Description
Recent revelations indicate that a host of leading cryptocurrency wallet providers were susceptible to potential security breaches. These vulnerabilities, now known as BitForge, have highlighted the inherent cyber risks in the cryptocurrency realm, even as the world grapples with increasing adoption and tighter regulatory oversight. Cybersecurity company Fireblocks presented its findings at the Black Hat Read more
Recent revelations indicate that a host of leading cryptocurrency wallet providers were susceptible to potential security breaches. These vulnerabilities, now known as BitForge, have highlighted the inherent cyber risks in the cryptocurrency realm, even as the world grapples with increasing adoption and tighter regulatory oversight.
Cybersecurity company Fireblocks presented its findings at the Black Hat USA conference, disclosing that over 15 predominant cryptocurrency wallets, making up over 80% of the market, were affected. These vulnerabilities could have easily been harnessed to compromise user funds on celebrated exchanges, including Binance and Coinbase.
These security flaws primarily targeted multiparty computation protocols (MPCs). MPCs typically fracture private keys into multiple fragments, dispersed over different devices. This method should ideally bolster security. However, it was discovered that certain implementations of MPCs made it feasible for malicious actors to access the full key after merely 16 transactions. Such rapid-fire transactions could occur within seconds on high-frequency wallets.
Fireblocks CEO, Michael Shaulov, explained the simplicity of exploiting these vulnerabilities. He remarked, The BitForge vulnerabilities operate in line with common cyber-attack mechanisms. A single compromised user through malware is all thats needed. This underscores the ever-present threat of malware, often delivered via phishing scams designed to deceive users into downloading malevolent software or revealing sensitive data.
This vulnerabilitys disclosure comes amidst a mixed landscape of crypto crimes. While the overall figure was down 65% to $3.3 billion in H1 2023 from 2022, ransomware attacks malicious software that encrypts a victims files and demands payment for their release, typically in cryptocurrency are rising sharply. These are predicted to nearly touch $900 million this year, only slightly behind 2021s $940 million.
The international community and regulatory bodies have long been apprehensive about cybersecurity linked to digital assets. Given the burgeoning incidents of cryptocurrency thefts, many governments are ramping up efforts to integrate digital assets and their providers within a regulatory framework. As an illustration, Hong Kongs Securities and Futures Commission (SFC) now necessitates cryptocurrency exchanges operating within its jurisdiction to acquire a license. This move seeks to impose benchmarks in cybersecurity, private key management, and other areas.
However, uncertainties remain. While Fireblocks has pinpointed vulnerabilities in a significant number of wallet providers, determining the exact number affected by these flawed MPC implementations remains elusive.
Fireblocks research pinpointed vulnerabilities in implementations of certain multi-party computation (MPC) protocols, specifically GG-18, GG-20, and Lindell17. These vulnerabilities were traced back to deviations from standard implementations or previous efforts to patch known flaws.
Notably, GG-18 and GG-20 protocols faced issues where earlier attempts to rectify vulnerabilities inadvertently introduced newer ones. Lindell17s flaw, on the other hand, revolved around deviations from the original academic specifications and mishandling of failed signatures.
As a testament to industry collaboration, Fireblocks undertook a 90-day disclosure process. Their endeavors were met with a proactive response. Leading wallet providers, particularly Coinbase WaaS and Zengo, were commended for their swift action in addressing and rectifying the security flaws.
As digital currencies continue to weave themselves into the worlds financial fabric, its evident that maintaining cybersecurity will remain a top priority for providers and regulators alike.
Read more here:
'BitForge' security flaw to threaten Binance, Coinbase, and other ... - Cryptopolitan
- Binance CEO responds to rumors, says US executive is 'taking a deserved break' - Cointelegraph - September 17th, 2023 [September 17th, 2023]
- SEC reverses decision on sealing, redacting some documents in Binance.US case - Cointelegraph - September 17th, 2023 [September 17th, 2023]
- Binance.US legal and risk executives are leaving, Wall Street Journal reports - Reuters - September 17th, 2023 [September 17th, 2023]
- Binance.US not cooperating with investigation, US SEC says in filing - Cointelegraph - September 17th, 2023 [September 17th, 2023]
