Topic: Reused R values again - page 16. (Read 121295 times)
Epic johoe!
I wish there were more like him. We sure need them!
Will johoe post an address so that we, the impressed spectators, can send him a few beers? Also, is blockchain.info rewarding this hero in anyway?
This is awesome. Great example set by U 
May I ask you that after creating an address, if I check it against these 2 lists and my address is not available among them, then am I safe ?
If not, then what is the way to check the safety of a new address ?
Since this thread was bumped, I think I should update it.
There seems to be a new buggy program that reuses the same R value for all signatures in a transaction. It started around September 2014. Because the program uses mostly unique addresses, the bug is not always exploitable. But reuse happened often enough to break over 400 new keys. The list is getting too long to post it here so here are the links:
http://johoe.mooo.com/bitcoin/broken.txt
http://johoe.mooo.com/bitcoin/endangered.txt
The first list contains the addresses whose private key can be computed from the block chain. The second list additionally contains addresses that were used by the faulty client but only in a context where it cannot be broken (unless I'm missing something).
Does anyone know what the buggy program is? Or does anyone recognize any of the more recent addresses?
Note that the addresses that appear only in the second list still may be in danger, e.g., if they stem from a BIP32 wallet and one knows the "xpub" public key.
It looks like there are some bots sweeping all funds that go to such a broken wallet.
There seems to be a new buggy program that reuses the same R value for all signatures in a transaction. It started around September 2014. Because the program uses mostly unique addresses, the bug is not always exploitable. But reuse happened often enough to break over 400 new keys. The list is getting too long to post it here so here are the links:
http://johoe.mooo.com/bitcoin/broken.txt
http://johoe.mooo.com/bitcoin/endangered.txt
The first list contains the addresses whose private key can be computed from the block chain. The second list additionally contains addresses that were used by the faulty client but only in a context where it cannot be broken (unless I'm missing something).
Does anyone know what the buggy program is? Or does anyone recognize any of the more recent addresses?
Note that the addresses that appear only in the second list still may be in danger, e.g., if they stem from a BIP32 wallet and one knows the "xpub" public key.
It looks like there are some bots sweeping all funds that go to such a broken wallet.
May I ask you that after creating an address, if I check it against these 2 lists and my address is not available among them, then am I safe ?
If not, then what is the way to check the safety of a new address ?
Hats off!!
Nicely done. Good to see positivism within the community.
congratulations
!!!
!!!
All white hats off to Johoe 
Tip that ChangeTip hat for him on Reddit people.
http://www.reddit.com/r/Bitcoin/comments/2otekd/white_hat_johoe_returns_255_btc_to_blockchaininfo/
We need more people like him/her in this world.
I have been thinking "Bitcoin" has lost the plot, with all the hacks and scamming going around, and then this happens.
It gives me hope in humanity!!
Tip that ChangeTip hat for him on Reddit people. http://www.reddit.com/r/Bitcoin/comments/2otekd/white_hat_johoe_returns_255_btc_to_blockchaininfo/
We need more people like him/her in this world.
I have been thinking "Bitcoin" has lost the plot, with all the hacks and scamming going around, and then this happens.
It gives me hope in humanity!!
Congratulations I bow before your gesture!
Congratulations ....
Congratulations ....
Amazing hero ! I think the bitcoin community need more users like you , great job 
.
. 
Wow Johoe what a guy.
Fucking hero.
Fucking hero.
The money has been returned to blockchain.info. Please write to blockchain support to claim refund.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
15tXHJCjehqCEL6zRCkGwvuDY6YzZV5sKP
-----BEGIN PGP SIGNATURE-----
Comment: GPGTools - http://gpgtools.org
iQEcBAEBAgAGBQJUh5AdAAoJEP3NqDUC96SQqH0H/3pTTawCXZWfWAwIoVQPkSYa
DgpioEvHLDHXegfAfXyo8X9vc50kEseQVeZ5FAvoeC3Hy76gNIgEDllP5o6FUXL2
HsEj7qcafY5AxlxMgRRG9p1OcbeJS6mlbZrjB78BD+zrtzZaLFoSAf4+lw3YZHg5
xvA0WyNoHE1Hzg8+pdPbg1PPN6dHT38+PCyqFgYIjkjq07UbxxtyyWs8KIQqSuTe
4XIh0gjd73Wqtxm4CAHtnwy0PA5Pi/lE7v0d6qqF2l86SlxDkT6067asMw9Te0JJ
WgnFM8fePrM8HU980n0xvamae7J71zlFMN2/RYfj2t/pTIEWz25ZI2iVS0MGg14=
=9MGK
-----END PGP SIGNATURE——
PGP key is available from https://blockchain.info/security.txt
https://blockchain.info/tx/ea8fa447d59000843910932a42bf7a28915772d97a006e97714d026b78885754
Quote
From: Ben Reeves <[email protected]>
If you could return the funds to address 15tXHJCjehqCEL6zRCkGwvuDY6YzZV5sKP that would be fantastic.
