For start to keep things clean and not scare people dont dont know whats up - DashCoin is NOT DASH
Monero, Bytecoin, DashCoin, DigitalNote are coins based on CryptoNote, they are forks.
XMR team has found a bug in the code some time ago allowing to create unlimited free coins in this technology.
They patched it and let other coins know. Aeon, Boolberry and Forknote are updated now along with XMR.
BCN DSH XDN still didnt update and news of the vulnerability are now public.
Mitigation (quote if the original article gets edited)
Several options exist for mitigation. The simplest, least invasive is noted below.
To mitigate, check key images for correctness by multiplying by the curve order l. Check that the result is the identity element.
Hexadecimal values of each:
Identity element = "0100000000000000000000000000000000000000000000000000000000000000"
Curve order (little endian) = "edd3f55c1a631258d69cf7a2def9de1400000000000000000000000000000010"
For each transaction key image, check ((key image * curve order) == (identity element)); reject transaction if false.Several options exist for mitigation. The simplest, least invasive is noted below.
To mitigate, check key images for correctness by multiplying by the curve order l. Check that the result is the identity element.
Hexadecimal values of each:
Identity element = "0100000000000000000000000000000000000000000000000000000000000000"
Curve order (little endian) = "edd3f55c1a631258d69cf7a2def9de1400000000000000000000000000000010"
For each transaction key image, check ((key image * curve order) == (identity element)); reject transaction if false.
Mentioned Coins Pumping
I suggest waiting for patches to be confirmed by devs.
Follow, Resteem and VOTE UP @kingscrown creator of http://fuk.io blog for 0day cryptocurrency news and tips! |
 |
|---|
In addition to the updated coins mentioned in the quote, Dashcoin (not Dash, which is unaffected) was already updated and Bytecoin released an update yesterday.
Great to know! Upped so people see your comment
That's great @smooth. I'll make a note on my post on about this issue.
Thanks for update
Hacking Bitcoins.. :D
Lol - I used her yesterday.... hard hacking kittie :)
https://steemit.com/story/@hastla/thinkings-ransomware-wannacry-i-wanna-cry
:D
Still digging..:)
No time to waste.
cute kitty hacking the bitcoin ....... ha ha
kitty will be rich in minutes and forget where he stores money :D
HA HA ........ :D
This is literally me at work lol
:D
Congratulations @kingscrown!
Your post was mentioned in my hit parade in the following categories:
Create unlimited free coins on all coins forked from CryptoNote before the fix?
The exploit allows double-spends. It allows anyone to create an infinite amount of coins in a way that is impossible to detect (unless you write special code to look for it)
Monero claims their chain is safe and they've already checked it.
Who has checked Monero's test? How can you look for these inflated coins?
Basically it means you could use your wallet to "pump up" other wallet balances with double spends. You could then sell these fake created coins on exchanges or stock pile them.
You basically have to edit every transaction on the entire chain.
I personally will not be buying any CryptoNote forked coin including Monero until more information is available. :(
This is a massive problem.
The detection is built into the standard node (and the code for that is in github, in case you want to check it). If you are using any recent version and you have synced from scratch then you have checked that the entire chain is devoid of any use of the exploit.
EXCELLENT. This info needs to be on the Monero website. Makes a lot of sense.
The method is core::check_tx_inputs_keyimages_domain(const transaction& tx) const. If you do hack and dump, send a tip my way. :)
let's try bytecoin
Awesome - bought em yesterday... : )
you miss the train , bug has already solve since april now coin has a lot of progress.
scam coin alert https://bitcointalk.org/index.php?topic=740112.0
Is it? It seems also rather old, as often it happens.
Conjecture no evident at all, it's just clam to ruin reputation
Really appreciate you taking the time to share this! There is so much to keep up with in this crypto world!
Good to know. I'll transfer more fund to steem... :)
They already fix for 2 month sir , just error on node in process double spend
Careful bugs aboard!
thank you for the info and this was very interesting and makes me think of how too do it better
Already solve sir, just double spend bug. now u miss BCN train but the train always accept passages so read news in vary sources will make u benefit.
weird pump begin
Good catch on this man, thank you.
Hmm that´s actually a little scary, especially whenever you have a look on the value of some coins. It got a serious market that could experience a major drawback in case someone is successful on such a bug on a major coin... Especially as the public would then just be driven away even further from crypto.
great post! what with us that have some money in monero and dash?
he clearly said it's NOT DASH (dude, he stressed in all-CAPS that DasCoin is something different), read it!
