ChainCatcher news, according to The Block, Lido Finance core node operator InfStones will temporarily withdraw its Ethereum validators from the liquid staking protocol and implement key rotation in response to a vulnerability discovered by security researchers at dWallet Labs.The vulnerability is related to the open-source library Tailon, which was reported to InfStones in July 2023 and has now been resolved. Nevertheless, this incident led to the implementation of precautionary security measures. Lido Finance confirmed that the vulnerability was related to potential root-level access affecting 25 InfStones validator servers, but there is no evidence that this issue resulted in any key leaks or exploitation.

ChainCatcher news, Lido officials stated that in the past 24 hours, contributors to Lido DAO were informed of a platform vulnerability affecting the active node operator (InfStones) of Lido on Ethereum, which had been exploited at some point over the past few months. This vulnerability was disclosed to InfStones by security researchers dWallet Labs in July 2023. The node operator announced that the vulnerability has been resolved.The vulnerability involved the potential exposure of root-level access to 25 validator servers to external attackers who may not be related to the Lido protocol, which could include critical materials. It is currently unclear whether contributors included servers and/or keys related to Lido validators within the scope of the affected systems.Contributors to Lido DAO have drawn the following conclusions regarding the aforementioned vulnerability: there is no indication that any keys were leaked due to this vulnerability; however, as a precaution, InfStones voluntarily withdrew all validators and rotated to new keys, awaiting DAO voting. All ETH from the withdrawn validators will flow back to the Lido protocol through the withdrawal process and will subsequently be re-staked into available keys in the buffer.

ChainCatcher news, blockchain infrastructure provider InfStones has launched an Ethereum validator service aimed at meeting the market demand following the Ethereum Shanghai upgrade. Users can set up their own validation nodes on the InfStones platform with just one click. Institutional entities can batch process up to 1000 validators with a single click.In addition, InfStones will collaborate with Liquidity Staking Protocols to integrate features that allow users to easily stake below the 32 ETH threshold required by most platforms. (Source link)