{"id":62890,"date":"2023-10-27T07:39:19","date_gmt":"2023-10-27T11:39:19","guid":{"rendered":"https:\/\/coinscreed.com\/staging\/?p=62890"},"modified":"2023-10-27T07:39:22","modified_gmt":"2023-10-27T11:39:22","slug":"fireblocks-assists-unipass-wallet-tackle-account-abstraction-vulnerability","status":"publish","type":"post","link":"https:\/\/coinscreed.com\/staging\/fireblocks-assists-unipass-wallet-tackle-account-abstraction-vulnerability\/","title":{"rendered":"Fireblocks Assists UniPass Wallet Tackle Account Abstraction Vulnerability"},"content":{"rendered":"\n<p>Fireblocks, a company specializing in <a href=\"https:\/\/coinscreed.com\/staging\/the-role-of-nodes-and-validators-in-web3-infrastructure.html\" target=\"_blank\" rel=\"noreferrer noopener\">cryptocurrency infrastructure<\/a>, has identified and assisted UniPass Wallet in addressing an  ERC-4337 account abstraction vulnerability issue.<\/p>\n\n\n\n<figure class=\"wp-block-image aligncenter size-full\"><img fetchpriority=\"high\" decoding=\"async\" width=\"1008\" height=\"435\" src=\"https:\/\/coinscreed.com\/staging\/wp-content\/uploads\/2023\/10\/image-101.png\" alt=\"Fireblocks Assists UniPass Wallet Tackle Account Abstraction Vulnerability\" class=\"wp-image-62895\" srcset=\"https:\/\/coinscreed.com\/staging\/wp-content\/uploads\/2023\/10\/image-101.png 1008w, https:\/\/coinscreed.com\/staging\/wp-content\/uploads\/2023\/10\/image-101-300x129.png 300w, https:\/\/coinscreed.com\/staging\/wp-content\/uploads\/2023\/10\/image-101-768x331.png 768w, https:\/\/coinscreed.com\/staging\/wp-content\/uploads\/2023\/10\/image-101-18x8.png 18w, https:\/\/coinscreed.com\/staging\/wp-content\/uploads\/2023\/10\/image-101-750x324.png 750w\" sizes=\"(max-width: 1008px) 100vw, 1008px\" \/><figcaption class=\"wp-element-caption\">Fireblocks Assists UniPass Wallet Tackle Account Abstraction Vulnerability<\/figcaption><\/figure>\n\n\n\n<p>An October 26 announcement revealed an ERC-4337 account abstraction vulnerability in the UniPass <a href=\"https:\/\/coinscreed.com\/staging\/fantom-foundation-loses-550k-via-hot-wallet-attack.html\" target=\"_blank\" rel=\"noreferrer noopener\">smart contract wallet<\/a>. The vulnerability was reportedly discovered in hundreds of mainnet wallets during a white-hat hacking operation. The two companies collaborated to resolve the flaw.<\/p>\n\n\n\n<p>According to Fireblocks, the vulnerability would permit an attacker to acquire complete control of the UniPass Wallet by manipulating Ethereum's account abstraction process.<\/p>\n\n\n\n<p>According to Ethereum's developer documentation on ERC-4337, account abstraction enables a shift in how the blockchain processes transactions and smart contracts, allowing for greater flexibility and efficiency.<\/p>\n\n\n\n<p>Transactions on Ethereum typically involve two account types: <a href=\"https:\/\/metatime.com\/en\/blog\/what-are-externally-owned-accounts-eao\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">externally owned accounts <span class=\"wpil-link-icon\" title=\"Link goes to external site.\" style=\"margin: 0 0 0 5px;\"><svg width=\"24\" height=\"24\" style=\"height:16px; width:16px; fill:#000000; stroke:#000000; display:inline-block;\" viewBox=\"0 0 24 24\" version=\"1.1\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" xmlns:svg=\"http:\/\/www.w3.org\/2000\/svg\"><g id=\"wpil-svg-outbound-7-icon-path\" fill=\"none\" clip-path=\"url(#clip0_31_188)\">\r\n                            <path d=\"M9.16724 14.8891L20.1672 3.88908\" stroke-linecap=\"round\"\/>\r\n                            <path d=\"M13.4497 3.53554L20.5208 3.53554L20.5208 10.6066\" stroke-linecap=\"round\" stroke-linejoin=\"round\"\/>\r\n                            <path d=\"M17.5 13.5L17.5 16.26C17.5 17.4179 17.5 17.9968 17.2675 18.4359C17.0799 18.7902 16.7902 19.0799 16.4359 19.2675C15.9968 19.5 15.4179 19.5 14.26 19.5L7.74 19.5C6.58213 19.5 6.0032 19.5 5.56414 19.2675C5.20983 19.0799 4.92007 18.7902 4.73247 18.4359C4.5 17.9968 4.5 17.4179 4.5 16.26L4.5 9.74C4.5 8.58213 4.5 8.0032 4.73247 7.56414C4.92007 7.20983 5.20982 6.92007 5.56414 6.73247C6.0032 6.5 6.58213 6.5 7.74 6.5L11 6.5\" stroke-linecap=\"round\"\/>\r\n                        <\/g>\r\n                        <defs>\r\n                            <clipPath id=\"clip0_31_188\">\r\n                                <rect fill=\"white\" height=\"24\" width=\"24\"\/>\r\n                            <\/clipPath>\r\n                        <\/defs><\/svg><\/span><\/a>(EOAs) and contract accounts. EOAs are governed by private keys and can initiate trades, whereas the smart contract's code governs contract accounts. When an EOA transmits a transaction to a contract account, it executes the contract.