Share this article
Smarter Bug Bounties? Hydra Codes Creative Solution for Ethereum Theft
A new smart contracts project uses the technology in a novel way that aims to stop illicit actors from stealing ethereum funds.
Updated Sep 13, 2021, 7:07 a.m. Published Nov 2, 2017, 11:00 p.m.
Can the right alignment of incentives encourage better blockchain bug reporting?
That's the goal of Hydra, a new effort funded by the National Science Foundation Graduate Research Fellowship and designed by a team of researchers including Lorenz Breidenbach, Phil Daian and Ari Juels from Cornell, and Florian Tramer from Stanford.
STORY CONTINUES BELOW
Don't miss another story.Subscribe to the Crypto Daybook Americas Newsletter today. See all newsletters
Announced today at ethereum's annual developer conference, Devcon3, the Hydra project is novel in that its contracts aim to automatically and programmatically offer those who report a bug higher rewards than they'd get if they exploited one. In this way, if a user's smart contract hack would result in a reward of 100 tokens, Hydra would pay out 1,000 tokens if he or she reported it instead.
As such, the project offers a potential solution to an incentive problem common in smart contract development. A popular tool for open-source projects, many times payouts simply make the bad behavior more lucrative.
Hydra tweaks the incentives, however, testing how the nascent concept of crypto-economics – simply, the study of cryptocurrency economies – might encourage people to report bugs they identify.
But rather than condemning the actions of bad actors, Daian sees Hydra as a solution that blends pragmatism and smart programming.
Daian said:
"Let's see this as a game. What would a rational attacker do with these systems? Say an attacker finds a bug: would they attack or would they claim the bounty?"
But while many will be excited to start playing around with the system, released in alpha today, Daian stressed that it's still nascent technology that might not be safe for storing funds.
He said, "The code is here for you to play with. But trusting funds with this baby Hydra we've spun up – not good idea.
Image via Rachel Rose-O'Leary for CoinDesk
More For You
What to know:
- As of October 2025, GoPlus has generated $4.7M in total revenue across its product lines. The GoPlus App is the primary revenue driver, contributing $2.5M (approx. 53%), followed by the SafeToken Protocol at $1.7M.
- GoPlus Intelligence's Token Security API averaged 717 million monthly calls year-to-date in 2025 , with a peak of nearly 1 billion calls in February 2025. Total blockchain-level requests, including transaction simulations, averaged an additional 350 million per month.
- Since its January 2025 launch , the $GPS token has registered over $5B in total spot volume and $10B in derivatives volume in 2025. Monthly spot volume peaked in March 2025 at over $1.1B , while derivatives volume peaked the same month at over $4B.
More For You
Coinbase Reopens India Signups, Targets Fiat On-Ramp in 2026 After Two-Year Freeze
Coinbase halted services entirely in 2023, off-boarded millions of Indian users and shuttered local access while reassessing regulatory exposure.
What to know:
- Coinbase has resumed onboarding users in India, marking its return to the market after a two-year hiatus due to regulatory issues.
- The exchange is currently allowing crypto-to-crypto trading and plans to reintroduce fiat on-ramps next year.
- Despite regulatory challenges, Coinbase is investing in India, including increasing its stake in local exchange CoinDCX.
Top Stories
