The Haveno team has recently found a vulnerability in Bisq that **would have allowed malicious actors to harvest user’s payment information like Bank accounts, names and potentially home addresses at no cost**.
**The problem was found by our own Woodser (Core Team) while working on Haveno’s protocol** (part of which we inherit from Bisq). We immediately contacted Bisq and gave them all the info and support to fix the vulnerability.
We are relieved that they came to realize the severity of the situation and rolled out a dedicated security patch.
We cannot be sure if the vulnerability was exploited or not, but **it’s improbable that it was exploited in large scale**, as Bisq would have probably noticed an increase of support tickets opened because of failing trades.
Forks, not knives.
Haveno’s statement (Twitter):https://twitter.com/HavenoDEX/status/1412782658887766016
Bisq’s statement (Twitter): https://twitter.com/bisq_network/status/1412536933910147072
Info about Haveno: