BTC $66982.6327
ETH $2607.8561
BNB $591.4020
SOL $153.6461
XRP $0.5389
stETH $2607.0425
DOGE $0.1199
TRX $0.1590
TON $5.1963
ADA $0.3522
AVAX $27.3353
wstETH $3080.4774
WBTC $66989.8389
WETH $2601.8152
LINK $11.1796
UNI $7.7319
BCH $355.2964
DOT $4.3065
SUI $2.0254
DAI $0.9995
APT $10.2066
LTC $66.2541
TAO $608.8313
weETH $2745.8768
PEPE $0.0000
BSC-USD $1.0074
FET $1.4374
ICP $7.9551
CAKE $1.8444
KAS $0.1326
FDUSD $0.9988
IMX $1.5436
NEAR $4.9437
ETC $19.2502
XMR $154.4350
POL $0.3675
RENDER $5.3721
STX $1.8110
WIF $2.5255
OKB $41.1880
WBT $16.4362
USDE $0.9995
AAVE $154.7636
BABYDOGE $0.0000
FIL $3.7327
HBAR $0.0542
MNT $0.6233
BTC $66982.6327
ETH $2607.8561
BNB $591.4020
SOL $153.6461
XRP $0.5389
stETH $2607.0425
DOGE $0.1199
TRX $0.1590
TON $5.1963
ADA $0.3522
AVAX $27.3353
wstETH $3080.4774
WBTC $66989.8389
WETH $2601.8152
LINK $11.1796
UNI $7.7319
BCH $355.2964
DOT $4.3065
SUI $2.0254
DAI $0.9995
APT $10.2066
LTC $66.2541
TAO $608.8313
weETH $2745.8768
PEPE $0.0000
BSC-USD $1.0074
FET $1.4374
ICP $7.9551
CAKE $1.8444
KAS $0.1326
FDUSD $0.9988
IMX $1.5436
NEAR $4.9437
ETC $19.2502
XMR $154.4350
POL $0.3675
RENDER $5.3721
STX $1.8110
WIF $2.5255
OKB $41.1880
WBT $16.4362
USDE $0.9995
AAVE $154.7636
BABYDOGE $0.0000
FIL $3.7327
HBAR $0.0542
MNT $0.6233
  • Catalog
  • Blog
  • Tor Relay
  • Jabber
  • One-Time notes
  • Temp Email
  • What is TOR?
  • We are in tor
  • Due to the Randstorm vulnerability, 1.5 million bitcoins could be stolen.

    A new type of attack called Randstorm could potentially steal 1.5 million bitcoins, especially those made between 2011 and 2015. The Randstorm flaw is a result of bugs, bad design choices, and API changes that make the quality of random numbers generated by the web worse. Around 1.4 million bitcoins are believed to be in wallets made with weak cryptographic keys, which could support a creative space program for years.

    Unciphered discovered the Randstorm vulnerability in January 2022 while working for an unnamed client. The main reason for this vulnerability is the use of BitcoinJS, an open-source JavaScript library for creating browser-based cryptocurrency wallets. The exploit relies on the SecureRandom() function in the JSBN library, which was affected by cryptographic bugs in the way web browsers implemented the Math.random() function at the time. As of March 2014, BitcoinJS developers were no longer using JSBN.

    By brute force attacks, private keys can be used to get back the private keys of wallets made with the BitcoinJS library or projects that depend on it. The results highlight how flaws in core libraries used in open source projects can spread risks throughout the supply chain. In late 2021, a similar problem was seen with Apache Log4j.

    The security flaw is built into BitcoinJS wallets from the start, making them unfixable. If your wallet was made between 2011 and 2015, the only way to keep your money safe is to move it to a new wallet made with more up-to-date software.

    Author reign3d
    The Fall of a Crypto Titan: The Closure of Bittrex Global
    How scammers stole a million dollars from the crypto wallets of thousands of investors

    Comments 0

    Add comment