Author

Topic: Need analysis on possible hack (Read 5386 times)

legendary
Activity: 1022
Merit: 1008
Delusional crypto obsessionist
May 29, 2015, 02:59:21 PM
#41
If I'm following this thread correctly, we still don't know which wallet software was used?  Is that correct?

Incorrect. We know which wallet it was, it's the same one that has had the same crap PRNG code gmaxwell has been complaining about for years: Blockchain.info Wallet. See post #35 directly above yours.

You're sure? I did not see OP say it was blockchain.info wallet.
Only someone else who had similar problems which could also be accidentally another wallet.

You think other wallets are coded to use exactly the same crap entropy source as Blockchain.info Wallet and generate the same exact private key for 1Bn9ReEocMG1WEW1qYjuDrdFzEFFDCq43F from exactly the same crap entropy source as Blockchain.info Wallet?

Uhm,.. No I don't.
I think are right if the same public key was used.
legendary
Activity: 3038
Merit: 1032
RIP Mommy
May 29, 2015, 02:57:00 PM
#40
If I'm following this thread correctly, we still don't know which wallet software was used?  Is that correct?

Incorrect. We know which wallet it was, it's the same one that has had the same crap PRNG code gmaxwell has been complaining about for years: Blockchain.info Wallet. See post #35 directly above yours.

You're sure? I did not see OP say it was blockchain.info wallet.
Only someone else who had similar problems which could also be accidentally another wallet.

You think any other wallets are coded to use exactly the same crap entropy source as Blockchain.info Wallet and generate the same exact private key for 1Bn9ReEocMG1WEW1qYjuDrdFzEFFDCq43F from exactly the same crap entropy source as Blockchain.info Wallet?

Anyway, I guess the best that can be done is to downvote the app on google play store?

I would if Google+ wasn't required to leave reviews. Even if it wasn't, we'd need a significant amount of the 58,208 out of 70,278 total reviewers to downgrade their 3-5 stars to 2s and 1s to lower the average enough for anyone to pay attention.
legendary
Activity: 1456
Merit: 1081
I may write code in exchange for bitcoins.
May 29, 2015, 02:55:35 PM
#39
If I'm following this thread correctly, we still don't know which wallet software was used?  Is that correct?

Incorrect. We know which wallet it was, it's the same one that has had the same crap PRNG code gmaxwell has been complaining about for years: Blockchain.info Wallet. See post #35 directly above yours.

Got it now (although post #35 contains some links to reddit, which I didn't click, I suppose that's where I woulda found the info).  Anyway, I guess the best that can be done is to downvote the app on google play store?  The only android wallet I've used is Andreas' and it's been great.
legendary
Activity: 1022
Merit: 1008
Delusional crypto obsessionist
May 29, 2015, 02:42:31 PM
#38
If I'm following this thread correctly, we still don't know which wallet software was used?  Is that correct?

Incorrect. We know which wallet it was, it's the same one that has had the same crap PRNG code gmaxwell has been complaining about for years: Blockchain.info Wallet. See post #35 directly above yours.

You're sure? I did not see OP say it was blockchain.info wallet.
Only someone else who had similar problems which could also be accidentally another wallet.
legendary
Activity: 3038
Merit: 1032
RIP Mommy
May 29, 2015, 02:07:37 PM
#37
If I'm following this thread correctly, we still don't know which wallet software was used?  Is that correct?

Incorrect. We know which wallet it was, it's the same one that has had the same crap PRNG code gmaxwell has been complaining about for years: Blockchain.info Wallet. See post #35 directly above yours.
legendary
Activity: 1456
Merit: 1081
I may write code in exchange for bitcoins.
May 29, 2015, 01:33:42 PM
#36
If I'm following this thread correctly, we still don't know which wallet software was used?  Is that correct?

