Halborn Security Disclosures

Halborn Security Disclosures https://www.halborn.com/disclosures Security advisories, vulnerability disclosures, and security research from Halborn's team of cybersecurity experts. en-us Wed, 13 May 2026 00:10:21 GMT https://www.halborn.com/halborn-logo.png Halborn Disclosures https://www.halborn.com/disclosures Halborn “Rab13s” Vulnerability Discovery In Dogecoin and 280+ Networks https://www.halborn.com/disclosures/rab13s-vulnerability-dogecoin https://www.halborn.com/disclosures/rab13s-vulnerability-dogecoin Mon, 12 Jun 2023 13:44:25 GMT During an audit of the Dogecoin open-source codebase back in March 2022, Halborn researchers — led by Halborn Senior Offensive Security Engineer Hossam Mohamed — identified several critical and exploitable vulnerabilities. The most critical of these — codenamed Rab13s — was discovered to have far-re... Security Disclosure Halborn Discovers Zero-Day Vulnerability in CosmWasm Smart Contracts Across 20+ Blockchains https://www.halborn.com/disclosures/halborn-discovers-zero-day-vulnerability-in-cosmwasm https://www.halborn.com/disclosures/halborn-discovers-zero-day-vulnerability-in-cosmwasm Fri, 03 Mar 2023 17:02:11 GMT Luis Quispe Gonzales, a security researcher at Halborn discovered a zero-day vulnerability arising from the lack of normalization of addresses in Bech32 specification (a format for SegWit addresses) in CosmWasm, which allows an attacker to bypass validity checks or break storage keys under certain c... Security Disclosure Vulnerability Disclosure Policy https://www.halborn.com/disclosures/disclosure-policy https://www.halborn.com/disclosures/disclosure-policy Thu, 02 Mar 2023 18:03:42 GMT Scope of Vulnerability Disclosure PolicyHalborn’s vulnerability disclosure policy primarily addresses the following three situations:Vulnerabilities discovered by Halborn that affect other entitiesVulnerabilities reported to Halborn that affect other entitiesVulnerabilities reported to Halborn that ... Security Disclosure Halborn Cadence (Flow) Vulnerability Discovery https://www.halborn.com/disclosures/halborn-cadence-flow-vulnerability-discovery https://www.halborn.com/disclosures/halborn-cadence-flow-vulnerability-discovery Wed, 15 Feb 2023 15:54:52 GMT IntroductionHalborn security researcher Ferran Celades identified a vulnerability in the Secure Cadence update to Cadence during an audit engagement with Dapper Labs.  This vulnerability affected how the Flow blockchain managed resources.  Halborn has worked with Cadence to deploy an updat... Security Disclosure Halborn MetaMask “Demonic” Vulnerability Discovery https://www.halborn.com/disclosures/demonic-vulnerability https://www.halborn.com/disclosures/demonic-vulnerability Wed, 15 Feb 2023 15:54:32 GMT IntroductionThe Demonic Vulnerability (CVE-2022-32969) was discovered by Halborn and we have worked with MetaMask, Phantom, Brave, xDefi, and others to help the community remediate the issue. This announcement on June 15, 2022 follows a good faith effort to contact all affected teams and assist in m... Security Disclosure