XMR and DASH are safe, dont worry
thanks :)
Dash is Bitcoin-based and does not relate to this issue. DashCoin is Crptonote derived and was patched, although the Monero statement originally incorrectly said otherwise (may have been fixed now, I'm not sure).
thanks :)
@smooth I have been trying to contact you... Please check your messages on Chat! Thanks. Sorry for my unrelated comments here @kingscrown... he's a hard man to find sometimes!
Thanks for the update. Soo many of these pump and dumps on the market these days. I think it's important to research the team behind the coin first and foremost for long term investment. Otherwise it's essentially a dice roll.
Good to know. As I am still a newbie with crypto, does this mean that if endless supplies of those coins can be made from think air like in fiat currencies that that particular crypto will soon be worthless???
if somebody does the attack before its patched - then yes, it can be dumped to zero
It would be a problem for sure. Bitcoin had
bugsat least one important bug, and needed patch, too. It is important that everyone updates the software as soon as possible. Anyway, it seems to be an old scam, though I haven't double checked.Nice catch. Thanks for the heads up.
Whaaat? I was longing Monero!?!
XMR fixed the bug and found it, no worries here (unless the bug was exploited before patching)
Hehe, it is fine! I do have some, but I was referring to @meesterboom's crypto trading post. Good to have a heads up! Thanks!
Maybe edit the title slightly to "found and patched/fixed". Thanks for the info.
/Thomas
Something did seem really fishy about that bytecoin pump! Thanks for the info
They already fix for 2 month sir , just error on node in process double spend not pump,
It's call return
So those of us that only have Steem have nothing to worry about right???
Well, only those who're of high self-eSTEEM, of course ;)
thanks for alerting :)
They already fix for 2 month sir , just error on node in process double spend.
Bytecoin is not scam if I scam why poloniex bring into trade sir
Well I saw this yesterday (link below) and thought it interesting, but there are websites since 2015 that mine Doge coin; a game you play using a pick-axe, your doing the work while they get coins.
https://cointelegraph.com/news/wannacry-not-first-nsa-enabled-cyberattack-hackers-made-computers-mine-monero
What do you guys and gals think about gridcoin or ripple?
Wow this is new to me. I never heard!
They already fix for 2 month sir , just error on node in process of double spend.
let's take back on ETH bug the price down to 10$ now a day nearly 400$ so to good time to hold if you can
the fundamental on coin is stunning so let's learn more how good coin is
I like to invest in 3 coins, i start with litecoin....but what others can i choose, Some low cost who have potential to grow...i have zero exp in cryptoccurencie.
take time sir , before carbon to Dimond need time and high pressure
Dash not updating is disconcerting
That's fucked up.
Thanks for information @kingscrown
Already solve sir. now u miss BCN train but the train always accept passages so read news in vary sources will make u benefit.
Vote for me, please.
Lets avoid it..
It's funny to watch how bytecoin has been pumped like crazy recently. The project looks almost dead, has a non-functioning wallet (for Mac) and still it entered top 10 in market cap. To me it is proof you better watch out which train you jump on. Bytecoin is scratched from my list at least. I mined it this winter and sold the last pieces in the latest pump. Could have done better, but i dont care. There are better projects out there.
up voted for this information almost buy the dnote
Already solve sir, just double spend bug. now you miss BCN train but the train always accept passages so read news in vary sources will make u truly benefit.
hey, good job there! Check out my profile, if there is anything you like. If you could just upvote it, it would made my day.
Already solve sir, just double spend bug. now you miss BCN train but the train always accept passages so read news in vary sources will make u benefit.
Great!
I'm buying SWT, STEEM adn WAVES!
Steem on!
They already solve buy fix only error block don't fix in account balance. and they already fix at April so Menero clam at May to ruin surge phenomenal on Bytecoin .
Solid post. I was about to post a similair post. There's a lot of exchanges out there. I found that coinmarketcap.com gives quite a decent overview. Besides coinmarketcap.com there is: https://www.coincheckup.com Supposingly they researched every crypto coin in the scene based on: the team, the product, advisors, community, the business and the business model. They even score the coins stengths. Check for example: https://www.coincheckup.com/coins/Bytecoin#analysis To check Bytecoin Investment and research analysis.