Sky Mavis plans to become a 'zero-trust organization' after $600 million Ronin hack

Quick Take

  • In a new post-mortem report, Sky Mavis, the creator of Axie Infinity and its Ronin sidechain, said it was evaluating its security on all fronts.
  • The team revealed plans to become a “zero-trust organization” and add more than 100 validator nodes in future.

Sky Mavis, the company behind the play-to-earn game Axie Infinity, said it is looking to become a “zero-trust organization" in the wake of last month's $600 million attack on the Ronin network.

This refers to a security stance in which the team will constantly scan for new threats that may be targeting the game’s creator Sky Mavis, the team said in a new post-mortem report published Wednesday. 

“Our goal is to become a fully antifragile, zero-trust organization. Zero-trust is a framework that assumes that Sky Mavis is always at risk to external and internal threats,” the report said. 

Ronin to have 100 validator nodes

The attackers took control over four of the total nine validators. First, they stole four validator keys controlled by Sky Mavis. Yet another validator — belonging to Axie DAO — was compromised through a "gas-free signature". After this, the hacking group attained a majority control (5/9 validators) and had the ability to make illegitimate fund transfers from Ronin’s bridge on Ethereum.

As revealed in the Wednesday update, Sky Mavis is planning to expand the total validator nodes to 21 in the next three months, and target having more than 100 nodes in the long run to strengthen the sidechain security.

As far as Sky Mavis goes, it raised $150 million from a group of investors, including crypto exchange Binance and VC firms a16z and Paradigm, as part of its efforts to reimburse affected users.

© 2023 The Block. All Rights Reserved. This article is provided for informational purposes only. It is not offered or intended to be used as legal, tax, investment, financial, or other advice.