A hacker on Friday siphoned more than US$50 million of digital money away from an experimental virtual currency project that had been billed as the most successful crowdfunding venture ever — taking with them not just one-third of the venture’s money, but also the hopes and dreams of thousands of participants who wanted to prove the safety and security of digital currency.
The attack most likely puts an end to the project, known as the Decentralized Autonomous Organization (DAO), which had raised US$160 million in the form of ether, an alternative to the digital currency bitcoin. While the computer scientists involved in the project are aiming to tweak the code that underpins ether in a way that would recover the money, the theft is nevertheless prompting a bigger debate about the viability and principles of virtual currencies like bitcoin and ether.
“This is one of the nightmare scenarios everyone was worried about: Someone exploited a weakness in the code of the DAO to empty out a large sum,” said Emin Gun Sirer, a computer science professor at Cornell University, who co-wrote a paper pointing out problems with the project.
Central banks and financial firms have been exploring how to use the technology underlying virtual currencies — known as blockchain — to improve their own internal systems. The technology is considered to have advantages in terms of transparency and security. Earlier this month, US Federal Reserve Chair Janet Yellen told central bankers at a trade industry conference that they should accelerate their efforts to explore blockchain.
However, the incident on Friday provided another reminder of how the code can be just as vulnerable to human greed and mistakes as paper bills.
The DAO was meant to be a standard-bearer for online currency ventures. It was funded by investors from around the world using ether, which has become popular over the past year. However, just before the project stopped raising money late last month, computer scientists pointed out several vulnerabilities in its underlying code — effectively warning that what happened to the experimental consortium would be possible or even likely.
“The DAO is being attacked,” Griff Green, a community organizer with the company that wrote the project’s software, Slock.it, wrote on a chat channel for the project on Friday morning. “This is not a drill.”
The money the hacker moved appeared to be frozen on Friday as a result of a safeguard previously built into the code. Programmers working on the Ethereum network, which hosts ether, were debating whether to make a one-time change to the code to recover the frozen money. That faced immediate opposition from many virtual currency purists, who were attracted to the technology because of its ostensible freedom from human meddling.
“The strength of blockchain tech is that it is a ledger, a statement of truth,” Bitcoin Foundation board member Bruce Fenton said. “That ledger is only as good as its resistance to censorship, change, demands or attack.”
The hacking underscored the complicated governance structure employed by cryptocurrencies. These currencies are not run by any company or individual, but by the computers of anyone who chooses to support the network.
The DAO was supposed to be a further extension of this concept of group decisionmaking. Thousands of people around the world financed the project by sending in ether. The DAO was supposed to act as a sort of venture capital fund, investing in projects that were voted upon by people who contributed money. The attack took place before any projects had been funded.
It led to chaos on the online message boards where DAO investors and ether users gather.
“How can we help and protect our funds?” one user wrote on the Slack chat channel for DAO investors.
The programmers who wrote the DAO code immediately suggested that investors vote to move their money to another, unrelated project known as Congo Split, primarily to protect their investments.
“The community needs to spam the network so that it can mount a counterattack,” Slock.it employee Stephan Tual wrote on that company’s Web site.
By the time it was over, the hacker had managed to gain control of 3.6 million ether — more than one-third of the 11.5 million that were there at the beginning of the day.
“The DAO’s journey is over,” Tual said in an e-mail.
The founder and lead programmer on the Ethereum project, Vitalik Buterin, said he supported a change to the code that would reclaim the money from the hacker, but he said he recognized that he might not win the argument.
“I recognize that there are very heavy arguments on both sides and that either direction would have seen very heavy opposition,” Buterin wrote on Reddit.
Sirer wrote: “There is no good solution here.”
Among the rows of vibrators, rubber torsos and leather harnesses at a Chinese sex toys exhibition in Shanghai this weekend, the beginnings of an artificial intelligence (AI)-driven shift in the industry quietly pulsed. China manufactures about 70 percent of the world’s sex toys, most of it the “hardware” on display at the fair — whether that be technicolor tentacled dildos or hyper-realistic personalized silicone dolls. Yet smart toys have been rising in popularity for some time. Many major European and US brands already offer tech-enhanced products that can enable long-distance love, monitor well-being and even bring people one step closer to
Malaysia’s leader yesterday announced plans to build a massive semiconductor design park, aiming to boost the Southeast Asian nation’s role in the global chip industry. A prominent player in the semiconductor industry for decades, Malaysia accounts for an estimated 13 percent of global back-end manufacturing, according to German tech giant Bosch. Now it wants to go beyond production and emerge as a chip design powerhouse too, Malaysian Prime Minister Anwar Ibrahim said. “I am pleased to announce the largest IC (integrated circuit) Design Park in Southeast Asia, that will house world-class anchor tenants and collaborate with global companies such as Arm [Holdings PLC],”
Sales in the retail, and food and beverage sectors last month continued to rise, increasing 0.7 percent and 13.6 percent respectively from a year earlier, setting record highs for the month of March, the Ministry of Economic Affairs said yesterday. Sales in the wholesale sector also grew last month by 4.6 annually, mainly due to the business opportunities for emerging applications related to artificial intelligence (AI) and high-performance computing technologies, the ministry said in a report. The ministry forecast that retail, and food and beverage sales this month would retain their growth momentum as the former would benefit from Tomb Sweeping Day
Thousands of parents in Singapore are furious after a Cordlife Group Ltd (康盛人生集團), a major operator of cord blood banks in Asia, irreparably damaged their children’s samples through improper handling, with some now pursuing legal action. The ongoing case, one of the worst to hit the largely untested industry, has renewed concerns over companies marketing themselves to anxious parents with mostly unproven assurances. This has implications across the region, given Cordlife’s operations in Hong Kong, Macau, Indonesia, the Philippines and India. The parents paid for years to have their infants’ cord blood stored, with the understanding that the stem cells they contained