Can a clever hacker still steal everyone's money from the blockchain.info wallet?

1

Blockchain.info claims:

We cannot (and don't want to):

View your balance View your address book Make transactions on your behalf Confiscate your wallet Lock you into our service.

They do this by only storing the encrypted wallet file containing the private keys, and letting the web client do the decryption and signing using the private keys without ever communicating them using the server. This means it is indeed true that the blockchain.info can't make transactions on your behalf.

I used to think this also meant that, if a hacker broke into their servers, they would not be able to steal everybody's bitcoins, because the private keys are not stored there.

However, now I'm not so sure. Couldn't the hacker simply change the server code to send javascript to the web client which, when executes, decrypts those private keys and sends them back to the (now-hacked) server?

It would take longer, as everyone would have to sign in to be...

0 0
2

Smart hackers could exploit a loophole that could allow them to steal a significant amount of cash from Google, Microsoft and Instagram using a

Premium rate phone number.

Security researcher Arne Swinnen from Belgium has discovered an ingenious way to steal money from big tech companies like Google, Microsoft, and Instagram using their two-factor authentication (2FA) voice-based token distribution systems.

Swinnen argues that any attacker with malicious intent could create fake Google, Microsoft or Instagram accounts, as well as premium phone services, and then link them together.

The attacker could then request 2FA voice-based tokens for all fake accounts using an automated scripts, placing legitimate phone calls to his service to earn him quite a nice profit.

Swinnen created accounts on Google, Microsoft Office 365 and Instagram and then tied them to a premium phone number instead of a regular one.

As a result, whenever one of these three...

0 0
3

Bitcoin is the currency of the Internet: a distributed, worldwide, decentralized digital money. Unlike traditional currencies such as dollars, bitcoins are issued and managed without any central authority whatsoever: there is no government, company, or bank in charge of Bitcoin. As such, it is more resistant to wild inflation and corrupt banks. With Bitcoin, you can be your own bank.

If you are new to Bitcoin, check out We Use Coins and Bitcoin.org. You can also explore the Bitcoin Wiki:

How to buy bitcoins worldwide
Buying Reddit Gold with bitcoin

Will I earn money by mining bitcoin?

Security guide for beginners - (WIP)

Community guidelines

Do not use URL shortening services: always submit the real link. Begging/asking for bitcoins is absolutely not allowed, no matter how badly you need the bitcoins. Only requests for donations to large, recognized charities are allowed, and only if there is good reason to believe that the person...
0 0
4

Sending money to a paper wallet is the easy part. Getting it out is a little more complicated. So here’s a step-by-step guide.

Below is a paper wallet containing 0.36477 BTC (at the time of this writing). The paper wallet was made with bitaddress.org, using BIP38 encryption for the private key. (To see more about creating paper wallets, read my previous post called "Creating a Bitcoin paper wallet for cold storage.")

I'm confidant the paper wallet contains the funds because I pasted that 12WwoV… address into blockchain.info, and can see the "Final Balance" – see below.

The overall process is to import the private key into Electrum, then send the complete contents of the paper wallet to another address in my wallet. This is super important: Any time you take funds from a paper wallet, you have to take out all the money. The reason has to do with change addresses and you can read more about it here. The bottom line, remove everything from a paper...

0 0
5

I lived on bitcoin for 24 hours

Hackers have stolen bitcoins worth about $65 million after attacking a major digital currency exchange.

The exchange, Bitfinex, responded by halting trading, deposits and withdrawals, prompting a plunge in the Bitcoin price.

"We are investigating the breach to determine what happened, but we know that some of our users have had their bitcoins stolen," the company said in a blog post on Wednesday.

The hackers made off with 119,756 bitcoins, said Zane Tackett, Bitfinex's director of community and product development, in an email to CNNMoney. That's the equivalent of more than $65 million at current prices.

Related: Companies plow money into Bitcoin startups

The Hong Kong exchange said it has reported the hacking to law enforcement. It gave no information about how the attack happened, or who may have been responsible.

Tackett told CNNMoney that Bitfinex is working with authorities and specialist...

0 0
6
Blockchain.info{"topic":{"topicId":3508472,"title":"Blockchain.info","photoPath":"http://0c6267da0a7ea46d4bab-eb586243eedd1910b98d76df26e469b2.r74.cf1.rackcdn.com/3508472_50bb3cf.jpeg","markLike":4,"articles":45},"errors":{},"location":{"country":"Russia","state":"Moscow","city":"Moscow","latitude":55.75222,"longitude":37.61556,"photoPath":"https://9629f568df7d267af0c6-00ec22ed68eba45fdbe4d344e3f0d92c.ssl.cf1.rackcdn.com/3_11094_6944302f.jpg","locationId":11094,"value":"Moscow","label":"Russia, Moscow,...
0 0
7
...
0 0