Security company SlowMist has announced that Ethereum's Pectra upgrade (EIP-7702) is now officially active. This is a significant step forward, but the new features also bring new risks.
### For users:
Protecting the private key is a top priority. Always be aware that the contract code of the contract address may differ across different Blockchains. Understand the details of the delegated entity before performing any actions.
### For wallet providers:
Check if the delegated chain matches the current network. Remind users of the risks of using delegated signatures with chainID 0, which can be replayed on other chains. Display the target contract when users sign delegation to reduce the risk of phishing attacks.
### For developers:
Ensure to perform access checks when initializing wallets (for example, verify the signature address via ecrecover). Follow the proposed namespace scheme in ERC-7201 to minimize storage conflicts. Do not assume tx.origin is always the owning account. Using msg.sender == tx.origin to prevent reentrancy attacks will no longer be effective. Ensure the target contract is authorized by the user to execute the necessary callback functions to ensure compatibility with mainstream cryptocurrencies.
### For centralized exchanges (CEXs):
Monitor deposits to minimize risks from erroneous deposits originating from smart contracts.
This content is intended to provide market information and does not constitute investment advice.
Source: https://tintucbitcoin.com/rui-ro-moi-tu-chuc-nang-moi-cua-ethereum-canh-bao-slowmist/
Thank you for reading this article!
Please Like, Comment, and Follow TinTucBitcoin to stay updated with the latest news on the cryptocurrency market and not miss any important information!
