Skip to main content

The Daily: Privacy Coin Strength Debated, Hardware Wallet Exploit Demonstrated

In Tuesday’s edition of The Daily, we detail the theoretical vulnerability found in the Coldcard crypto wallet, coming just one month after its manufacturer ridiculed the flaw found in other hardware wallets. Sticking with vulnerabilities, we also consider the risks of leaving your funds on an exchange in the wake of Liqui’s demise and examine how private zcash transactions really are.

Also read: Italian Court Orders Bitgrail Founder to Refund $170M of ‘Missing’ Cryptocurrency

Coldcard Subjected to Proof-of-Concept Hack

Coldcard, the hardware wallet (HW) developed by Coinkite, is vulnerable to a theoretical man in the middle attack that would enable its PIN code to be tried multiple times a second. The attack would require physical access and specialist hardware to perform, but was nevertheless deemed serious enough for Coinkite to publish a blog post encouraging users to select a long PIN code. The white hat hacker who found the exploit, Lazy Ninja, shared his findings with Coinkite, along with a video demonstrating it in action.

As Coinkite explains, “His approach takes between 5 and 10 seconds per PIN attempt … Although we allow very short PIN codes—even just four digits (2+2) for development—as explained in our documentation, best practice is using an eight digit PIN code (4+4), which is what we recommend.” In December, Coinkite published a blog post titled “Some Other Wallets.fail” which poked fun at other manufacturers’ devices that were exploited by the Wallet Fail team.

Liqui Exchange Shuts Down Citing Lack of Liquidity

On Jan. 28, Liqui exchange sent an email to its users stating that: “Much to our regret … Liqui is no longer able to provide liquidity for the users left. We also do not see any economic point in providing you with our services.” It’s promised users that they will be able to withdraw their assets within 30 days of the notice. Speculation has swirled as to the reasons behind the exchange winding down.

Traders have reported withdrawal issues with Liqui for months, and were disgruntled in late December to find updated terms that deducted 3.33 percent per day after a zero-fee withdrawal period ended. Given the shadiness of the Ukraine-registered exchange, whose owners are unknown, its exit from the cryptocurrency space will not be mourned by traders who were able to withdraw all of their holdings in time.

Zcash Privacy Debated

The level of privacy provided by zcash (ZEC) has been fiercely debated this week in the wake of comments from the Winklevoss twins that regulators were more “comfortable” with the coin than monero (XMR). “In theory Zcash has better privacy than Monero. Is there something they know about ZEC that we don’t?” responded well-known cryptographer Peter Todd. He later directed his Twitter followers to a tweet highlighting a ZEC feature that enables transactions to be marked for the purposes of meeting “mandatory KYC/AML bullshit.”

In a separate Twitter debate on Jan. 28, another user ranked the privacy levels of ZEC and XMR, suggesting that the most private method was sending zcash between z-addresses, followed by using monero with lots of “churn” to further obfuscate sender and receiver. “This is quite accurate,” agreed Monero developer Riccardo Spagni.

What are your thoughts on the stories in today’s news roundup? Let us know in the comments section below.

Images courtesy of Shutterstock.

Need to calculate your bitcoin holdings? Check our tools section.

The post The Daily: Privacy Coin Strength Debated, Hardware Wallet Exploit Demonstrated appeared first on Bitcoin News.



from Bitcoin News http://bit.ly/2G05WXt
Labels:

Comments

Post a Comment

Popular posts from this blog

Deep Web Roundup: Dream Adds Monero and Bitcoin Tumbler “Chip Mixer” Launches

The darknet has been quiet of late, which is the way it’s meant to be. No news means no mega busts, honeypots, or mass market shutdowns. Even when it’s out of the spotlight though, the deep web is quietly making news, whether trialling the latest privacy coins or the newest coin mixers that promise to restore a little of the privacy that’s being stripped away from bitcoin users on a daily basis. Also read: U.S. Agency ICE Conducts Investigations That Exploit Blockchain Activity The Battle for Privacy Heats Up Privacy is all relative, but of late there’s been relatively little privacy to be enjoyed by bitcoin users. Blockchain monitoring software is becoming more sophisticated and more common, with U.S. law enforcement agencies using it to profile and hunt down deep web users. Chip Mixer is a relatively new bitcoin tumbler that’s designed to restore some of that privacy. Available on both the clearnet and darknet, the service uses a variety of techniques to obfuscate blockchain m...
10 comments
Read more

International Crypto Exchange Luno Adds Bitcoin Cash Trading

Luno exchange has added bitcoin cash trading to the platform following feedback from its client base. BCH is now only the third cryptocurrency available for trading on the exchange, in addition to BTC and ETH , but more options could be on the way once Luno determines that they are credible enough. Also Read: Bitflyer Adds Bitcoin Cash Trading Across Europe and the US Luno Adds Bitcoin Cash Trading Luno, the London-headquartered company formerly known as Bitx, recently announced that bitcoin cash was made available on its cryptocurrency exchange. Starting from Monday, September 23, customers at Luno are now able to store, buy and sell BCH on the platform. The reason given for adding BCH to the exchange is feedback from users in developing markets that convinced Luno to expand their offering from previously just BTC and ETH . Marcus Swanepoel, CEO of Luno, said , “We are in a new and exciting financial era. Developing economies are leading the large-scale adoption and appli...
Post a Comment
Read more

Ombudsman Receives Complaints About Crypto Investments in Spain

The Spanish ombudsman has been receiving complaints about cryptocurrency and how some Spanish citizens investing in these vehicles have lost everything. In his annual report, Angel Gabilondo recognized the rise of cryptocurrencies as a new problem due to the little or no regulation crypto sees in the country. In the same way, the EU has also warned about these assets recently. Spanish Ombudsman Gives His Take on Crypto Angel Gabilondo, the Spanish ombudsman, has given his take regarding cryptocurrencies and the effects they have on citizens investing in some of these projects. Gabilondo said in his yearly report that cryptocurrencies have become “a new problem” during the year examined, with many people having lost all of their funds invested. The report states : Cryptocurrency exchange companies or platforms are not regulated in the legal system, are not subject to any public supervision system, nor do they benefit from deposit guarantee systems. The affected users that sought...
Post a Comment
Read more