@amaclin above who mentioned law of excluded middle.  While it's true that any proposition is true or it's contradictory is true, it's completely possible that dude has a bad PRNG & was hacked.  There's no logical reason why both can't be true---they're not contradictories.
legendary
Activity: 3038
Merit: 1032
RIP Mommy
May 29, 2015, 02:58:09 AM
#35

They got a complete refund - https://www.reddit.com/r/Bitcoin/comments/37ei2b/ive_just_been_hacked_6_btc_to/cro88o3

Breakdown - https://www.reddit.com/r/Bitcoin/comments/37oxow/the_security_issue_of_blockchaininfos_android/crolfk4

If you believe that you were negatively impacted by this issue, please contact our support team: https://blockchain.zendesk.com/home

If I owned bitcoin.com I'd have gathered a bunch of translators and made a hitchhikers guide to bitcoin, with bc.i's entry having instructions on how to safely GTFO.
hero member
Activity: 737
Merit: 500
member
Activity: 65
Merit: 10
May 25, 2015, 12:15:56 PM
#33
amazon apk
legendary
Activity: 1456
Merit: 1000
May 21, 2015, 09:44:44 AM
#32
PRNG bug for sure or a hack. Its not possible to generate the same priv key for a random address that was used, this might be a PRNG bug that actually made that event possible or someone has hacked the way onto your cellphone.

Not revealing the wallet is a really big mistake and unethical thing to do.

Also it helps track if other users get this error with wallet.   I see no reason it is a secret on wallet.  Since you already had a problem, releasing the wallet is not going to hurt you more.  I would switch wallets from whatever it is.

Do you install any games/apps from "untrusted sources"?  For the fun of it have you tried to use one of the phone anti virus's to see if it finds anything?

*After reading and typing all this just saw date.... I hate when old threads are bumped up.
hero member
Activity: 518
Merit: 500
May 20, 2015, 08:14:23 AM
#31
the wallet you downloaded might have generated a week bitcoin address with reused r values. u can see more about it here https://now.avg.com/android-bitcoin-vulnerability-explained/  u should use only official and updated  software
newbie
Activity: 3
Merit: 0
May 20, 2015, 02:30:34 AM
#30
Hi, something similar happened to me. I installed Blockchain Wallet, created a new address and got this 1Bn9Re...
https://bitcointalksearch.org/topic/how-was-my-mobile-wallet-hacked-1065804
full member
Activity: 196
Merit: 103
March 20, 2015, 11:55:32 AM
#29
PRNG bug for sure or a hack. Its not possible to generate the same priv key for a random address that was used, this might be a PRNG bug that actually made that event possible or someone has hacked the way onto your cellphone.

Not revealing the wallet is a really big mistake and unethical thing to do.

An unethical dev could also insert code in the wallet that would occasionally "generate" an address that he already has the privkey for. These might be pre-made and hardcoded into the walletsoftware, so there wouldn't even be signs of nefarious network traffic, or previous usage of said keys. The only way to be reasonably sure the wallet software is legit is to review it's source, then compile it yourself. In general with mobile wallets, don't store more BTC than you can afford to lose.

On the other hand, it's also important to present proper evidence, as anyone could really make an accusation against any wallet-developer. But if the wallet developer chose to, he could make available the source code for review, which would prove without doubt that the source code does not contain anything nefarious. Of course there could be malicious code inserted in the distribution process by a party with the necessary resources to do so.

I am not very familiar with deterministic builds myself, but here's an article about it:
http://www.conifersystems.com/2008/10/17/build-determinism/

Basically, the same input, should give the same output, so interested parties can run sha256sum on the binaries, to check they're legit, also checksums can be signed by the developer. If you download an app from any appstore, and there's no such security mechanisms in play, how can you be sure the software is legit?

Also, it's worth noting that for a very popular mobile wallet, if only a very low percentage of users are hit with theft, the overall negative impact will probably not be very big, so for the unethical dev, this brings a small but steady income stream.

Personally I think all possible details should be disclosed to the community as early as possible
legendary
Activity: 1143
Merit: 1000
March 08, 2015, 01:49:57 PM
#28
PRNG bug for sure or a hack. Its not possible to generate the same priv key for a random address that was used, this might be a PRNG bug that actually made that event possible or someone has hacked the way onto your cellphone.

Not revealing the wallet is a really big mistake and unethical thing to do.
member
Activity: 112
Merit: 10
March 08, 2015, 09:55:22 AM
#27

Have you tried to contact kidcratedigger? Might be he thought that was a donation...

I just realized because I didn't read carefully before.   Just sent off the email.   

