Privacy coin Verge (XVG) suffers the second 51-percent attack in less than two months, resulting in $1.75 mln in lost crypto, Tuesday.
It appears that the attacker used a bug in the Verge code to set false timestamps on blocks and then rapidly mine new ones in quick succession to execute the hard fork, according to data published on BitcoinTalk by forum user “ocminer,” an operator of altcoin mining pool Suprnova.
The hacker gained control of two of the five mining algorithms that Verge uses, ambushing the network into accepting them into the primary chain, sources say.
This attack appears similar to the one experienced by the Verge network less than two months ago, when a miner successfully moved $1.1 mln.
After the first attack, Verge activated an emergency hard fork intended to address the bug, but critics say it did not eliminate the underlying vulnerability.
The Verge development team acknowledged a mining-related issue Monday afternoon attributing it to a DDoS attack directed at several XVG mining pools and has not tweeted since.
Verge’s price has declined seven percent within the past 24 hours.