trade Ethereum NFTs on Optimism.

2) Across Launches ACX Token 💸

Across has launched its ACX token. Eligible users can now claim their airdrop. Check your eligibility here.

3) Critical Security Vulnerability Patched on IBC 🛠️

A critical security vulnerability that impacts all IBC-enabled Cosmos chains was discovered on Oct 10. The vulnerability has been patched on all major public IBC-enabled chains.

4) Ren Now Supports Moonbeam 💪🏻

Ren has added support for Moonbeam. Users can now transfer BTC, ETH, and USDC between Moonbeam and other Ren-supported chains.

5) LayerZero Aptos Integration 🤝🏻

LayerZero has announced its complete integration with Aptos. The team has completed audits and will launch on Aptos on Day 1, alongside the Mainnet launch.

6) Beamer is Now Live on Mainnet 👏🏻

Beamer, an optimistic bridge focused on asset transfers between EVM-compatible rollups, is now live on Mainnet. Users can now bridge USDC between Optimism and Boba via Beamer.


Multi-Chain Ecosystem Updates

1) Mango Markets Loses $100M in a Hack ⚠️

Mango, a trading protocol on Solana, was exploited for $100M. The attacker temporarily spiked the value of their collateral on Mango and then took out loans from the treasury.

2) OpenSea Now Supports Avalanche 🔺

OpenSea has integrated Avalanche as part of its multi-chain expansion. For a start, 10 Avalanche-based NFT projects, including Chikn, TapTapKaBoom, Castle Crush, and OpenBlox, will be listed on OpenSea, with more to be added over time.

3) Uniswap Launches New UI and Announces Funding 🚀

Uniswap has launched a revamped interface with ‘more token data, discovery, and search options’ to improve the user experience. The team also announced their $165M Series B funding, led by Polychain Capital.

4) SushiSwap Launches Stable Swaps and Pools 🔥

SushSwap has launched the second 2nd pool type for Trident, the Stable Pool, on Polygon, Optimism, Metis, and Kava. The new implementation of Trident enables trades of like-kind assets (i.e., a “Stable Swap”) with minimal price impact.

5) BSC Cross-Chain Transfers Restored 👏🏻

BSC cross-chain transfers have been restored after the v1.1.16 upgrade and hard fork. Transfers between BNB Beacon Chain and BNB Smart Chain are now functioning normally.


What’s Popping on Twitter?

Last week, the native cross-chain bridge between BNB Chain and BNB Smart Chain, the BSC Token Hub, suffered a $586 million exploit – the third largest in the history of DeFi. The hack put many things into perspective related to bridge security (specifically w/ light clients), but, more importantly, it prevented another multi-billion hack that would’ve wreaked havoc over the entire Cosmos ecosystem and destroyed trust in the bridges forever. How so? Let’s find out 👇🏻

On Oct. 13, Ethan Buchman, co-founder of Inter-Blockchain Communication (IBC), updated the Cosmos community about an important development through a forum post that said:

“We have discovered a critical security vulnerability that impacts all IBC-enabled Cosmos chains, for all versions of IBC. Steps have already been taken to ensure that all major public IBC-enabled chains have been patched.”

Twitter avatar for @iqlusioninc
iqlusion @iqlusioninc
Attention all validators of any IBC-connected chains: IBC Security Advisory Dragonberry has been released following an audit in the aftermath of the recent BSC exploit. All IBC-connected chains need to be patched. A public patch to Cosmos SDK is imminent forum.cosmos.network/t/ibc-security…
Image
3:31 PM ∙ Oct 13, 2022
394Likes139Retweets

How’s this related to the BSC Token Hub hack?

After the BNB bridge hack on Oct. 6, the core developers of Cosmos and Osmosis ramped up security audits for IBC and discovered a critical security vulnerability. This is because there are many overlaps between Binance Bridge (BNB Beacon Chain <> Smart Chain) and IBC:

  1. Forged merkle proofs in light clients — In Binance Bridge’s case, a hacker forged a merkle proof. This should technically not be possible as merkle proofs are highly secure. However, as highlighted by the BNB bridge hack, ensuring the integrity of IBC’s merkle proofs is essential, given that IBC relies heavily on them for its functioning.

