free web page hit counter
New Technique to Deceive Auditors of Smart Contracts is Revealed

New Technique to Deceive Auditors of Smart Contracts is Revealed

Etherum Reddit

Reddit / Etherum Reddit 16 Views

New Technique to Deceive Auditors of Smart Contracts is Revealed

Let's say to encounter the following smart contract, loaded with 10 ETH, can you grab them?

Smart Contract Honeypot

Well, think again!

We (@SkylightCyber) demonstrate how malicious users can deceive auditors of smart contracts by abusing the Right-To-Left-Override Unicode character. By inserting this character at strategic locations within a block of code, a malicious entity is able to change the underlying functionality of the code while misleading a naive reader.

Using RTLO Unicode character to deceive auditors

Read the full article here.

submitted by /u/SkylightCyber
[link] [comments]

Comments