IBC has always had the bug but it only recently became exploitable due to developments in the protocol’s codebase, Asymmetric Research said.