  2. The hack was caused due to a vulnerability in a core Cosmos repo — Binance is one of the most significant users of Cosmos’ software. It built on top of Cosmos’ repo and thus inherited the vulnerability, which was eventually exploited during the hack. IBC only managed to avoid a hack as its newest implementation (IBC-GO) uses a different library (from the one used by Binance) for proof verification.

To summarize, if Binance's light clients can be hacked, IBC could’ve been exploited too. IBC is one of the more secure bridge implementations, but we cannot take security for granted and thus need to constantly perform checks and audits. Thanks to the alertness and quick execution of Comsos' dev, such a mishap has been avoided for the time being.

Bridges already account for five of the six largest hacks in DeFi history, resulting in over $2B in lost funds. It’s in everyone’s interest to contribute to bridge security, especially for key infrastructure pieces like IBC that connect multiple billion-dollar ecosystems.


Interesting Reads

1) slAMM: A Unified Model for Cross-Chain Liquidity

Twitter avatar for @delphi_labs
Delphi Labs @delphi_labs
Introducing slAMM: A Unified Model for Cross-Chain Liquidity Whitepaper unleashed ➡️
members.delphidigital.ioDelphi DigitalDelphi Digital Members Portal
3:44 PM ∙ Oct 10, 2022
466Likes125Retweets

2) LayerZero — A Deep Dive

Twitter avatar for @lifiprotocol
LI.FI - Powers any cross-chain strategy 🦎 @lifiprotocol
🌟 AMB #2 in our deep dive series: @LayerZero_Labs 🦎 • Lightweight clients • Oracle & Relayer combo • Risk Sharding • Pre-crime Learn more about L0's simple and effective design - how transactions flow through L0, its pros/cons, and trade-offs 👇 blog.li.fi/layerzero-a-de…
blog.li.fiLayerZero — A Deep DiveDesign, security, and trust assumptions of LayerZero, an arbitrary messaging bridge
12:44 PM ∙ Oct 12, 2022
34Likes8Retweets

3) Cross-Chain Bridging – Current Risks & Future Development

Twitter avatar for @TheTieIO
The Tie @TheTieIO
BRIDGE RISK: There are 180 currencies. Each country has a legal tender, and each economy settles its economic activities in its native currency. Just as in traditional currencies, economic activity across chains necessitates an efficient and reliable system, with different risks
Image
2:18 PM ∙ Oct 14, 2022
20Likes12Retweets

4) Introducing Hyperlane and sovereign consensus

Twitter avatar for @nosleepjon
NoSleepJon 💤⏩ @nosleepjon
All the recent bridge hacks are exposing how centralized most bridge security is, and how little control you have over your risk. But what if you could customize your interchain security? What if you could control your risk? Introducing @Hyperlane_xyz and Sovereign Consensus ⏬
7:26 PM ∙ Oct 13, 2022
106Likes31Retweets

You can also check out:

  • Why Liquidity Aggregation should be a public good

  • Beyond IBC

  • Crosschain Security Considerations

  • Battle of the Bridges: Untangling the Tradeoffs of Various Bridge Designs

  • LI.FI x Axelar Twitter Spaces


Thanks for reading LI.FI - The Cross-Chain Insider Newsletter! Subscribe for free to receive new posts and support my work.

Get Started with LI.FI Today

To learn more about us,

  • Head to our link portal at links.li.fi

  • Read our SDK ‘quick start’ at docs.li.fi

  • Join the official Discord server

  • Follow our Telegram Newsletter

  • Follow us on Twitter & LinkedIn

or try our any-2-any swaps NOW at transferto.xyz

1
Share this post

Quix's Optimism NFT Bridge | IBC Critical Vulnerability Patched | Across ACX Airdrop | LayerZero Aptos Integration | Beamer Live on Mainnet & More!

lifi.substack.com
Share
Comments
Top
New
Community

No posts

Ready for more?

© 2023 LI.FI
Privacy ∙ Terms ∙ Collection notice
Start WritingGet the app
Substack is the home for great writing