CertiK: The security vulnerabilities previously reported to Worldcoin have been confirmed to be fixed

ChainCatcher news, blockchain security company CertiK stated on social media that the company reported a security vulnerability to Worldcoin's security team on May 29, which could allow attackers to become Orb operators by bypassing the verification process. Through this security vulnerability, malicious attackers could circumvent the verification and strict participation requirements of the Worldcoin operator acceptance process. This means that it does not need to be a company, nor does it require proper identity verification or acceptance interviews.

Under normal circumstances, only legitimate businesses that have gone through Worldcoin's rigorous identity verification process can operate the Orbs that collect users' iris information. Worldcoin's security team confirmed the security vulnerability and quickly released a fix. CertiK verified and confirmed that the fix has mitigated the threat.