The Humanity Protocol report reveals an overall project temperament, which I can describe in four words:

Amateurish crew!

This whole situation is completely absurd!

Firstly, after being hacked, the issue of malicious token inflation was not resolved for as long as 12 hours, watching it crash to zero.

Secondly, the source was actually a colleague's computer that got hacked; in addition to the hot wallet, there were multiple owner keys, a total of seven private key backups stored on the same computer.

This is no longer just a problem of a particular employee's poor security awareness; it speaks to the utterly ridiculous internal permission management of the entire protocol!

It's absurd enough to store private key backups during the mainnet launch period on a computer,

absurd enough that outdated permissions a year after launch can still become a single point of failure for the entire project.

What is the purpose of multi-signature security anyway?

It's supposed to ensure that an attacker must breach different people, different devices, and different environments simultaneously.

The most ironic part is that the Humanity Protocol itself is engaged in identity verification, privacy proofs, anti-witch hunt, and Proof of Humanity; how does this series of actions differ from running around naked?

免责声明：本文章仅代表作者个人观点，不代表本平台的立场和观点。本文章仅供信息分享，不构成对任何人的任何投资建议。用户与作者之间的任何争议，与本平台无关。如网页中刊载的文章或图片涉及侵权，请提供相关的权利证明和身份证明发送邮件到support@aicoin.com，本平台相关工作人员将会进行核查。