π¨ LND exploit in the wild π¨
If you are running LND older than 0.18.5 and/or LITD older than 0.14.1, upgrade immediately. Apparently, affected Lightning nodes can be completely drained by attackers.
Lightning Labs has not issued a clarification yet.
I guess they were to busy bringing shitcoins to lightning (taproot assets) instead of improving security or searching for potential bugs
Thanks, I did update my Umbrel.
LND version 0.18.5 is currently not available in the Umbrel App Store, do you use a different store or did you upgrade using the terminal?
I think the app devs are responsible for their own updates on Start9 arenβt they?
Update complete. Thanks.
The bug was in litd, you will not be affected if you are not running litd. And afaik there are no confirmed reports of the bug actually being exploited successfully.
This is semi-fud circulating without being verified!
TLDR upgrade Lightning Terminal to 0.14.1 if you run it.
Bitcoin ossification bad
Ffs 0.18.5 is still in beta π
We're still in the reckless phase apparently π
Clarification from Lightning Labs on X:
