Key Points:
Unciphered showed what’s called a “man-in-the-middle” hack of the wallet in a YouTube video where it was able to extract the mnemonic seed phrase, also known as the private key, from the OneKey Mini hardware wallet by exploiting a vulnerability.
The company said it used a field programmable gate array to intercept communications between the processor and the secure element, which contains the hardware wallet’s seed phrase, in order to take advantage of the absence of encryption between them.
“The FPGA is a high speed processor also known as a field programmable gate array, allowing us to iterate through different algorithms, bypass the wallet’s security and extract the mnemonics,” Unciphered said.
OneKey promptly patched the vulnerability after being contacted. The company stressed that a hypothetical assault, as shown by Unciphered, cannot be exploited remotely and would require both the crypto wallet of a user and specialized FPGA equipment, saying that no one was affected.
Recent attacks involving private keys are still ongoing. OracleSwap, a DEX protocol on the Songbird Network that allows users to earn interest for delegating their Flare and Songbird tokens, has been suspended due to compromised private keys.
On January 29, the FTSO provider revealed that the process of making its code open source had resulted in the compromise of its private keys. Delegates on OracleSwap have been asked by Flaremetrics to withdraw access and switch to different FTSO operators.
DISCLAIMER: The Information on this website is provided as general market commentary and does not constitute investment advice. We encourage you to do your own research before investing.
Join us to keep track of news: https://linktr.ee/coincu
Harold
Coincu News
Bitcoin transactions represent the movement of bitcoins from senders to receivers, digitally signed using cryptography…
Visa's new metric finds that over 90% of stablecoin transaction volumes lack genuine user engagement.
Data from Coinglass has unveiled staggering figures of liquidated contracts, shaking both seasoned investors and…
Over 84% of the staked Sui token supply is controlled by the founders, raising centralization…
The Coinbase class action lawsuit, echoing a previous case against the exchange, accuses it of…
Tether's CEO, Paolo Ardoino, highlights discrepancies in the Bitfinex data breach, revealing that only a…
This website uses cookies.