The Litecoin community efficiently reorged out the 13-block invalid chain.
Litecoin skilled a big disruption tied to its MimbleWimble Extension Block (MWEB) privateness layer after a vital validation flaw was found and exploited throughout two separate incidents in March and April 2026, in keeping with a autopsy shared by developer David Burkett.
The difficulty originated from a bug in how MWEB inputs have been validated throughout block connection, which allowed a miner to incorporate malformed metadata that didn’t match the precise unspent transaction output being referenced. This enabled an attacker to assemble a block the place a comparatively small enter appeared to justify a a lot bigger withdrawal, generally known as a pegout, from the MWEB system.
Timeline of MWEB Disaster
Curiously, a sequence scan revealed that the vulnerability had already been exploited in March at block top 3,073,882, the place an attacker generated an inflated pegout of over 85,000 LTC. The funds have been initially moved to a clear handle and break up throughout three outputs, which have been rapidly quickly frozen by miner-enforced consensus guidelines.
Builders privately labored with main mining swimming pools to forestall additional exploitation and launched a sequence of emergency updates to implement stricter validation guidelines whereas preserving community stability. The attacker later cooperated after being contacted and signed a restoration transaction that returned nearly all of the funds, whereas retaining 850 LTC as a negotiated bounty.
That shortfall was lined individually by Litecoin creator Charlie Lee, and the total recovered quantity was pegged again into MWEB. The ensuing output was completely frozen to revive inside stability. No confirmed person funds have been misplaced within the March incident, although the response relied closely on fast miner coordination and managed software program rollouts.
A second incident in April uncovered further issues when one other actor tried to reuse the identical exploit path. Though up to date nodes appropriately rejected the malformed block, the dealing with of mutated MWEB block information brought about sure upgraded mining nodes to stall or change into unable to proceed regular operations. This notably affected block submission processes.
Because of this, unupgraded miners continued extending an invalid chain, which grew to 13 blocks earlier than upgraded individuals coordinated to revive the legitimate chain, which ended up triggering a deep reorganization. This reorg eliminated the invalid blocks, however not earlier than some third-party methods processed transactions from the dangerous chain.
Exterior companies have been impacted, together with swaps carried out via NEAR-related infrastructure and THORChain, the place belongings exchanged on the invalid chain now not existed after the reorg. Losses tied to those transactions are nonetheless being assessed.
Litecoin Core v0.21.5.4
The basis reason for the April problem was linked to how nodes dealt with mutated MWEB information tied to equivalent block hashes, which might intervene with later legitimate block processing. This conduct has since been addressed in Litecoin Core model 0.21.5.4, which makes positive that corrupted block information is discarded to permit correct validation of subsequent blocks.
Builders additionally launched a number of fixes to strengthen MWEB accounting, implement right validation in any respect levels, and stop related denial-of-service or chain-splitting situations sooner or later.