I should also add if that using our admin tools, if users supply us with the correct wallet information, we are able to accurately determine which refund claims are valid and which are not. So far we have processed over 30 refund requests and will be processing more over the rest of this week.
If you could return the funds to address 15tXHJCjehqCEL6zRCkGwvuDY6YzZV5sKP that would be fantastic.
I should also add if that using our admin tools, if users supply us with the correct wallet information, we are able to accurately determine which refund claims are valid and which are not. So far we have processed over 30 refund requests and will be processing more over the rest of this week.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
15tXHJCjehqCEL6zRCkGwvuDY6YzZV5sKP
-----BEGIN PGP SIGNATURE-----
Comment: GPGTools - http://gpgtools.org
iQEcBAEBAgAGBQJUh5AdAAoJEP3NqDUC96SQqH0H/3pTTawCXZWfWAwIoVQPkSYa
DgpioEvHLDHXegfAfXyo8X9vc50kEseQVeZ5FAvoeC3Hy76gNIgEDllP5o6FUXL2
HsEj7qcafY5AxlxMgRRG9p1OcbeJS6mlbZrjB78BD+zrtzZaLFoSAf4+lw3YZHg5
xvA0WyNoHE1Hzg8+pdPbg1PPN6dHT38+PCyqFgYIjkjq07UbxxtyyWs8KIQqSuTe
4XIh0gjd73Wqtxm4CAHtnwy0PA5Pi/lE7v0d6qqF2l86SlxDkT6067asMw9Te0JJ
WgnFM8fePrM8HU980n0xvamae7J71zlFMN2/RYfj2t/pTIEWz25ZI2iVS0MGg14=
=9MGK
-----END PGP SIGNATURE——
PGP key is available from https://blockchain.info/security.txt
https://blockchain.info/tx/ea8fa447d59000843910932a42bf7a28915772d97a006e97714d026b78885754
I cannot express my gratitude towards you. Thank you so very much for this. Sort-of a "Faith in Humanity Restored" moment right now.
Do you mind posting a Bitcoin wallet. As soon as I get the coins back from BlockChain.info; I'll be sure to send something.
Thanks! Rep ++ left.
The money has been returned to blockchain.info. Please write to blockchain support to claim refund.
...
https://blockchain.info/tx/ea8fa447d59000843910932a42bf7a28915772d97a006e97714d026b78885754
...
https://blockchain.info/tx/ea8fa447d59000843910932a42bf7a28915772d97a006e97714d026b78885754
Johoe well done!
People like you are a gem. Please accept this small reward from me for being an ethical hacker:
Let me know how to get it to you.
There was a tx signing bug in BitcoinJs which Counterwallet (a Counterparty web wallet) triggered. Counterwallet has been patched, and all users of Counterwallet should indeed generate new accounts and sweep all of their funds there.
See the original announcement.
See the original announcement.
Just quoting this in case anyone is confused about the whole situation. The issues affecting Blockchain.info have nothing to do with Counterwallet, and everything has been fixed there since ages.
Your parents should be proud of you, johoe!
That was awesome of you johoe 
Thanks Johoe that you are one of the good guys.
I would have done the same, but not everyone would have.
I would have done the same, but not everyone would have.
haven't seen this yet, so THIS IS GENTLEMEN!
THIS IS GENTLEMEN! 
Good to see this. Btw is there changetip for bct?
Johoe, you are heroic!
Thank you.
Ente
Thank you.
Ente
What about this claim, was it confirmed? It does not seem to have been picked up by @johoe.
That address is listed here near the very end: http://johoe.mooo.com/bitcoin/broken.txt
And johoe said that he didn't swipe them all:
The scale is also much bigger (500 addresses in one day, >200 BTC). I still count almost 300 unspent outputs (but I'm too lazy to swipe them all).
So I guess somebody else did... Too bad. But maybe it's another Good Samaritan.
Yeah, somebody else took it:
Quote from: Guy who lost 100BTC
joehoe has been an absolute huge help. I had 100 coins stolen, unfortunately after speaking to him he didn't catch my address.
Jump to: