Share this article
Bug Forces Shutdown of Bitcoin-Backed Ethereum Token tBTC
Thesis has put a pause on deposits into tBTC, its new platform meant to get bitcoin into Ethereum's decentralized finance (DeFi) ecosystem.
By Brady Dale
Updated Sep 14, 2021, 8:42 a.m. Published May 18, 2020, 5:05 p.m.
Make us preferred on Google
Blockchain venture studio Thesis has put a pause on deposits into tBTC, its new platform meant to put BTC on Ethereum so BTC can be used in decentralized finance (DeFi).
STORY CONTINUES BELOW
Don't miss another story.Subscribe to the Crypto Daybook Americas Newsletter today. See all newsletters
The Thesis team cited a bug, but is not disclosing details until all funds have been safely withdrawn from this iteration of tBTC. Thesis is now helping early users withdraw any BTC that had been deposited.
The project lead behind the new system, Thesis CEO Matt Luongo, sent the following statement to CoinDesk via a spokesperson:
"While the tBTC dapp was being tested over the weekend in its alpha version, a couple of community members put a few BTC into the contract before testing had concluded. Meanwhile, an issue in the dapp that was missed by our security audit was found by two of our contributors, and we decided to pause deposits for now to ensure the safety of funds. It is thanks to the strength and engagement of our community that this was identified quickly and all funds are safe."
Luongo said the priority now was to further enhance the security of the system before announcing a timeline to re-deploy it. A new audit is being conducted by Trail of Bits; another auditor will also be enlisted and its bug bounty has been increased tenfold.
Luongo first announced that tBTC had been paused at 5:58 UTC on Monday. It had been live for two days. He credited a member of the Thesis team for finding the flaw, and Summa's James Prestwich for verifying it.
Luongo wrote later in the Twitter thread, "Because the system is young and most minters are active community members, I think we can get this done in 1 to 2 days. Though we fixed the issue in code last night, we don't want to expose it until all funds are drained."
Prestwich declined to comment. Luongo wrote on Twitter that a full post-mortem is forthcoming. A Thesis spokesperson told CoinDesk this will likely be released tomorrow.
Thesis has taken down the tBTC dapp to make the smart contract less accessible. As of this writing, Etherscan shows 7 tBTC minted, of a max of 11 BTC.
The security model for tBTC is described in its documentation. It delineates four things Thesis can do with its key to the smart contract. Among those, it can pause new deposits one time for 10 days. This is how Thesis stopped deposits Monday, but the option can only be used once.
That documentation also says, "The first version of tBTC has been built without any ability to upgrade contracts." The Thesis team has not confirmed that it will deploy a whole new smart contract.
More For You
Pudgy Penguins is building a multi-vertical consumer IP platform — combining phygital products, games, NFTs and PENGU to monetize culture at scale.
What to know:
Pudgy Penguins is emerging as one of the strongest NFT-native brands of this cycle, shifting from speculative “digital luxury goods” into a multi-vertical consumer IP platform. Its strategy is to acquire users through mainstream channels first; toys, retail partnerships and viral media, then onboard them into Web3 through games, NFTs and the PENGU token.
The ecosystem now spans phygital products (> $13M retail sales and >1M units sold), games and experiences (Pudgy Party surpassed 500k downloads in two weeks), and a widely distributed token (airdropped to 6M+ wallets). While the market is currently pricing Pudgy at a premium relative to traditional IP peers, sustained success depends on execution across retail expansion, gaming adoption and deeper token utility.
More For You
Tesla made no changes to bitcoin holdings in Q4 as it booked $239 million digital asset loss
The company's bitcoin stack remained at 11,509 coins, worth about $1 billion at BTC's current price near $89,000.
What to know:
- Tesla made no changes in its bitcoin holdings during the fourth quarter, continuing to hold 11,509 coins.
- The company recorded a $239 million after-tax mark-to-market loss on its digital assets due to bitcoin's decline from about $114,000 to $88,000 during the year's final three months.
Top Stories