- Shiba Inu Payments Now in 9 Latin American Countries with This ... - The Crypto Basic - September 17th, 2023 [September 17th, 2023]
- Binance v SEC Lawsuit Update September 17: Problems With Documentation and More - CryptoPotato - September 17th, 2023 [September 17th, 2023]
- This Week on Crypto Twitter: Idris Elba Falls Flat, and Are We Near the End of Binance? - Decrypt - September 17th, 2023 [September 17th, 2023]
- Crucial Week Ahead for Crypto: Feds Interest Rate Decision, FOMC Meeting, And Binance Vs. SEC Hearing To Capture Attention - Coinpedia Fintech News - September 17th, 2023 [September 17th, 2023]
- Binance to Give Away up to $30000 Worth of Rewards in 2023 ... - PR Newswire - September 17th, 2023 [September 17th, 2023]
- Binance USD (BUSD): How Risky is It Saturday? - InvestorsObserver - September 17th, 2023 [September 17th, 2023]
- SEC accuses Binance.US of non-cooperation in ongoing ... - Cryptopolitan - September 17th, 2023 [September 17th, 2023]
- What's Next for Polygon (MATIC) After Binance Delisting? ApeCoin (APE) and Everlodge (ELDG) Price Prediction | Mint - Mint - September 17th, 2023 [September 17th, 2023]
- Whales Move 3 Million Arbitrum (ARB) Tokens To Binance, Borroe ... - Analytics Insight - September 17th, 2023 [September 17th, 2023]
- ATPBot now supports Binance and Kraken exchanges, Allowing ... - CryptoGlobe - September 17th, 2023 [September 17th, 2023]
- Binance creates smart contract to refund users affected by $3M rug pull - Cointelegraph - September 6th, 2023 [September 6th, 2023]
- Binance Adds XRP and Dogecoin to FDUSD Trading Lineup - U.Today - September 6th, 2023 [September 6th, 2023]
- Those 2 Cryptos were Delisted from Binance, ADA is one of them... - CryptoTicker.io - Bitcoin Price, Ethereum Price & Crypto News - September 6th, 2023 [September 6th, 2023]
- Binance Will Delist These Cryptocurrencies Starting September 8 - CryptoPotato - September 6th, 2023 [September 6th, 2023]
- Bitcoin, Ether down; Binance loses another top executive - Yahoo Finance - September 6th, 2023 [September 6th, 2023]
- PERP Spikes 90%, Perpetual Protocol Foundation Sends Tokens To Binance: Is This Good - NewsBTC - September 6th, 2023 [September 6th, 2023]
- Binance Departures Gather Pace With Kostarev, Smerkis Leaving - Bloomberg Law - September 6th, 2023 [September 6th, 2023]
- Binance USD (BUSD): Does the Reward Outweigh the Risks? - InvestorsObserver - September 6th, 2023 [September 6th, 2023]
- Crypto whales shuffle millions via Binance amid regulatory scrutiny - crypto.news - September 6th, 2023 [September 6th, 2023]
- Binance will reportedly delist Monero and privacy coins in Belgium - crypto.news - September 6th, 2023 [September 6th, 2023]
- Comparative Analysis of Binance Coin Against Major Market Cap ... - BTC Peers - September 6th, 2023 [September 6th, 2023]
- Binance Charity Unveils Survey Insights on International Day of ... - FinanceFeeds - September 6th, 2023 [September 6th, 2023]
- Binance To Launch opBNB Layer 2 Network Later This Month - The Defiant - DeFi News - August 18th, 2023 [August 18th, 2023]
- Coinbase Gets Approval to Tap Cryptos Biggest Market in Faceoff With Binance - Barron's - August 18th, 2023 [August 18th, 2023]
- Binance Connect Shutdown Highlights Crypto's Ongoing Identity Crisis - PYMNTS.com - August 18th, 2023 [August 18th, 2023]
- Binance seeks court protection against the SEC - CNBC - August 18th, 2023 [August 18th, 2023]
- Blockchain, Binance Hit With Suits Over Currency Trading Patents - Bloomberg Law - August 18th, 2023 [August 18th, 2023]
- First Digital USD soars on Binance as overall stablecoin market ... - CryptoSlate - August 18th, 2023 [August 18th, 2023]
- Binance Releases Proof Of Reserves Report | Crowdfund Insider - Crowdfund Insider - August 18th, 2023 [August 18th, 2023]
- Ethereum, Dogecoin, PEPE note millions in sudden liquidation owing to potential Binance FUD - FXStreet - August 18th, 2023 [August 18th, 2023]
- Is Binance USD (BUSD) a Good Investment Thursday? - InvestorsObserver - August 18th, 2023 [August 18th, 2023]
- Binance token BNB on the edge of oblivion - Crypto Daily - August 18th, 2023 [August 18th, 2023]
- Crypto.com's inroads into Korea contrasts with struggling Binance - - August 18th, 2023 [August 18th, 2023]
- Binance Price Prediction: Todays Binance Price, 18th Aug 2023 - BOL News - August 18th, 2023 [August 18th, 2023]
- Binance Coin (BNB) Price Analysis for August 11 - U.Today - August 18th, 2023 [August 18th, 2023]
- CYBER Token Claims Top Spot on CoinMarketCap After Binance ... - Captain Altcoin - August 18th, 2023 [August 18th, 2023]
- Binance Labs Invests $10M to Accelerate Helio Protocol's Liquid Staking Pivot - Decrypt - August 13th, 2023 [August 13th, 2023]
