Wu Says learned that Layer 1 network Qubic, based on a Proof of Useful Work mechanism, has experienced a security incident involving its GitHub organization: a compromised account was used to access the code repository and extract confidential information, and remediation is currently underway. Qubic advises Network Guardian to immediately rotate its seed. Users who unlocked their Web Wallet between 11:00 and 18:00 Beijing time on July 13 should transfer assets to a new identity, and it also reminds developers not to pull or deploy code from Qubic’s code repository before the audit is completed. Qubic says users who did not unlock their wallets in the above period are not directly affected by this attack.

QUBIC-2.61%
View Original
This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.
  • Reward
  • 2
  • 2
  • Share
Comment
Add a comment
Add a comment
ShortPositionsAtTheElevator
· 10h ago
Code repositories can be privilege-escalated too, and the attack surface is larger than expected. It’s recommended that all developers don’t pull code first—wait until the audit is completed. Safety matters—there’s no such thing as small risks.
View OriginalReply0
GateUser-4c2c8c4b
· 11h ago
Brothers who unlocked Web Wallet during that time window on July 13—check it right away. If you didn’t unlock it, you’re temporarily safe. This kind of reminder with such a precise time window shows that the team has logs, and it’s at least a bit of luck in an unfortunate situation.
View OriginalReply0
  • Pinned