$SOL

Solana Criticized After Patching Bug Behind Closed Doors

The rollout began immediately, and by April 18, more than 70% of validators had upgraded to the new version of the software.

On April 16, a major vulnerability was reported to Anza, a development team within the Solana ecosystem. The issue was buried inside the ZK-ELGamal Proof program, which powers confidential transfers for Token-2022 — a token standard introduced to enable privacy features like hidden balances and amounts.

The bug was serious: if exploited, an attacker could’ve minted unlimited tokens or drained funds from any account using this standard.