- Nigerian authorities call on government to ban Binance amid Naira crisis - CryptoSlate - August 13th, 2023 [August 13th, 2023]
- Why Binance Is Abandoning Most of Europe - CoinDesk - August 13th, 2023 [August 13th, 2023]
- Shiba Inu (SHIB) Surges 5% After Binance Collateral Announcement: Is a Bull Run on the Horizon for InQubeta (QUBE)? - Analytics Insight - August 13th, 2023 [August 13th, 2023]
- Binance Futures Axes Two Perpetual Contracts Tied to $ADA and $MATIC - CryptoGlobe - August 13th, 2023 [August 13th, 2023]
- Binance to Delist New ADA and MATIC Trading Pairs - U.Today - August 13th, 2023 [August 13th, 2023]
- Binance US Increases OTC Trading Limits to $30,000 For Shiba Inu and XRP - The Crypto Basic - August 13th, 2023 [August 13th, 2023]
- Binance Revenue Falling: Will Exchange Sell BNB to Save its Future? - CCN.com - August 13th, 2023 [August 13th, 2023]
- SEI Token Could Reach Nearly Half a Billion Market Cap on Binance Debut - CoinDesk - August 13th, 2023 [August 13th, 2023]
- What will Bitcoin do if the Justice Department takes aim at Binance? - Cointelegraph - August 13th, 2023 [August 13th, 2023]
- Ex Binance.US CEO Weighs In On Stablecoin Regulation, Claims A Boost For Dollar Adoption - Bitcoinist - August 13th, 2023 [August 13th, 2023]
- Liquid Supports Binance with eKYC solution in Japan - Yahoo Finance - August 13th, 2023 [August 13th, 2023]
- Binance.US Boosts Shiba Inu With Enhanced OTC Trading - TronWeekly - August 13th, 2023 [August 13th, 2023]
- Reasons why Binance should be banned in Nigeria - CryptoTvplus - August 13th, 2023 [August 13th, 2023]
- Should You Buy Binance USD (BUSD) Saturday? - InvestorsObserver - August 13th, 2023 [August 13th, 2023]
- Vulnerabilities threatening funds on exchanges like Binance, Coinbase revealed - South China Morning Post - August 13th, 2023 [August 13th, 2023]
- Telegram crypto bots gain momentum in the market: Binance ... - Cointelegraph - August 13th, 2023 [August 13th, 2023]
- Livepeer (LPT) Goes Parabolic With Epic 30% Pump on Binance ... - Captain Altcoin - August 13th, 2023 [August 13th, 2023]
- Analisys crypto of Stellar, Cosmos and Binance - The Cryptonomist - August 13th, 2023 [August 13th, 2023]
- Securities Litigation Attorney Comments On Bittrex Settlement: Don't Expect Same Treatment For Binance - Crowdfund Insider - August 13th, 2023 [August 13th, 2023]
- Cardano (ADA) and Binance Coin (BNB) Feeling the Heat as ... - Captain Altcoin - August 13th, 2023 [August 13th, 2023]
- Binance eyes United Arab Emirates as focal point for future operations - Cointelegraph - June 26th, 2023 [June 26th, 2023]
- Binance ordered to stop all digital currency services in Belgium - Reuters.com - June 26th, 2023 [June 26th, 2023]
- Binances Market Share Is Stuck Near One-Year Low - Yahoo Finance - June 26th, 2023 [June 26th, 2023]
- Binance.US solves USD withdrawal issues but warns it wont last long - Cointelegraph - June 26th, 2023 [June 26th, 2023]
- Binance US Restores USD Withdrawals, Suggests Users Withdraw or Spend Their Dollars Exchanges Bitcoin News - Bitcoin News - June 26th, 2023 [June 26th, 2023]
- Bitcoin's 'Great Accumulation,' Binance.US resumes withdrawals... - Cointelegraph - June 26th, 2023 [June 26th, 2023]
- Is Binance USD (BUSD) Heading the Right Direction Sunday? - InvestorsObserver - June 26th, 2023 [June 26th, 2023]
- Binance told to cease operations in Belgium, with officials citing acts that are liable to constitute a criminal offense - Fortune - June 26th, 2023 [June 26th, 2023]
- Binance Prohibited from Operating in Belgium, Effective Immediately - Crypto Briefing - June 26th, 2023 [June 26th, 2023]
- Binance faces scrutiny in Brazil, exec summoned to testify before Congress - Cointelegraph - June 26th, 2023 [June 26th, 2023]
- Binance Forced to Stop Providing Crypto Services in Belgium by ... - Cryptonews - June 26th, 2023 [June 26th, 2023]
- Binance and SEC reach deal over U.S. assets, and Fidelity-backed ... - CNBC - June 26th, 2023 [June 26th, 2023]
- Binance launches regulated platform in Kazakhstan amid troubles in the West - Cointelegraph - June 26th, 2023 [June 26th, 2023]
- Binance to implement Lightning Network nodes for enhanced Bitcoin transactions - Cointelegraph - June 26th, 2023 [June 26th, 2023]
- SEC sues Binance, part 3: VIPs on VPNs, wash trading, the Binance ... - David Gerard - June 26th, 2023 [June 26th, 2023]
- Binance denies affiliation with entity registered in UK - Cointelegraph - June 26th, 2023 [June 26th, 2023]
- Bitcoin, Binance Coin and Ripple Break to the Upside, but this ... - Analytics Insight - June 26th, 2023 [June 26th, 2023]
- First Steps in Binance: How to Buy and Sell Binance USD - Concept Phones - June 26th, 2023 [June 26th, 2023]
- $13 Million in AAVE and MKR Tokens Withdrawn from Binance by ... - Captain Altcoin - June 26th, 2023 [June 26th, 2023]