availability

2 articles
sort: new top best
clear filter
bug-bounty252 google211 facebook176 microsoft172 apple125 rce95 exploit88 xss57 defi48 smart-contract47 writeup47 ethereum44 open-source44 access-control42 sqli39 aws37 ai-agents36 docker36 csrf36 web335 account-takeover35 ssrf35 malware34 bragging-post33 cloudflare33 smart-contract-vulnerability33 react32 dos31 cve31 subdomain-takeover27 supply-chain26 idor26 privilege-escalation25 solidity25 wordpress23 browser23 cors23 node22 denial-of-service21 authentication-bypass21 oauth21 automation20 race-condition20 vulnerability-disclosure19 auth-bypass19 tool19 cloud19 machine-learning18 llm17 pentest17
0 8/10
Optimism
vulnerability

A critical censorship vulnerability in Optimism's sequencer rate limiter allowed attackers to censor specific accounts by replaying cross-chain signed transactions without validating chain IDs, affecting approximately 1.3 million accounts including major protocols like LayerZero and Uniswap. The bug exploited the fact that rate limits were incremented before EIP-155 validation, enabling indefinite transaction censorship via trivial transaction spam.

censorship rate-limiting sequencer layer-2 denial-of-service transaction-replay chain-id-validation bug-disclosure optimism eip-155 availability
Optimism Labs Bernard Wagner iosiro CVE-2023-XXXXX proxyd Optimism Mainnet LayerZero Across Synapse Hop Bridge LayerSwap Aave Uniswap EIP-155
iosiro.com · iosiro · 1 hour ago · details
0 5/10
Addressing GitHub's recent availability issues
incident-analysis

GitHub published a detailed postmortem of three major availability incidents (Feb 2, Feb 9, Mar 5) caused by rapid usage growth, architectural coupling in authentication/user management database clusters, insufficient load shedding mechanisms, and latent failover configuration issues. The incidents revealed single points of failure across critical infrastructure including Actions runners and Redis clusters, with mitigation strategies including user cache redesign, infrastructure isolation, and migration to Azure.

infrastructure availability outage database-scaling caching load-shedding failover redis github-actions incident-response architectural-coupling capacity-planning resilience
GitHub Azure Redis GitHub Actions
github.blog · tjwds · 1 day ago · details · hn