4/ HOW IT STARTED
I am traveling. Outside the country.
Yesterday evening. It's 1am.
Reach the hotel, go through some updates, ready for bed.
Conversation
5/ It's 2am. Still ready for bed, and I receive a team call.
Suspicious activity detected on the Maiar DEX.
Interesting. Especially the timing.
3
84
1,120
6/ So, we rapidly gather 3-5 key team members in a call to investigate.
Lucian and the team are here, and as we observe that there is clear evidence of things not working as intended, we weigh the necessity of initiating emergency protocol.
6
92
1,157
7/ INITIATE EMERGENCY PROTOCOL
Next 30-60 min we wake up more of the team, to begin a closer investigation on the issue during the night.
The Maiar DEX behavior was technically problematic.
Sufficiently problematic to necessitate immediate temporary pause for safety reasons.
6
86
1,159
8/ DISCOVERIES
So what did we discover?
A bug. Potentially critical.
Opening an exploit area that we simply had to address and mitigate immediately.
Not addressing this bug in a swift manner, could lead to some unexpected consequences.
4
92
1,154
9/ ORDER OF PRIORITIES
So what's the order of priorities in an emergency situation?
For us, it's this:
a. understand the problem, limit damage as fast a possible, and ensure safety
b. define a solution and recovery plan
3
90
1,142
10/ c. execute solution and recovery plan; prepare to resume activities once problem is solved and plan is properly executed
4
88
1,089
11/ WHAT NEXT ?
So what's the status now?
a) A bug was discovered and exploited.
But damage is stopped now, and funds safety is ensured.
This has been our primary focus.
3
100
1,176
12/ RECOVERY & RESUME
b) A recovery plan means deep analysis on the bug, its implications and potential solution.
After an all nighter investigation with the team, this morning a new emergency mainnet upgrade was proposed and adopted.
This improved security and solved the bug.
1
91
1,164
13/ Another mainnet upgrade was just proposed and adopted with the validator community 3 hours ago.
Further increasing security, and preparing the Elrond network for a more robust execution environment.
3
92
1,206
14/ A further step of recovery ensures verification checks of all balances on the Maiar DEX & Bridge.
Most exploited funds have been either recovered in full, or will be covered by the Elrond Foundation
This means funds are safe, & all funds will be available in full at restart
15/ QUESTIONS, SCHEDULE, NEXT STEPS
Q 1: So what's the resume schedule for the Maiar DEX?
Depending on how testing goes, our aim is tomorrow.
New upgrades will be validated and tested in the first half of the day, so that in the evening we should be ready for the DEX restart.
6
102
1,259
16/ Q 2: So how will you handle EGLD arbitration at the start?
Our solution for the DEX restart setup will ensure that EGLD price enters a "safe mode resync" until its price is matching the Binance EGLD price.
Only after this sync is done, will swaps be open to the public.
6
103
1,225
17/ Q 3: Where is the technical problem description and solution dexcription?
For security reasons, a full technical explanation will follow as soon as all solutions are implemented and functioning properly.
2
91
1,218
18/ CONCLUSION
Today was hard, but there are better days ahead.
During tough times, a few things matter most.
Team effort. Community effort.
Timely response. Lucid evaluation. Focused effort.
24
149
1,819
19/ The upgrade and recovery plans are ready.
Whatever comes, Elrond will move forward.
The night is almost done. A new day begins.
128
265
2,609
pass something we can do to help them! put a function for us, help from the community is welcome, we're here for whatever you need, just talk ๐ฃ
1
3