It is now looking a lot more like a PRNG bug than a malicious hack.
legendary
Activity: 1358
Merit: 1001
https://gliph.me/hUF
March 08, 2015, 08:17:40 AM
#26

Have you tried to contact kidcratedigger? Might be he thought that was a donation...
legendary
Activity: 1260
Merit: 1019
March 08, 2015, 06:58:00 AM
#25
I think it is probable that it is a weak PRNG, but it may be that the device was compromised and altered the PRNG seed in some way.
tertium non datur
member
Activity: 112
Merit: 10
March 08, 2015, 06:33:32 AM
#24
The key was "generated" on Mar 7th.
Can you sign a message with a private key of 1Bn9ReEocMG1WEW1qYjuDrdFzEFFDCq43F to be sure that you own this private key?

Seems to me that your application has bad random number generator.


Code:
amspir owns this key.

IFLrTIFGi3t8H1zVuKhr4FScU0RUgUWU26U8dpIyCT7XMXB0HmEFJt6ouyBTwpyhOz+3WcydRU7FQauHuyBxZGg=

I think it is probable that it is a weak PRNG, but it may be that the device was compromised and altered the PRNG seed in some way.

Mostly, I am wondering if the output transactions appear "suspicious", such as going to a mixer, which would imply that the other key owner targeted this address on purpose.  The address does have a public label, not set by me, on blockchain.info of "000000"
legendary
Activity: 1260
Merit: 1019
March 08, 2015, 06:13:01 AM
#23
The key was "generated" on Mar 7th.
Can you sign a message with a private key of 1Bn9ReEocMG1WEW1qYjuDrdFzEFFDCq43F to be sure that you own this private key?

Seems to me that your application has bad random number generator.
member
Activity: 112
Merit: 10
March 08, 2015, 06:03:19 AM
#22
I used an Android wallet, which I do not want to name just yet, pending the developer's response to the situation.
With the wallet, I generated the new address  1Bn9ReEocMG1WEW1qYjuDrdFzEFFDCq43F

1) when?
2) is this your site? http://kidcratedigger.weebly.com/contact--donations.html

The key was "generated" on Mar 7th.  Not my site.  None of the transactions are mine, except for the input transaction on that date for 2.57~ btc which was initiated by myself by sending coin from localbitcoins.   I have verified that I do have the private key by signing then verifying a message with that address.


legendary
Activity: 1260
Merit: 1019
March 08, 2015, 03:35:57 AM
#21
I used an Android wallet, which I do not want to name just yet, pending the developer's response to the situation.
With the wallet, I generated the new address  1Bn9ReEocMG1WEW1qYjuDrdFzEFFDCq43F

1) when?
2) is this your site? http://kidcratedigger.weebly.com/contact--donations.html
member
Activity: 112
Merit: 10
March 07, 2015, 10:27:43 PM
#20
Was the wallet you used a recent release? From a new source?

The wallet has been installed on my phone for about a year through Google Play.   The version on my phone was up-to-date when I checked it after the theft.

member
Activity: 112
Merit: 10
March 07, 2015, 10:17:04 PM
#19
Actually you should mention the app so people don't happen to lose coins if its a wallet bug.

Exactly, if there is a problem it would be good to know now so we can stop other people losing there bitcoins. It is unfortunate you lost yours but we should try to stop others losing theirs aswell if possible.

It would be irresponsible to blame the wallet app publicly if the fault lies in my phone being compromised.   I am in contact with support, and would like to give them a chance to figure out the cause and make it right, if they are to blame.  So far, they are assuming malware, since they claim they don't have reports of similar problems from other users.  If they drop the ball, they will be named. 

If it is a wallet bug, it must be due to a rare condition and not widespread.
 
donator
Activity: 1218
Merit: 1079
Gerald Davis
March 07, 2015, 10:09:12 PM
#18
Without providing the name of the wallet and source code it is impossible to say but you are doing the community a huge disservice by keeping the name of the wallet hidden.  

There are two likely possibilities:
a) your phone was compromised by malware
b) the wallet developer is grossly incompetent

If it is a wallet error you won't be the last person affected and maybe the next victim loses 10x or 100x as much.  The longer you wait the more victims and the greater the total losses.  If the issue is unrelated to the wallet then an open review of the code will reveal that.  Keeping the wallet and developer a secret doesn't help anyone.  An ethical developer would probably compensate you for bringing it to light and an unethical one is going to tell you tough luck even if you keep their secret.
hero member
Activity: 812
Merit: 1000
March 07, 2015, 10:01:43 PM
#17
Actually you should mention the app so people don't happen to lose coins if its a wallet bug.

