Share
Share this article
Copy linkX (Twitter)LinkedInFacebookEmail
Tech
Share
Share this article
Copy linkX (Twitter)LinkedInFacebookEmail
AI tool catches critical XRP Ledger bug that co
Tech
Share
Share this article
Copy linkX (Twitter)LinkedInFacebookEmail
AI tool catches critical XRP Ledger bug that co
AI tool catches critical XRP Ledger bug that could have drained wallets
AI tool catches critical XRP Ledger bug that could have drained wallets
The vulnerability in the Batch amendment's signature validation was found during the voting phase and never reached mainnet, but the exploit path was severe enough that validators were immediately told to vote it down.
By Shaurya Malwa
Feb 27, 2026, 10:32 a.m.
Make us preferred on Google
What to know:
- A critical bug in the XRP Ledger's pending Batch amendment could have allowed attackers to steal funds from any account without accessing private keys, but it was caught before activation.
- The flaw stemmed from a loop error in the batch-signature validation logic that let a malicious batch transaction bypass checks and move a victim's funds.
- Discovered by researcher Pranamya Keshkamat and Cantina AI's Apex tool, the vulnerability prompted validators to reject the amendment, led to an emergency rippled 3.1.1 release, and spurred XRPL Labs to adopt AI-assisted code audits.
An autonomous AI security tool caught a bug in the XRP Ledger that, if left undetected, could have let an attacker steal funds from any account on the network without ever touching the victim's private keys.
The vulnerability, disclosed Thursday by XRPL Labs, sat in the signature-validation logic of the Batch amendment, a pending upgrade that would allow multiple transactions to be bundled and executed together.
The amendment was still in its voting phase among validators and had not been activated on mainnet, meaning no funds were ever at risk. But the exploit path was about as bad as it gets for a blockchain.
Here's what the bug did in plain terms. Batch transactions let users bundle several operations into one. Because the individual transactions inside the batch don't carry their own signatures, the system relies on a list of batch signers to confirm that every account involved has authorized the bundle.
The validation function that checked those signers had a critical loop error. If it encountered a signer whose account didn't yet exist on the ledger, and whose signing key matched their own account — the normal case for a brand-new account — it immediately declared the entire check successful and stopped looking at the rest of the list.
An attacker could exploit this by constructing a batch with three transactions. The first creates a new account the attacker controls. The second is a simple transaction from that new account, making it a required signer. The third is a payment from the victim's account to the attacker.
Because the new account doesn't exist yet when validation runs, the signer check exits early after the first entry and never verifies the second. The victim's funds move without their keys ever being involved.
Pranamya Keshkamat and Cantina AI's autonomous security tool Apex identified the flaw through static analysis of the codebase on Feb. 19 and submitted a responsible disclosure. Ripple's engineering team validated the report the same evening with an independent proof-of-concept.
The response was fast. Validators on the network's Unique Node List were immediately advised to vote "No" on the amendment.
An emergency release, rippled 3.1.1, was published on Feb. 23, marking both the Batch and the related fixBatchInnerSigs amendments as unsupported to prevent them from ever activating. A corrected replacement called BatchV1_1 has been built and is under review, with no release date set.
The fact that an AI tool found this is notable on its own.
XRPL Labs said it would add AI-assisted code audit pipelines as a standard step in its review process going forward, alongside expanded static analysis specifically designed to catch the kind of premature loop exits that caused this bug.
More For You
Vitalik Buterin reveals his bold new plan to fix Ethereum’s scaling problem
The new post reflects Buterin’s renewed focus on scaling Ethereum’s base layer, after several years in which much of the ecosystem’s scaling strategy centered on layer-2 rollups.
What to know:
- Ethereum co-founder Vitalik Buterin has outlined a new scaling roadmap that boosts Ethereum’s near-term capacity while preparing for a longer-term shift to advanced cryptography and data-heavy “blobs.”
- In the short term, upcoming upgrades like "Glamsterdam" and "ePBS" aim to let nodes check blocks more efficiently and use more of each 12-second slot, so Ethereum can safely fit more transactions into each block.
- Longer term, Buterin proposes making permanent data storage more expensive, relying more on zero-knowledge proofs and blobs, to increase throughput without turning Ethereum into a network that only large, well-funded operators can afford to run.
Read full story
Latest Crypto News
Bitcoin slides to $65,000 in weekend sell-off, with solana, XRP, dogecoin down 6%
U.S. Senate Democrats asked Treasury, DOJ to probe Binance's illicit finance controls
Coinbase’s head of litigation says states are 'gaslighting' on prediction markets
Citi and Morgan Stanley expand bitcoin and crypto custody, trading and tokenization efforts
Bitcoin's rebound cancelled as U.S. stocks fall, gold surges, amid mounting macro risks
Vitalik Buterin reveals his bold new plan to fix Ethereum’s scaling problem
Top Stories
Bitcoin ETF holders and treasury firms stack protection against price crash below $60,000, Deribit says
The worst may lie ahead. Bitcoin chart revisits historic pattern.
Barclays looks for tech provider for new blockchain settlement engine: Bloomberg
Punters want crypto: UK Gambling Commission explores how to keep bettors on licensed sites
U.S. regulator's GENIUS pitch casts dark cloud over crypto sector's stablecoin model
Germany's AllUnity issues regulated stablecoin tied to safe haven Swiss franc
Market Opportunity
XRP Price(XRP)
$1.3244
$1.3244$1.3244
USD
XRP (XRP) Live Price Chart
Disclaimer: The articles reposted on this site are sourced from public platforms and are provided for informational purposes only. They do not necessarily reflect the views of MEXC. All rights remain with the original authors. If you believe any content infringes on third-party rights, please contact crypto.news@mexc.com for removal. MEXC makes no guarantees regarding the accuracy, completeness, or timeliness of the content and is not responsible for any actions taken based on the information provided. The content does not constitute financial, legal, or other professional advice, nor should it be considered a recommendation or endorsement by MEXC.
You May Also Like
‘Sick’: MAGA stunned after pollster reveals Trump admin’s move ahead of military operation
Data journalist and pollster Richard Baris claimed on Saturday that ahead of the unprecedented U.S. attack on Iran, the Trump administration had reviewed polling
Share
Rawstory2026/02/28 23:54
WIF Technical Analysis Feb 28
The post WIF Technical Analysis Feb 28 appeared on BitcoinEthereumNews.com. While the 24-hour trading volume in WIF reached 138 million dollars, the increase in
Share
BitcoinEthereumNews2026/03/01 00:04
Why Is Crypto Crashing: Whales Knew the War Was Coming and Sold Days Before You Did, Pepeto Presale Surges as Sui and Pi Network Collapse
They knew. The data proves it. CryptoQuant confirmed that the exchange whale ratio spiked all week as large holders dumped Bitcoin from $70,000 to $65,000 before
Share
Captainaltcoin2026/03/01 00:44