In a startling turn of events, researchers have unearthed potential vulnerabilities in the liquid staking module (LSM) of the Cosmos blockchain network, with suspicions pointing to North Korean hackers infiltrating the system through code injections. This revelation has ignited concerns about the security and reliability of Cosmos, especially in safeguarding user funds within its ecosystem.
The Cosmos LSM, previously touted as secure and ready for production, came under scrutiny when it was discovered that the module may contain malicious code. Originating in 2021 under the supervision of Zaki Manian and the Iqlusion project, with financial backing from the Interchain Foundation (ICF), the LSM took a concerning turn in August 2021 with the addition of developers Jun Kai and Sarawut Sanit, allegedly linked to North Korean cyber operations.
Despite an initial code review, the revelation of these developers’ affiliations only surfaced after the FBI notified Manian. This unsettling development has brought into question the safety of users’ stakes within the Cosmos network, prompting researchers to advocate for a comprehensive examination of the codebase to address potential vulnerabilities.
The Cosmos community endured years of concealed vulnerabilities within the LSM, with certain issues such as slashing evasion purportedly resolved, only to find lingering risks within the code. Manian claimed that the original LSM was a mere concept and underwent a complete rewrite, yet concerns persist as significant portions of the code reportedly mirror that of the suspected hackers.
Further exacerbating the situation, significant code updates coincided with the hackers’ involvement, raising suspicions about the integrity of the module. With 19 months passing without an audit since September 2023, despite its integration into the Cosmos Hub, the urgency for a thorough evaluation of the LSM has become increasingly evident.
The implications of these vulnerabilities are grave, as the LSM’s architecture potentially enables malicious activities without incurring slashing penalties. This loophole exposes the ecosystem to exploitation by hackers, necessitating not only a reevaluation of the existing code but also transparent disclosures about associated risks to ensure user security.
Despite these setbacks, the broader Cosmos network appears to weather the storm for other projects and chains, with most of the locked value residing in liquid staking endeavors like Stride and Stafi, posing an estimated risk value of $876,000. While challenges have emerged, notably in the aftermath of Terra’s collapse, Cosmos continues to serve as a foundational layer for DeFi and Web3 applications, hosting tokens exceeding $20 billion in value.
As Cosmos grapples with these vulnerabilities, the network’s resilience endures, supporting various prominent projects like Celestia (TIA) and Injective (INJ) alongside vital AI initiatives. Despite the tumult surrounding the LSM, these side chains remain insulated from the potential risks, fortifying Cosmos against broader ramifications.
The recent spotlight on Cosmos shines a glaring light on the necessity for continuous vigilance and scrutiny in the cryptocurrency realm. As the network navigates the labyrinth of potential vulnerabilities, the imperative of maintaining robust security measures and transparent practices becomes ever more crucial in upholding user trust and ecosystem stability.
With the price of ATOM experiencing fluctuations, currently resting at $4.43, the urgency for enhanced security measures and unwavering transparency reverberates throughout the Cosmos community. Heightened assurances regarding the integrity of the liquid staking module and the network’s overall safety remain paramount for maintaining Cosmos’ standing as a linchpin in the ever-evolving crypto landscape.
Serbian 
English 
Albanian 
Croatian 