HN Reader

Asynchrony is not concurrency (kristoff.it)

100 points by kristoff_it 2h ago 70 comments

Silence Is a Commons by Ivan Illich (1983) (davidtinapple.com)

16 points by entaloneralie 59m ago 0 comments

Multiplatform Matrix Multiplication Kernels (burn.dev)

33 points by homarp 2h ago 3 comments

Trying to send a sticker in Steam Chat burned through a month of mobile data (old.reddit.com)

64 points by danso 2h ago 40 comments

lsr: ls with io_uring (rockorager.dev)

280 points by mpweiher 9h ago 148 comments

Broadcom to discontinue free Bitnami Helm charts (github.com)

42 points by mmoogle 2h ago 15 comments

AI capex is so big that it's affecting economic statistics (paulkedrosky.com)

139 points by throw0101c 2h ago 148 comments

How I keep up with AI progress (blog.nilenso.com)

138 points by itzlambda 3h ago 78 comments

Replication of Quantum Factorisation Records with a VIC-20, an Abacus, and a Dog (eprint.iacr.org)

52 points by teddyh 3h ago 12 comments

Wii U SDBoot1 Exploit “paid the beak” (consolebytes.com)

15 points by sjuut 1h ago 3 comments

Trying Guix: A Nixer's impressions (tazj.in)

120 points by todsacerdoti 3d ago 33 comments

Show HN: I built library management app for those who outgrew spreadsheets (librari.io)

35 points by hmkoyan 2h ago 21 comments

Mango Health (YC W24) Is Hiring (ycombinator.com)

1 points by zachgitt 3h ago 0 comments

Show HN: Molab, a cloud-hosted Marimo notebook workspace (molab.marimo.io)

23 points by akshayka 3h ago 2 comments

The year of peak might and magic (filfre.net)

52 points by cybersoyuz 4h ago 24 comments

CP/M creator Gary Kildall's memoirs released as free download (spectrum.ieee.org)

220 points by rbanffy 11h ago 111 comments

Show HN: Simulating autonomous drone formations (github.com)

6 points by wanderinglight 3d ago 0 comments

Cancer DNA is detectable in blood years before diagnosis (sciencenews.org)

120 points by bookofjoe 3h ago 67 comments

A New Geometry for Einstein's Theory of Relativity (quantamagazine.org)

56 points by jandrewrogers 7h ago 0 comments

Exhausted man defeats AI model in world coding championship (arstechnica.com)

45 points by hassanahmad 1h ago 29 comments

Benben: An audio player for the terminal, written in Common Lisp (chiselapp.com)

34 points by trocado 3d ago 2 comments

Making a StringBuffer in C, and questioning my sanity (briandouglas.ie)

19 points by coneonthefloor 3d ago 3 comments

Third patient dies from acute liver failure caused by a Sarepta gene therapy (biocentury.com)

133 points by randycupertino 3h ago 47 comments

Section 174 is reversed, mostly (newsletter.pragmaticengineer.com)

115 points by jawns 4h ago 58 comments

How to Get Foreign Keys Horribly Wrong (hakibenita.com)

42 points by Bogdanp 3d ago 15 comments

Hundred Rabbits – Low-tech living while sailing the world (100r.co)

205 points by 0xCaponte 4d ago 56 comments

I'm Peter Roberts, immigration attorney who does work for YC and startups. AMA

137 points by proberts 7h ago 234 comments

When root meets immutable: OpenBSD chflags vs. log tampering (rsadowski.de)

124 points by todsacerdoti 13h ago 41 comments

Hush: Holistic Panoramic 3D Scene Understanding Using Spherical Harmonics (vision3d-lab.github.io)

6 points by PaulHoule 1h ago 0 comments

HathiTrust Digital Library (hathitrust.org)

56 points by djoldman 3d ago 17 comments

LibreOffice slams Microsoft for locking in Office users w/ complex file formats (neowin.net)

137 points by bundie 5h ago 94 comments

CoCo1 composite video (leadedsolder.com)

25 points by zdw 3d ago 2 comments

Psilocybin decreases depression and anxiety in cancer patients (2016) (pmc.ncbi.nlm.nih.gov)

243 points by Bluestein 11h ago 232 comments

Dear valued user, You have reached the error page for the error page (imgur.com)

174 points by Alex3917 6h ago 38 comments

15 Years of Building Jefit (jefit.com)

49 points by jasong 3d ago 29 comments

Exposed MCP servers across the internet (knostic.ai)

74 points by gepeto42 8h ago 29 comments

The Art of Roland-Garros (garros.gallery)

55 points by pentagrama 3d ago 5 comments

Row Polymorphic Programming (stranger.systems)

44 points by todsacerdoti 4d ago 26 comments

Ask HN: Any active COBOL devs here? What are you working on?

220 points by _false 9h ago 167 comments

Canadian Cross (en.wikipedia.org)

6 points by tripdout 53m ago 0 comments

Ring reintroduces video sharing with police (theverge.com)

21 points by 01-_- 3h ago 5 comments

Fully homomorphic encryption and the dawn of a private internet (bozmen.io)

404 points by barisozmen 18h ago 184 comments

Inspect ANSI control codes and escape sequences (ansi.tools)

96 points by webpro 3d ago 48 comments

A single shot of a flu drug could outperform vaccines (science.org)

4 points by neehao 1h ago 0 comments

Microsoft Confirms the Closure of Its Underwater Data Center (extremetech.com)

16 points by Bluestein 2h ago 4 comments

TCP-in-UDP Solution (eBPF) (blog.mptcp.dev)

76 points by todsacerdoti 3d ago 19 comments

2025.29: What It Takes to Change the Web (stratechery.com)

4 points by feross 5h ago 0 comments

DIY Telescope Mods That Transformed My Astrophotography (youtube.com)

74 points by karlperera 3d ago 16 comments

Ask HN: GCP Outage?

82 points by grilledchickenw 6h ago 37 comments

Evolution Mail Users Easily Trackable Part 2 (grepular.com)

20 points by zdw 2h ago 3 comments

I just got banned by Immunefi for reporting a real replay attack on LayerZero V2

4 tangou 1 7/18/2025, 4:18:32 PM
I just got banned by Immunefi for reporting a real replay attack on LayerZero V2.

I discovered that lzReceive() allows infinite replays of valid cross-chain messages, due to the lack of guid tracking. This results in repeated token crediting — a critical flaw.

My PoC used real deployed contracts, no forged data. The vulnerability is 100% reproducible.

Instead of investigating, Immunefi rejected my report without a technical rebuttal — and banned me for "complexity poaching".

Full Story: https://medium.com/@tangouvitch/immunefi-banned-me-for-reporting-a-real-replay-attack-in-layerzero-v2-71d5ee0ff102

Do you think this is a valid bug? Was the ban justified? Should Immunefi be held accountable?

Curious to hear what the Ethereum community thinks.

Comments (1)

lompad · 5h ago
Interesting, can this directly be used to make money? Maybe by the employee reading your report?

Edit: Maybe send a report to steve from grc, he loves those kinds of stories.