Jump to content

Recommended Posts

https://www.cryptocoinsnews.com/bitcoin-attack-coinkite-reports-malleability-attack-urges-caution/

 

Coinkite, a bitcoin platform that transacts more than 400,000 BTC per month, has reported a bitcoin malleability attack that requires users to be careful about zero confirmation receipts since there are two versions of a transaction (low S high S). Coinkite is requiring one confirmation for deposits before it uses them in a new transaction.

Transactions have been modified and rebroadcast with new transaction numbers, indicating a malleability attack. The attacks have occurred over the last 24 to 48 hours. Almost all transactions on the network have suffered the attacks.

Customer Funds Not At Risk

The company noted in a blog that the attacks do not put Coinkite’s customer funds at risk. The modification being made to the transactions is a simple numeric tweak to one number (S) in the ECDSA (Elliptical Curve Digital Signature Algorithm) signature, the blog notes. “It’s documented as part of BIP62 and is called the ‘low S’ requirement.” Coinkite always uses the lower S value, but the attackers have been replacing it with the higher S value.

The attackers change the transactions without any knowledge of the private keys involved.

Link to post
Share on other sites
  • 2 weeks later...

I had a chance to get paid via bitcoin route yesterday, but stuck with Paypal. Opportunities for me will arise every day to join bitcoin, but I would like to see it more stable before I risk my funds in a relatively new currency. Eventually, you would like to spend it, and if it is not there when you went to spend it, just think of all the hours one spends accumulating funds, having gone to waste.

Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
×
×
  • Create New...