{"id":20653,"date":"2023-08-04T18:54:36","date_gmt":"2023-08-04T18:54:36","guid":{"rendered":"https:\/\/nftandcrypto-news.com\/crypto\/worldcoins-orb-had-serious-security-vulnerability-in-operator-onboarding-certik\/"},"modified":"2023-08-04T18:54:38","modified_gmt":"2023-08-04T18:54:38","slug":"worldcoins-orb-had-serious-security-vulnerability-in-operator-onboarding-certik","status":"publish","type":"post","link":"https:\/\/nftandcrypto-news.com\/crypto\/worldcoins-orb-had-serious-security-vulnerability-in-operator-onboarding-certik\/","title":{"rendered":"Worldcoin\u2019s Orb had serious security vulnerability in operator onboarding: CertiK"},"content":{"rendered":"
<\/p>\n
The controversial Worldcoin project had a serious security vulnerability, CertiK has disclosed on X (formerly known as Twitter). Worldcoin pays people to become part of its World ID ecosystem by submitting scans of their irises through a device Worldcoin calls an Orb.\u00a0<\/p>\n
According to security platform CertiK, the vulnerability in the vetting process for operators could have allowed an attacker to bypass the verification process and operate an Orb without being interviewed or having a proper ID. \u201cIt would not need to be a company,\u201d according to the post.<\/p>\n
\n1\/ On May 29th, CertiK reported a security vulnerability to #WorldCoin<\/a>\u2019s security team that could potentially allow an attacker to become an Orb operator by bypassing the verification process.<\/p>\n
\u2014 CertiK (@CertiK) August 3, 2023<\/a><\/p><\/blockquote>\n
CertiK reported the vulnerability to the Worldcoin (WLD) security team as a \u201cstandard whitehat disclosure,\u201d and it has been fixed, it said. The discovery of the vulnerability could add fuel to the worldwide controversy surrounding the project\u2019s privacy and data use. <\/p>\n
Related: Users said CertiK\u2019s warning was a false alarm \u2014 then the project rugged<\/em><\/strong><\/p>\n
Critics have already suggested that the project, launched by OpenAI founder Sam Altman and intended to support its World App wallet by filtering out bots, is ethically questionable and contains the makings of a \u201cdystopian nightmare.\u201d The project is not open-source. Regulators have been skeptical as well.<\/p>\n
The project depends on mass adoption for its success. Millions of people around the world have eagerly lined up for the opportunity to sell their retinal data for around $50. Observers have speculated that the project has not gained the support it was hoping for, but its momentum has not diminished. <\/p>\n
\nHERE WE GO FOLKS: Hundreds of youth voluntarily line-up to have their eyeballs scanned with a Worldcoin orb to get their new digital ID with \u201cfree money\u201d Worldcoins in their new digital wallet. This is exactly how #CBDC<\/a> will be rolled out globally\u2026
pic.twitter.com\/whWgxdg7lm<\/a><\/p>\n