Stellar Lumens (XLM) Forum with for newcomers and contributor's rewarded Check here




Potentially Malicious Vulnerability Found on Cryptocurrency Paper Wallet Generator
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5

#1
[Image: wallet_in_jacket.jpg__740x380_q85_crop_s...ling-2.jpg]
It has recently been revealed that WalletGenerator.net, a cryptocurrency paper wallet generator, might have been compromised , and users are being advised to switch funs from wallets created through it to new ones.

According to a Medium post published by cryptocurrency wallet platform MyCrypto, a potentially malicious vulnerability was introduced in the paper wallet generator’s code back in August of last year, and has been there for months. The code was removed shortly after the website’s owner was contacted.

While WalletGenerator.net has supposedly open-sourced code that’s available on GitHub, MyCrypto found that the code on the website and the code on GitHub didn’t match. The potentially malicious vulnerability on the website caused it to produce duplicate keys.

Moreover, generate keypairs could have been stored on servers. MyCrypto noted that between the time it was concluding its investigation and the time it received a response from the website’s owner, the code on the website was modified, and the malicious code was removed.

Taking this into account, the firm noted it still has “no idea whether the current site owner is the malicious party, if the server is insecure, or both.” Nevertheless, the suspicious behavior from the website’s owner, which claimed they saw no malicious code and MyCrypto could be looking at a phishing website, saw them advise users who generate keypairs on WalletGenerator after August 17, 2018 to move their funds.

The firm’s post reads:

Quote:
We do not recommend using WalletGenerator.net moving forward, even if the code at this very moment is not vulnerable.

It’s worth pointing out one can never be too safe in the crypto space. As recently covered, a BitGo engineering manager recently saw hackers take over $100,000 from his Coinbase account using a SIM swap attack.

Blackmailing porn viewers, hackers have reportedly made nearly $1 million worth of bitcoin. While security researchers point out they’re issuing empty threats, some victims seemingly just pay up instead of ignoring them.



by Francisco Memoria
Reply


Possibly Related Threads...
Thread Author Replies Views Last Post
  The Biggest Crypto Wallet Scandals Of 2019 crytocure 0 10 Yesterday, 03:19 PM
Last Post: crytocure
  There’s A New Question On Your 1040 As IRS Gets Serious About Cryptocurrency crytocure 0 20 12-10-2019, 03:26 PM
Last Post: crytocure
  A Brief Guide to Cryptocurrency Taxes: All You Need to Know crytocure 0 19 11-10-2019, 01:40 PM
Last Post: crytocure
  2 Bitcoin Developers Explain How The Cryptocurrency Could Still Fail crytocure 0 26 09-10-2019, 10:54 AM
Last Post: crytocure
  How Does Cryptocurrency Price Moves in the Market? crytocure 0 31 07-10-2019, 04:19 PM
Last Post: crytocure
  How to do cryptocurrency mobile mining crytocure 0 43 05-10-2019, 03:56 PM
Last Post: crytocure
  Top 5 Working Cryptocurrency Projects With Great Token Utility crytocure 0 46 03-10-2019, 03:34 PM
Last Post: crytocure
  Exploring the Market Control of Cryptocurrency Exchanges crytocure 0 42 03-10-2019, 03:16 PM
Last Post: crytocure
  How to Create an Anonymous Digital Identity Using Cryptocurrency crytocure 0 38 03-10-2019, 11:31 AM
Last Post: crytocure
  Using Moving Averages To Trade Cryptocurrency crytocure 0 48 28-09-2019, 03:43 PM
Last Post: crytocure



Users browsing this thread: 1 Guest(s)