IOTA is vulnerable to replay attacks but has no intention of fixing the flaw

Fledgling blockchain startup IOTA has ran into yet another technical issue. Researcher Joseph Rebstock has detailed a vulnerability in its network which makes users susceptible to replay attacks – a common exploit vector in which valid data is erroneously repeated in order to steal cryptocurrency from users. The issues stems from a function related to IOTA’s choice to use one-time signatures when processing transactions on the Tangle – the company’s self-proclaimed “next-generation” blockchain technology which promises more efficient transactions and scalability. “Reattaching is often required to get a transaction through and bundles can only be safely signed a single time,” the…

This story continues at The Next Web