BTC $103487.7267
ETH $2385.4664
XRP $2.3821
BNB $649.6497
SOL $169.1094
DOGE $0.2228
ADA $0.7898
TRX $0.2597
stETH $2383.4639
WBTC $103523.0792
SUI $3.8582
LINK $16.0936
AVAX $24.0772
wstETH $2868.0073
XLM $0.3004
USDS $1.0016
HBAR $0.2054
HYPE $25.2028
TON $3.3478
BCH $415.0315
LEO $8.7456
DOT $5.0524
LTC $101.2307
WETH $2386.5496
XMR $318.8857
BGB $4.7445
BTCB $103511.1928
PEPE $0.0000
weETH $2546.9996
BSC-USD $1.0022
PI $0.7174
USDE $1.0012
WBT $30.2762
TAO $439.0347
UNI $6.5501
NEAR $2.9282
APT $5.6774
CBBTC $103549.1817
AAVE $216.4076
OKB $54.4159
DAI $0.9999
ONDO $1.0163
ETC $19.3411
ICP $5.4351
CRO $0.1005
TRUMP $13.8536
TKX $34.5605
BTC $103487.7267
ETH $2385.4664
XRP $2.3821
BNB $649.6497
SOL $169.1094
DOGE $0.2228
ADA $0.7898
TRX $0.2597
stETH $2383.4639
WBTC $103523.0792
SUI $3.8582
LINK $16.0936
AVAX $24.0772
wstETH $2868.0073
XLM $0.3004
USDS $1.0016
HBAR $0.2054
HYPE $25.2028
TON $3.3478
BCH $415.0315
LEO $8.7456
DOT $5.0524
LTC $101.2307
WETH $2386.5496
XMR $318.8857
BGB $4.7445
BTCB $103511.1928
PEPE $0.0000
weETH $2546.9996
BSC-USD $1.0022
PI $0.7174
USDE $1.0012
WBT $30.2762
TAO $439.0347
UNI $6.5501
NEAR $2.9282
APT $5.6774
CBBTC $103549.1817
AAVE $216.4076
OKB $54.4159
DAI $0.9999
ONDO $1.0163
ETC $19.3411
ICP $5.4351
CRO $0.1005
TRUMP $13.8536
TKX $34.5605
  • Catalog
  • Blog
  • Tor Relay
  • Jabber
  • One-Time notes
  • Temp Email
  • What is TOR?
  • We are in tor
  • Due to the Randstorm vulnerability, 1.5 million bitcoins could be stolen.

    A new type of attack called Randstorm could potentially steal 1.5 million bitcoins, especially those made between 2011 and 2015. The Randstorm flaw is a result of bugs, bad design choices, and API changes that make the quality of random numbers generated by the web worse. Around 1.4 million bitcoins are believed to be in wallets made with weak cryptographic keys, which could support a creative space program for years.

    Unciphered discovered the Randstorm vulnerability in January 2022 while working for an unnamed client. The main reason for this vulnerability is the use of BitcoinJS, an open-source JavaScript library for creating browser-based cryptocurrency wallets. The exploit relies on the SecureRandom() function in the JSBN library, which was affected by cryptographic bugs in the way web browsers implemented the Math.random() function at the time. As of March 2014, BitcoinJS developers were no longer using JSBN.

    By brute force attacks, private keys can be used to get back the private keys of wallets made with the BitcoinJS library or projects that depend on it. The results highlight how flaws in core libraries used in open source projects can spread risks throughout the supply chain. In late 2021, a similar problem was seen with Apache Log4j.

    The security flaw is built into BitcoinJS wallets from the start, making them unfixable. If your wallet was made between 2011 and 2015, the only way to keep your money safe is to move it to a new wallet made with more up-to-date software.

    Author reign3d
    The Fall of a Crypto Titan: The Closure of Bittrex Global
    How scammers stole a million dollars from the crypto wallets of thousands of investors

    Comments 0

    Add comment