|
Title: Duplicate nonce hack nets 59 coins, worth $45,000 Post by: Blinken on November 22, 2013, 10:50:10 PM The recently published paper "Elliptic Curve Cryptography in Practice" by Joppe Bos et al at Microsoft Research, technical report number MSR-TR-2013-119, reveals that due to use of the same nonce in some 158 addresses it was possible reverse the keys for those addresses. However, unfortunately, by the time Bos had got there, Goldilocks had already swept the accounts into the address 1HKywxiL4JziqXrzLKhmB6a74ma6kxbSDj. A graph study revealed that there were two sources of the duplicate nonce problem, Bitcoincard, and Blockchain Info's defective wallet generator (http://www.coindesk.com/blockchain-info-issues-refunds-to-bitcoin-theft-victims/), as reported last August. They also discovered at least 75 coins sent to invalid public keys, including 68 coins with public key 0.
Title: Re: Duplicate nonce hack nets 59 coins, worth $45,000 Post by: jackjack on November 22, 2013, 10:53:23 PM They also discovered at least 75 coins sent to invalid public keys, including 68 coins with public key 0. Invalid public key? So pay-to-public-key? |