Bitcoin developer anticipated 10 years ago the vulnerability of the XRP network

On April 21, 2025, the Cybersecurity firm Aikido Security detected a critical vulnerability in the NPM package, a library for application developers of the network created by Ripple, XRP LEDger (XRPL).

This failure, reported by cryptootics, would allow attackers to access private keys, exposes a structural weakness that, surprisingly, already had been warned a decade ago By Peter Todd, a recognized Bitcoin software developer.

In May 2015, Todd analyzed the risks of the XRPL network and pointed out that the probability of such an attack was “high”, a prognosis that is confirmed today.

An early warning ignored

Todd, known for his work at Bitcoin Core and projects such as Opentimemps, described that An attacker could insert a back doorknown in English as Backdoorin widely used implementations of the Ripple software, such as the server ‘rippled node software’.

This attack could be executed by both an internal member of Ripple Labs and an external one that compromised the source or binary code hosted on platforms such as Github. According to Todd, The economic cost of this attack was void And its scope was broad, with a potential duration of weeks and a high probability of success.

A rear door is a hidden mechanism in software that allows a Atacker access sensitive dataas private keys, which in the case of cryptocurrencies control user funds. The XRPL NPM package, where recent failure was detected, is a library that developers use to create applications on this network, which amplifies the impact of vulnerability.

Risk factors indicated by Todd

In his 2015 analysis, Todd identified two structural weaknesses in the Software Management of Ripple Labs. First, he pointed out that the entire network code was open source, which, although it encourages transparency, also facilitates that malicious third parties study and exploit it.

In addition, Ripple Labs depended on Github, a collaborative development platform, to host its code. Although Github is reliable, Todd warned that Trust a third for software distribution introduces risksespecially if cryptographic signatures are not implemented to verify the authenticity of the code as PGP (acronym in English of “quite good privacy”), a software and a standard of encryption to protect the confidentiality and authenticity of digital data.

Ultimately, another critical point indicated by the Bitcoiner developer was the lack of a safe mechanism for users to download the software. Todd stressed that, although the binary were available, Ripple Labs did not offer a safe way to verify its integrity.

For example, Ubuntu’s packages, a popular operating system, were distributed through an insecure HTTP repository, without signatures that guaranteed their authenticity. This opened the door to attacks where an attacker could modify the software during discharge.

Subsequently, on April 22, from its social network X account, the XRPL Foundation, an organization that deals with the development of the network created by Ripple, published the XRPL.JS update. would correct the vulnerability described above.

How Bitcoin core minimizes that type vulnerabilities?

Bitcoin Core, as the reference customer for Bitcoin, is an open source project that does use PGP signatures to guarantee the integrity and authenticity of its software versions.

Each official launch (for example, Bitcoin Core V29.0) is signed by the main maintainers with their PGP keys, allowing users verify that the discharged code has not been altered. This directly addresses the problem indicated by Todd in Ripple, where the lack of PGP signatures facilitated the distribution of malicious code.

In addition, Bitcoin Core has dozens of main collaborators (maintainers and key reviewers) and hundreds of secondary collaborators who review the code in Github. This open development model ensures that multiple eyes examine each proposed change, reducing the probability that vulnerabilities They go unnoticed.