Exactly, if there is a problem it would be good to know now so we can stop other people losing there bitcoins. It is unfortunate you lost yours but we should try to stop others losing theirs aswell if possible.
legendary
Activity: 1260
Merit: 1116
March 07, 2015, 09:57:36 PM
#16
DEVELOPERS:  When your wallets generate new addresses, you should be putting in a trap that detects if a newly generated address has previous activity, and alert you to the problem which would indicate a weak PNR.


Good point, and lesson learned for USERS as well: When trying out a new wallet, check the blockchain for previous activity on the initial addresses generated in the wallet. That's more than a huge red flag, that's a shout-your-screaming-head-off-to-alert-everyone kind of thing. If keys are being developed like they should, this should NEVER happen within the confines of this universe.

There was news about a month ago about the possibility of hackers releasing wallets with the potential for pre-designated keys. They could then monitor the blockchain and sweep funds from them, even offline, cold wallets, etc., since they would already have the corresponding private keys. I wonder if this is possibly what happened with you. Was the wallet you used a recent release? From a new source?

He prefers not to say...
legendary
Activity: 1708
Merit: 1036
March 07, 2015, 09:54:29 PM
#15
DEVELOPERS:  When your wallets generate new addresses, you should be putting in a trap that detects if a newly generated address has previous activity, and alert you to the problem which would indicate a weak PNR.


Good point, and lesson learned for USERS as well: When trying out a new wallet, check the blockchain for previous activity on the initial addresses generated in the wallet. That's more than a huge red flag, that's a shout-your-screaming-head-off-to-alert-everyone kind of thing. If keys are being developed like they should, this should NEVER happen within the confines of this universe.

There was news about a month ago about the possibility of hackers releasing wallets with the potential for pre-designated keys. They could then monitor the blockchain and sweep funds from them, even offline, cold wallets, etc., since they would already have the corresponding private keys. I wonder if this is possibly what happened with you. Was the wallet you used a recent release? From a new source?
sr. member
Activity: 378
Merit: 250
March 07, 2015, 09:34:13 PM
#14
Actually you should mention the app so people don't happen to lose coins if its a wallet bug.
member
Activity: 112
Merit: 10
March 07, 2015, 08:24:52 PM
#13
The only thing that intrigues me here is this : u generated new address and it previously had activity on it, before its creation ?
that shouldnt be possible if theres not something wrong with app.

Yes, apparently that is what happened.  It was "generated" within the wallet app a few minutes before sending money to it in the previously mentioned transaction.

It was probably was using a flawed RNG when creating the address. A huge red flag should have been the fact that there was activity on an address when you created the address, the fact that funds were spent from the address 100% means that someone else controls the private keys

When I created the address, it showed no activity -- likely due to the wallet not be immediately updated with the current block chain information.

 
hero member
Activity: 504
Merit: 500
March 07, 2015, 08:17:31 PM
#12
The only thing that intrigues me here is this : u generated new address and it previously had activity on it, before its creation ?
that shouldnt be possible if theres not something wrong with app.

Yes, apparently that is what happened.  It was "generated" within the wallet app a few minutes before sending money to it in the previously mentioned transaction.

It was probably was using a flawed RNG when creating the address. A huge red flag should have been the fact that there was activity on an address when you created the address, the fact that funds were spent from the address 100% means that someone else controls the private keys

For an amount that small I don't think blockchain analysis is going to help you at all. Your best bet would be to find them via the android market
member
Activity: 112
Merit: 10
March 07, 2015, 08:17:04 PM
#11
Well what kind of wallet was it already?

I'm extending the courtesy of not naming the wallet, which is popular, until I can determine if it is actually the developer's fault or if my phone has compromised.
member
Activity: 112
Merit: 10
March 07, 2015, 08:13:46 PM
#10
Generate a few addresses and check if they also have previous activity or have you already done that?

I generated 4 more addresses, and none of them had previous activity.

