MetaMask warns of security vulnerability from older versions of popular crypt...
"Ultimately, we've learned that our password encryption feature's security was partially undermined by browser behavior," said the team at MetaMask. On Wednesday, MetaMask said that it uncovered a critical security vulnerability in older versions of its crypto wallet with the help of security researchers at Halborn. The security firm was awarded a bounty of $50,000 for the discovery. For users of the MetaMask extension before version 10.11.3, three necessary conditions would have led to the potential vulnerability. They are: (1) an unencrypted hard drive, (2) having imported a secret....
Related News
Crypto wallet provider MetaMask reported a vulnerability that could affect a very small portion of its users. Discovered by blockchain security firm Halborn, the vulnerability could enable a bad actor to take possession of a user’s secret recovery phrase compromising his funds. Related Reading | Russia Still To Ban Crypto? A Bill To Ban Digital Assets […]
Popular DeFi wallet MetaMask, with 21 million monthly users, was pulled off the Apple App Store for a few hours on Saturday. Although the crypto wallet app has now been restored, there has been no official explanation of the reason behind this incident. Related Reading: Security Firm Warns Of Telegram Bot Token Risks As Wallet […]
Multiple versions of Android are vulnerable to Dirty Cow, regardless of device manufacturer. Even though mobile devices are becoming more popular than ever before, there are still systemic risks. Mainly the Android operating system seems vulnerable to more attacks than ever before. Dirty Cow, a new vulnerability discovered this week, may affect a lot of Bitcoin users as well. One can never be too careful when dealing with finances. It is not the first time a new Android vulnerability is discovered. Given the sheer popularity of this mobile operating system, hackers have been attracted to....
“Stay away from doing [transactions] for a while till confirmed, unless you are sure you are submitting to latest Geth,” advised Andre Cronje. A major consensus bug has affected more than half the Ethereum network’s nodes, causing those running older versions of Geth to split from the main network.According to Ethereum software developer Marius van der Wijden, an attacker exploited a vulnerability affecting earlier versions of Geth, one of Ethereum's software clients. According to the developer, Geth clients and Ethereum nodes running software v1.10.7 or earlier are at risk of splitting....
Phishers are coming after MetaMask users in increasingly clever ways. Cyber Security firm CipherTrace has issued a warning after noting a surge in reports over the past 24 hours of users funds being stolen by a malicious Chrome browser extension posing as popular crypto wallet MetaMask.The warning was issued under the headline "ALERT: Malicious Crypto Browser Extension—Masked MetaMask" and reported the company had seen "an uptick of alerts and comments within the online cryptocurrency community of users’ funds being stolen."In response to online criticism that MetaMask is not doing enough....