Parity’s multisig feature has a critical vulnerability which has led to some $32 million worth of ethereum already being stolen from ICOs at the time of writing.
This is a developing story, so details are spars. For now, everyone is advised to move their funds away from any Parity multisig wallet or any Parity wallet at all.
Jamie Pitts, an ethereum developer, said:
“The vulnerability is in Parity’s “enhanced” multi-sig contract. This affects Parity 1.5 and later. Parity 1.5 was released on January 19, 2017 (have you created multi-sigs in Parity since then?). The canonical multi-sig contract used in Mist/Ethereum Wallet does NOT have this vulnerability.
This article will be updates as new information comes in.