Categories: Ethereum

Research: Some Private Keys on Ethereum Blockchain at Risk of Brute Force Attack

Click here to view original web page at www.crowdfundinsider.com

Independent Security Evaluators (ISE) has published a report about the Ethereum blockchain. The report claims that poorly implemented private key generation is facilitating the theft of cryptocurrency. ISE said they discovered 732 private keys as well as their corresponding public keys that committed 49,060 transactions to the Ethereum blockchain.

Additionally, ISE researchers said they identified 13,319 Ether (ETH) which was transferred to both invalid destination addresses and forever lost, as well as to wallets derived from weak private keys which were targeted for theft.

According to ISE, the value of the combined total loss would have been almost $19 million at the peak of the Ethereum market in mid-January 2018.

ISE researcher Adrian Bednarek said the chances of duplicating or guessing the same randomly-generated private key already used on the Ethereum blockchain is approximately 1 in 115 quattuorvigintillion. This should indicate that a brute force attack ” should be practically impossible.”

“In light of these odds, the number of ETH tokens, number of transactions, total USD value of lost ETH, and number of actively used private keys found by ISE’s researchers was significant,” said Bednarik.

ISE claimed their ability to find private keys was possibly due to programming errors in the software that generated them.

ISE hypothesized that in various Ethereum wallet software implementations, a 256-bit, sufficiently random private key might be created, but the full value of the key becomes truncated on output due to coding mistakes. ISE stated:

“… error codes used as keys, memory reference issues, object confusion, stack corruption, heap corruption, or unchecked pre-compiled coding errors could also result in weak keys. These private keys are not sufficiently random which makes it trivial for a computer to brute force and eventually guess.”

ISE said they discovered an individual or group they labeled the “Blockchainbandit” stealing ETH funds from some of the wallets associated with the discovered weak private keys. ISE said they observed that the thief was sending that ETH to a destination wallet. Reportedly, on January 13, 2018, Blockchainbandit’s wallet held a balance of 37,926 ETH valued at $54,343,407. Due to the decline in value of ETH that amount is now worth far less or about $6.6 million.

ISE stated that the perpatrator continues to steal ETH claiming they placed a small amount in a weak key wallet and “within seconds, the ETH was transferred out and into the bandit’s wallet.”

ISE recommended strong private keys.

The entire report is available here.

cinerama

Illuminati, Mason, Anonymous I'll never tell. I can tell you this, global power is shifting and those who have the new intelligence are working to acquire this new force. You matter naught except to yourself, therefore prepare for the least expected and make your place in the new world order.

Disqus Comments Loading...
Share
Published by
cinerama

Recent Posts

Terrorists are turning to Bitcoin for funding, and they’re learning fast

Representational image of Bitcoin. (File: Bloomberg) By Nathaniel Popper Hamas, the militant Palestinian group, has been designated a terrorist organization… Read More

4 hours ago

Latest Faketoshi says he conveniently ‘lost the hard drive’ containing billions in Bitcoin

Just yesterday we told you how there was a new Faketoshi in town, staking a questionable claim to the Bitcoin… Read More

4 hours ago

Study Suggests Scarcity Could Drive Bitcoin Prices to $60,000 by May 2020

Share Tweet Send Share Bitcoin price predictions have been coming thick and fast in recent months as the world’s top… Read More

4 hours ago

“Bitcoin will never hit 50k” says crypto skeptic Peter Schiff

For a man that wants nothing to do with Bitcoin , economist and Euro Pacific Capital CEO Peter Schiff never… Read More

4 hours ago

Casa Releases Node Monitor Service to Improve Bitcoin Network Health

Casa, a crypto firm that provides a private key management service and Bitcoin node machine, has unveiled a node monitor… Read More

4 hours ago

ETC/ETH Technical Analysis: Ethereum Classic breaks higher

Ethereum Classic vs Ethereum: Classic is making a comeback today An important price level has been broken 0.037673 looks to… Read More

4 hours ago

This website uses cookies. We use these cookies to collect data about your interaction with our website for the purpose of continuously improving your experience with our site. For more information we encourage you to read our privacy policy.

Read More