DEVELOPERS:  When your wallets generate new addresses, you should be putting in a trap that detects if a newly generated address has previous activity, and alert you to the problem which would indicate a weak PNR.

legendary
Activity: 1260
Merit: 1116
March 07, 2015, 08:13:32 PM
#9
Well what kind of wallet was it already?
member
Activity: 112
Merit: 10
March 07, 2015, 08:09:00 PM
#8
Where did you use the internet when you got funds or the such? If it was in a public place there is a chance someone may have been sniffing it (I think that is correct terminology ahah) and seen your address and login info there.

Through the Verizon 3G data network.
member
Activity: 112
Merit: 10
March 07, 2015, 08:07:25 PM
#7
where did u get the wallet from ? if downloaded from unreliable source, it could have been infected, and also the more probable version is that your android device
was previously backdoored from some game/app etc.

Again, never rooted.  The phone is rather limited in memory, so I'm not in the habit installing or trying out new apps.   All the apps that I've knowingly installed come direct from the Google playstore, plus a couple of already-paid-for apps through the Amazon appstore.   Other than installing the Amazon appstore's apk file, I have not installed anything on the phone that didn't come through those app stores. 

Quote
The only thing that intrigues me here is this : u generated new address and it previously had activity on it, before its creation ?
that shouldnt be possible if theres not something wrong with app.

Yes, apparently that is what happened.  It was "generated" within the wallet app a few minutes before sending money to it in the previously mentioned transaction.
hero member
Activity: 812
Merit: 1000
March 07, 2015, 07:54:31 PM
#6
Where did you use the internet when you got funds or the such? If it was in a public place there is a chance someone may have been sniffing it (I think that is correct terminology ahah) and seen your address and login info there.
newbie
Activity: 20
Merit: 0
March 07, 2015, 07:52:19 PM
#5
Generate a few addresses and check if they also have previous activity or have you already done that?
legendary
Activity: 1722
Merit: 1000
Satoshi is rolling in his grave. #bitcoin
March 07, 2015, 07:48:35 PM
#4
I just lost over 2.5 bitcoins.

I used an Android wallet, which I do not want to name just yet, pending the developer's response to the situation.

With the wallet, I generated the new address  1Bn9ReEocMG1WEW1qYjuDrdFzEFFDCq43F then sent 2.57386667 btc from localbitcoins to that address, which is txid 47b689d108a33c05405332169d3a0eb96ded33ce711fcd498ead1ba5e2b72328.   This is the only transaction that I initiated with this address.

Later, when planning to move the money to paper wallets, I discovered that this address had previous activity on it, and that most of the money was swept from that address after my transaction confirmed.  There are several transactions afterwards which sweep the remaining money out of that address.

I suspect either that this problem is due to a collision from a poor PNR, or it was a malware attack.

Anyone with insight on tracing btc transactions want to comment?


where did u get the wallet from ? if downloaded from unreliable source, it could have been infected, and also the more probable version is that your android device
was previously backdoored from some game/app etc.
whatever you do, it wont bring you your bitcoins back, but you should explore your phone , or give it to someone who might shed some light so that something like this doesnt happen again.

The only thing that intrigues me here is this : u generated new address and it previously had activity on it, before its creation ?
that shouldnt be possible if theres not something wrong with app.

cheers
member
Activity: 112
Merit: 10
March 07, 2015, 07:44:14 PM
#3
Is your phone rooted?

Nope.  It is a Verizion prepaid Samsung SCH-I200PP currently running android 4.1.2.
 
legendary
Activity: 896
Merit: 1000
March 07, 2015, 07:40:35 PM
#2
Is your phone rooted?
member
Activity: 112
Merit: 10
March 07, 2015, 07:36:37 PM
#1
I just lost over 2.5 bitcoins.

I used an Android wallet, which I do not want to name just yet, pending the developer's response to the situation.

With the wallet, I generated the new address  1Bn9ReEocMG1WEW1qYjuDrdFzEFFDCq43F then sent 2.57386667 btc from localbitcoins to that address, which is txid 47b689d108a33c05405332169d3a0eb96ded33ce711fcd498ead1ba5e2b72328.   This is the only transaction that I initiated with this address.

Later, when planning to move the money to paper wallets, I discovered that this address had previous activity on it, and that most of the money was swept from that address after my transaction confirmed.  There are several transactions afterwards which sweep the remaining money out of that address.

I suspect either that this problem is due to a collision from a poor PNR, or it was a malware attack.

Anyone with insight on tracing btc transactions want to comment?
Jump to: