A GitHub user named: devops199 appears to be responsible for the latest of hurdles for Parity Ethereum App.
As JustCryptoNews.com reported earlier today 7th November 2017, Parity based multisig contract was hacked taking more than $150 Million to oblivion.
According to the issue thread in Github about parity hack, the user was trying random commands and managed to kill multi-sig wallets which he was not the owner.
Devops199 has also clearly stated how he was able to, become the owner of the contracts and then kill them.
He said :
Hello, first of all, i'm not the owner of that contract. I was able to make myself the owner of that contract because its uninitialized.
These (https://pastebin.com/ejakDR1f) multi_sig wallets deployed using Parity were using the library located at "0x863df6bfa4469f3ead0be8f9f2aae51c91a907b4" address. I made myself the owner of "0x863df6bfa4469f3ead0be8f9f2aae51c91a907b4" contract and killed it and now when i query the dependent contracts "isowner(<any_addr>)" they all return TRUE because the delegate call made to a died contract.
I believe some one might exploit.
The reply from Parity contributor was :
We are analyzing the situation and will release an update with further details shortly.
And the thread was locked shortly after.