The decentralized AI network Bittensor recently experienced a significant security breach on July 2, resulting in the theft of $8 million worth of TAO tokens. The OpenTensor Foundation (OTF), the organization behind Bittensor, promptly responded to the breach and conducted a thorough investigation. The postmortem report revealed that a malicious package in the PyPi Package Manager was the root cause of the breach. The compromised package masqueraded as a legitimate Bittensor library but contained code designed to steal unencrypted cold key details, leading to the theft of funds.
In response to the security breach, OTF took immediate action by placing Opentensor Chain Validators behind a firewall and entering safe mode on Subtensor to prevent further damage. The attack began at 7:06 P.M. UTC, with the attacker transferring funds from compromised wallets to their own. By 7:25 P.M., abnormal transfer volumes were detected, prompting OTF to initiate a “war room” to address the issue. Validators were subsequently placed behind a firewall by 7:41 P.M., and the network entered safe mode to halt all transactions for a detailed analysis.
The breach specifically affected users who downloaded the PyPi Package Manager version 6.12.2 between May 22 and May 29 and performed certain operations such as staking, wallet transfers, or delegation. OTF quickly removed the malicious package from the PyPi Package Manager repository and conducted a thorough review of the Subtensor and Bittensor code on GitHub to identify any other vulnerabilities. The team continues to assess the code base and collaborate with exchanges to trace the attacker and potentially recover stolen funds.
Despite the security breach leading to a 15% decline in TAO’s price, some validators reported that their delegators’ funds remained secure. The Bittensor community has actively supported mitigation efforts, with many participants working alongside OTF to address the issue. In a statement, OTF co-founder Ala Shaabana assured the community that the attack had been contained, and the underlying Bittensor protocol remains secure. OTF has also announced plans to implement enhanced security measures to prevent future exploits and will provide regular updates to the community.
In the aftermath of the security breach, Bittensor has emphasized the importance of upgrading to the latest version to ensure heightened security. OTF is also collaborating with PyPi maintainers to investigate the breach and prevent similar incidents in the future. The community can expect another comprehensive update within 24 hours, along with a Q&A session to address any questions or concerns. By implementing enhanced security measures and maintaining transparency with the community, Bittensor aims to prevent future security breaches and ensure the safety of its users’ funds.
