Crypto security researcher al_f4lc0n has accused the blockchain project Injective of slow communication in handling a critical security vulnerability and disputes over the bug bounty amount. The vulnerability originates from a defect in the sub-account verification mechanism, threatening over $500 million in assets. al_f4lc0n failed to receive the deserved bounty, raising questions about Injective's security governance.

Gate News, on March 17, Sui Developers released a tweet stating that Sui's new virtual machine has been launched for testing, and a bug bounty program has been simultaneously opened. According to the introduction, the new virtual machine launched this time includes three core technology upgrades: a complete rewrite of the execution engine, faster caching mechanisms, and a next-generation Move language upgrade.

White hat hacker f4lc0n discovered a serious vulnerability in the Injective protocol that could have led to the theft of $500 million in assets. Although the fix was rewarded with only a $50,000 bounty, which is below the maximum standard of $500,000, f4lc0n disputes this and plans to continue exposing the issue.

Gate News Announcement: On March 10th, Ethereum Foundation Security Researcher Fredrik tweeted that the Ethereum Foundation's bug bounty program's maximum reward has been increased from $250,000 to $1,000,000. The scope includes protocol bugs, client bugs, language compiler bugs, deposit contract bugs, and dependency errors. Infrastructure vulnerabilities (such as web, DNS, email, etc.), ERC-20 contract bugs, Ethereum Name Service (ENS) vulnerabilities, and others are not covered by this bounty program.

Solv Protocol announced a vulnerability in its single BRO Vault, affecting fewer than 10 users with a loss of approximately $2.7 million in SolvBTC. Other funds are secure, and preventive measures have been taken. The official team has contacted the hacker and will offer a 10% white-hat bounty in exchange for the return of the funds.

Aave Labs proposes to launch the Aave V4 bug bounty program on the Sherlock platform, aiming to establish a security reporting channel with tiered handling to prioritize high-risk vulnerabilities and improve processing efficiency. Sherlock has previously collaborated with Aave on security work.

A cryptocurrency holder reported being attacked on social media, losing approximately $24 million worth of crypto assets. The attacker used violence to threaten and force the transfer of funds. The incident has garnered widespread attention, and blockchain security companies are tracking the stolen funds. This event highlights the rising risk of physical attacks in the crypto space.

Odaily Planet Daily reports that cross-chain smart contract platform Neutron announced on X that a white-hat hacker discovered a vulnerability through its bug bounty program. A fix is currently being developed, and the order book and super vault (deposits, withdrawals, etc.) functions have been suspended. They expect to relaunch on March 9. Neutron added that the platform's funds are currently secure and unaffected, and users do not need to take any further action.