Back

Critical Litecoin Update Released After Zero-Day Exploit Incident

Severity: High (Score: 74.0)

Sources: U.Today, Cryptonews

Summary

The Litecoin team released Core version 0.21.5.5 on May 7, 2026, addressing a zero-day exploit that allowed a denial-of-service (DoS) attack affecting major mining pools. This vulnerability stemmed from a critical validation bug in the Mimblewimble Extension Block implementation, identified in March 2026. The exploit allowed invalid MWEB transactions to be processed by non-updated mining nodes, leading to a 13-block reorganization that reversed these transactions. Following the incident, the Litecoin Core 0.21.5.4 was released to mitigate the issue. Users are strongly urged to upgrade to the latest version to ensure security and stability. The update includes enhancements to MWEB consensus, node reliability, and various fixes for wallet and mining functionalities. A post-mortem report confirmed that the root bug has now been fixed, and further tests were added to prevent similar issues in the future. Key Points: • Litecoin released Core version 0.21.5.5 to address a critical zero-day exploit. • The exploit allowed a DoS attack, disrupting major mining pools due to invalid transactions. • Users are strongly encouraged to upgrade to the latest version to secure their nodes.

Key Entities

  • DDoS (attack_type)
  • Zero-day Exploit (attack_type)
  • Litecoin (company)
  • Litecoin Core (platform)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed