SN55niome·Thursday, May 7, 2026

Niome patches S3 URL exploit, bans cheaters

The team identified and blocked multiple cheating vectors, including validator impersonation, machine disruption attacks, and a critical S3 presigned URL vulnerability that allowed reuse of expired credentials to access ground truth. All security credentials have been rotated. Upcoming changes include publishing full miner responses and ground truths, removing response-time weighting from scores, and clarifying task specifications.

•S3 presigned URL expiration (1 day) allowed reuse across 8-hour validation cycles
•Attackers impersonated validators, stole responses, and overloaded miners with bulk requests
•Full miner responses and ground truths will be published for transparency
•Response-time limit introduced; response-time weighting removed from scoring

Distilled from 7 team messages in the official Bittensor Discord. Generated by Claude Haiku 4.5.

View original messages

Discord message 1501391598619983873
Discord message 1501391611656147015
Discord message 1501392402139709491
Discord message 1501394951500468295
Discord message 1501649718927949876
Discord message 1501653373286617138
Discord message 1501660194046873771

Niome patches S3 URL exploit, bans cheaters

More briefs for SN55