Private Keys Vulnerable to New Android & iOS Attack
Researchers from Tel Aviv University’s Laboratory for Experimental Information Security (LEISec) and The University of Adelaide have created an attack vector against Android and iOS devices. The invasion uses a $2 USD magnetic device to crack private keys held on these operating systems allowing the possible theft of users’ bitcoins and private data. The....
Related News
Bitpay’s open source wallet Copay announced Tuesday that they have fixed a security flaw in Android phones running version six, codenamed ‘Marshmallow.’ Simultaneously, popular Bitcoin web and mobile wallet, GreenAddress, has encountered the same problem and is actively working on a solution. Private Keys Kept in the Cloud at Risk. The root of the....
Bitcoin Core version 0.9.1 has been released to update the core OpenSSL library to the bugfixed version 1.0.1g. The Bitcoin Core security update to version 0.9.1 comes less than 24 hours after an announcement of the discovery of the Heartbleed Bug. Specifically, the OpenSSL Heartbleed Bug could reveal partial memory contents related to an encrypted SSL/TLS session to an attacker. In the case of Bitcoin, this means that private keys may be revealed. Specific Vulnerabilities. Any Bitcoin Core GUI that uses a vulnerable version of the OpenSSL library could be vulnerable to the following....
According to researchers, Bitcoin and Ethereum blockchains are vulnerable to Balance Attack, which encourages double spend and disrupts persistence of blockchain. The Proof of Work blockchains may have an Achilles Heel that makes them vulnerable to a “Balance Attack.” A group of researchers from the University of Sydney has published a paper offering details about this new type of attack. The Balance Attack targets the nodes with balanced mining power. By delaying the network communication between a subgroup of nodes, the attack forces double spend on proof of work blockchains like that of....
A critical security vulnerability has been found in Android which renders bitcoins stored in Android Bitcoin wallets vulnerable to theft, and the exploit is currently being used in the wild to steal people's bitcoins. Several people have reported that their Android wallets were cleared out and the funds sent to 1HKywxiL4JziqXrzLKhmB6a74ma6kxbSDj, an address which currently contains 55.8 BTC. Because the bug is a flaw in Android itself, all Android Bitcoin wallets are vulnerable. Bitcoin Wallet for Android, Bitcoin Spinner, the mobile version of blockchain.info and Mycelium Wallet are all....
Gemini CSO Cem Paya recently highlighted certain vulnerabilities in the SafeNet's Hardware Security Modules (HSMs) that can risk users' Bitcoin private keys. The revelation comes at a time when Bitcoin security has become one of the topmost concerns of leading digital currency corporate houses. According to the available information, a large number of these Bitcoin companies utilize HSM-based models, manufactured by Safenet, to create and destroy private keys without actually revealing them to the attached trusted clients. This simply means that, on papers, a private key inside an HSM....