<\/p>\n\n\n\n<p>Account abstraction introduces the concept of a meta-transaction or abstracted accounts with a broader scope. Removed accounts, like EOAs, are not associated with a particular private key and can initiate transactions and interact with smart contracts.<\/p>\n\n\n\n<p>As explained by Fireblocks, when an ERC-4337-compliant account executes an action, it relies on the Entrypoint contract to guarantee that only signed transactions are carried out. Before conducting a command, these accounts typically rely on a single audited EntryPoint contract to ensure they have permission from the account:<\/p>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p><em>\u201cIt\u2019s important to note that a malicious or buggy entrypoint could, in theory, skip the call to \u201cvalidateUserOp\u201d and just call the execution function directly, as the only restriction it has is that it\u2019s called from the trusted EntryPoint.\u201d<\/em><\/p>\n<\/blockquote>\n\n\n\n<p>According to Fireblocks, the flaw allowed an attacker to take control of UniPass wallets by substituting the trusted EntryPoint. After completing the account takeover, an attacker could access the wallet and deplete its funds.<\/p>\n\n\n\n<p>Several hundred users whose wallets had the ERC-4337 module enabled were susceptible to the attack, which could be carried out by any actor on the blockchain. The wallets in question contained only modest sums of money, and the problem was resolved early.<\/p>\n\n\n\n<p>After determining that the vulnerability was exploitable, the research team at Fireblocks was able to conduct a white-hat operation to patch the extant vulnerabilities. This required the true exploitation of the vulnerability:<\/p>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p><em>\u201cWe shared this idea with the UniPass team, who took it upon themselves to implement and run the whitehat operation.\u201d<\/em><\/p>\n<\/blockquote>\n\n\n\n<p>Vitalik Buterin, co-founder of Ethereum, has previously enumerated obstacles to accelerating the spread of account abstraction functionality, including the need for an <a href=\"https:\/\/coinscreed.com\/staging\/the-ethereum-gas-fee-debate-challenges-and-solutions.html\" target=\"_blank\" rel=\"noreferrer noopener\">Ethereum Improvement Proposal<\/a> (EIP) to transform EOAs into smart contracts and ensure that the protocol is compatible with layer-2 solutions.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Fireblocks, a company specializing in cryptocurrency infrastructure, has identified and assisted UniPass Wallet in addressing an ERC-4337 account abstraction vulnerability issue. An October 26 announcement revealed an ERC-4337 account abstraction vulnerability in the UniPass smart contract wallet. The vulnerability was reportedly discovered in hundreds of mainnet wallets during a white-hat hacking operation. The two companies [&hellip;]<\/p>\n","protected":false},"author":12,"featured_media":62895,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[21],"tags":[16963,13644,753,16964],"class_list":["post-62890","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news","tag-account-abstraction-vulnerability","tag-erc-4337","tag-fireblocks","tag-unipass-wallet"],"jetpack_featured_media_url":"https:\/\/coinscreed.com\/staging\/wp-content\/uploads\/2023\/10\/image-101.png","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/posts\/62890","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/users\/12"}],"replies":[{"embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/comments?post=62890"}],"version-history":[{"count":0,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/posts\/62890\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/media\/62895"}],"wp:attachment":[{"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/media?parent=62890"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/categories?post=62890"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/tags?post=62890"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}