Ethereum may be the second most-favorite among blockchain users but research has uncovered serious security vulnerabilities found across the platform. As per a blog published by Security Research Labs, vulnerabilities in the Ethereum ecosystem were mainly due to unpatched nodes in the network. These nodes were of popular clients such as Parity-Ethereum and Geth.
Missing ‘Patch Hygiene’
Security Research Labs suggested that most Ethereum users did not regularly patch their client software.
“The lack of patch hygiene among Ethereum users suggests that more serious vulnerabilities might also survive for days, weeks, or months among a significant number of Ethereum users, putting their own security and the integrity of the Ethereum ecosystem at risk. The consequences of the patch gap would be most severe if a remote code execution were found in a popular client software.” indicated the blog.
Unpatched Ethereum clients can be exploited by attackers in great numbers to carry out 51 percent attacks, where they can abuse computational power to conduct illicit double-spending. Therefore, blockchain users are advised to patch their software clients as soon as critical updates are available.