Connect with us

News

CertiK uncovers major flaw in Worldcoin's operator verification process
Advertisement

News

AI16Z token soars 50% after “nod” from venture firm 

News

US lawmakers demand Treasury action on Tornado Cash

News

Pro-crypto Senator proposes selling gold to buy Bitcoin

News

Users can now swap 3000+ tokens via PancakeSwap Telegram Bot

News

Zero Gravity Labs secures $325M to develop decentralized AI operating system

News

ConsenSys forms Linea Association, a non-profit to decentralized Linea

News

Ronin Network cuts rewards on Katana DEX as part of new V3 upgrade

News

Suspected duo plead guilty in $73M pig butchering cryptocurrency scam

News

PayPal's PYUSD Goes Cross-Chain with LayerZero’s Omnichain Standard

News

Google Cloud becomes a validator on ZetaChain to boost Web3 growth

News

BNB Chain Partners with Google Cloud to Boost Web3 Startups

News

Near's cross-chain AI Assistant to offer memecoin launching & flight booking

News

Bitcoin: A Political Imperative, Not Owning It a Liability — NYDIG

News

CertiK uncovers major flaw in Worldcoin’s operator verification process

Published

1 year ago

on

Worldcoin’s Orb, a crucial component of the controversial World ID ecosystem, recently faced a severe security vulnerability that put the project under scrutiny. 

CertiK, a smart contract auditor, revealed that the operator verification process could have allowed unauthorized individuals to enter the system without a verified ID or even being a legitimate company.

Worldcoin is a project designed to establish the world’s largest identity and financial network as a public utility, ensuring ownership for everyone. 

This is achieved through the World ID system, which serves as a privacy-focused global identity network. World ID allows users to verify their humanness online using “Proof of Personhood” while maintaining their privacy with zero-knowledge proofs.

To participate in the Worldcoin protocol, individuals need to download the World App, the first wallet app supporting the creation of a World ID. 

To get their World ID Orb-verified, users visit a physical imaging device called the Orb, typically operated by independent local businesses known as Orb Operators.

CertiK said that an attacker could exploit the flaw in the Worldcoin protocol to bypass the verification process and operate an Orb without undergoing an interview or presenting proper identification. 

This means that they could gain access to the system without any scrutiny, posing a significant security risk.

CertiK reported that WorldCoin’s Orb operation collects users’  iris information but only allows legitimate businesses to pass  strict verification. A security vulnerability was discovered, and WorldCoin’s team issued a prompt fix.

While Worldcoin has recorded massive registration on its site, the UK, France, and Germany have started investigating the project for privacy breaches. 

Taking it further, the Kenyan government banned its citizens from being part of the project with legal actions leveled against offenders.

Read also; Alibaba Releases Open-Source AI Tools to Rival Meta’s Llama 2

0 0 votes
Article Rating
Related Topics:
Advertisement Earnathon.com
Click to comment
0 0 votes
Article Rating
Subscribe
Notify of
guest

0 Comments
Oldest
Newest Most Voted
Inline Feedbacks
View all comments

Crypto News Update

Latest Episode on Inside Blockchain

Crypto Street

Advertisement



Trending

At Solana's 2024 Breakpoint event, a debate centered on the ideal number of validators for true blockchain decentralization. At Solana's 2024 Breakpoint event, a debate centered on the ideal number of validators for true blockchain decentralization.
FEATURED1 month ago

The validator debate: how many are needed for true blockchain decentralization?

As blockchain technology continue to advance, the role of validators becomes increasingly important in protecting network security and maintaining integrity....
Discover everything you need to know about using the Pancakeswap Telegram Prediction Mini App/Bot and how to maximize its potential. Discover everything you need to know about using the Pancakeswap Telegram Prediction Mini App/Bot and how to maximize its potential.
FEATURED2 months ago

How To Use Pancakeswap Telegram Prediction Mini App/Bot

Telegram Mini Apps have become an integral part of the platform, transforming how users interact within this privacy-focused messaging ecosystem....
Exploring Ston.Fi: An in-depth analysis of TON's largest decentralized exchange, uncovering its features, functionalities, and market impact. Exploring Ston.Fi: An in-depth analysis of TON's largest decentralized exchange, uncovering its features, functionalities, and market impact.
FEATURED3 months ago

Understanding Ston.Fi; A deep dive into TON’s largest DEX

Ston.Fi is a decentralized exchange on The Open Network (TON) blockchain, allowing users to trade digital assets with enhanced security...
Guide to Magic Eden ($ME) Token: history, rebranding from $NFT, airdrop, rewards, milestones, founding team, and $ME Foundation. Guide to Magic Eden ($ME) Token: history, rebranding from $NFT, airdrop, rewards, milestones, founding team, and $ME Foundation.
FEATURED3 months ago

A Comprehensive Guide to the Magic Eden ($ME) Token

Magic Eden has just unveiled its latest innovation: the $ME token, set to become the primary token for its bustling...
How to identify signs of a potential rug pull in memecoins How to identify signs of a potential rug pull in memecoins
FEATURED7 months ago

How to identify signs of a potential rug pull in memecoins

Memecoins, inspired by viral trends and internet jokes, have taken the cryptocurrency world by storm. They offer a chance for...

ALL Sections

Recent Posts

0
Would love your thoughts, please comment.x
()
x