Virtuals Protocol fixes bug, pledges bounty for researcher’s discovery

An unexpected bug found in an audited smart contract led Virtuals Protocol, a blockchain firm focused on artificial intelligence agents, to issue a timely fix and relaunch its bug bounty program.

On Dec. 3, 2024, pseudonymous security researcher Jinu contacted Virtuals Protocol after discovering a bug in one of its audited contracts. Still, upon reporting the issue, Jinu learned that the company did not have an active bug bounty program, meaning the discovery did not qualify for a reward.

White hat hacker reveals vulnerability
According to Jinu, the Virtuals Protocol team also closed the Discord group created solely to report the vulnerability. In an X thread, Jinu said:

“The vulnerability is simple and can impact the virtuals ecosystem (but virtuals probably doesn’t care about security).”