Hope someone with more indepth technical knowledge can comment on the following;

http://hackingdistributed.com/2013/11/04/bitcoin-is-broken/

Here below full article:

Bitcoin is broken. And not just superficially so, but fundamentally, at the core protocol level. We're not talking about a simple buffer overflow here, or even a badly designed API that can be easily patched; instead, the problem is intrinsic to the entire way Bitcoin works. All other cryptocurrencies and schemes based on the same Bitcoin idea, including Litecoin, Namecoin, and any of the other few dozen Bitcoin-inspired currencies, are broken as well.

Specifically, in a paper we placed on arXiv, Ittay Eyal and I outline an attack by which a minority group of miners can obtain revenues in excess of their fair share, and grow in number until they reach a majority. When this point is reached, the Bitcoin value-proposition collapses: the currency comes under the control of a single entity; it is no longer decentralized; the controlling entity can determine who participates in mining and which transactions are committed, and can even roll back transactions at will. This snowball scenario does not require an ill-intentioned Bond-style villain to launch; it can take place as the collaborative result of people trying to earn a bit more money for their mining efforts.

Conventional wisdom has long asserted that Bitcoin is secure against groups of colluding miners as long as the majority of the miners are honest (by honest, we mean that they dutifully obey the protocol as proscribed by pseudonymous Nakamoto). Our work shows that this assertion is wrong. We show that, at the moment, any group of nodes employing our attack will succeed in earning an income above their fair share. We also show a new bound that invalidates the honest majority claim: under the best of circumstances, at least 2/3rds of the participating nodes have to be honest to protect against our attack. But achieving this 2/3 bound is going to be difficult in practice. We outline a practical fix to the protocol that is easy to deploy and will guard against the attack as long as 3/4ths of the miners are honest.

We need the Bitcoin community's help in deploying this fix so that the Bitcoin ecosystem can be made more robust, at least against attackers whose mining power is below the 25% threshold. Even with our fix deployed, however, there is a problem: there are mining pools at the moment that command more than 25% of the mining power, and, in the past, there have been mining pools that commanded more than 33% of the mining power. We need the Bitcoin community's awareness and concerted effort to ensure that no mining pool reaches these thresholds. The mere possibility that the system can get into a vulnerable state will be an impediment to greater adoption of Bitcoin.

Those of you who want a precise and full explanation of the attack can cut straight to the research paper, though it may be a bit terse and dry. In the rest of this blog entry, we will outline the attack for the non-hard-core practitioner, such that by the end of the blog entry, anyone should understand the intuition behind our attack, be equipped to earn higher revenues through mining, and possess the tools required to usurp the currency. To get to this point, we need a little bit of background on how Bitcoin works. If you're familiar with Bitcoin mining, you can skip to the next section that describes how the attack works. If you are a non-techie Bitcoin user, you can skip straight to the Implications section.
The Blockchain
Cash for gold.

The key idea behind Bitcoin's success is a decentralized protocol for maintaining a global ledger, called a blockchain. The blockchain records transactions between Bitcoin addresses, tracking the movement of every Bitcoin as it changes hands. This tracking ensures that no one can double-spend a coin, as the ledger makes it all too apparent whether a user sent out more Bitcoins from his account than he earned. The particular way in which Bitcoin tracking is performed makes sure that the record is also immutable; once a Bitcoin transaction is committed and buried in the blockchain, it is difficult for an attacker to reverse the transaction, so that a merchant can ship goods in good conscience, assured that the transaction will later not be reversed.

This protocol works through a process called mining. In essence, the ledger is organized into a single, ordered sequence of blocks, each of which records a set of transactions. Each block contains a crypto-puzzle, a computationally difficult challenge akin to a CAPTCHA. Miners organize themselves into a loosely-organized, distributed network, and they all concurrently try to add a new block to the ledger. To do this, they need to discover the solution to a crypto-puzzle, formed by the contents of the ledger until the point where the new block is being added. Solving a crypto-puzzle is hard work; a computer has to plug in many different values and see if they solve the crypto-puzzle posed by the new block. The puzzles are such that a home computer working alone will take many years to solve a crypto-puzzle. Some people use GPUs to speed up this process, while others have invested in custom ASICs designed to solve Bitcoin crypto-puzzles.

Of course, this process is not free, as the process of solving these crypto-puzzles consumes power and requires cooling. For the currency to be viable, the miners need to be compensated for their efforts. Bitcoin miners are compensated through two mechanisms: they collect the transaction fees from the transactions recorded in the new block they contributed to the block chain, and they also collect a lump sum fee. This lump sum fee creates new Bitcoins, according to a time-varying formula. Hence, "mining" is similar to digging for gold -- every now and then, a miner is rewarded with a nugget. The difficulty of crypto-puzzles are automatically adjusted such that a new block is added to the ledger approximately every 10 minutes, which ensures a predictable coin generation rate for the system, which stems inflation and makes the currency supply more predictable than it would be otherwise.

The nice thing about having crypto-puzzles that are so difficult is that it is not practical for an attacker to modify the ledger. Someone who wants to, say, buy something from a Bitcoin merchant, get the goods shipped, and then later change that block to erase the transfer of money to the merchant, faces a very difficult task: they need to find alternative solutions to cryptopuzzles for that block and every subsequent block. What makes this difficult is that the main bulk of the miners will be working hard on adding new blocks at the tail end of the ledger, so an attacker, with limited resources, cannot hope to find alternative solutions for all the past blocks and catch up to the rest of the miners.

Miners today organize themselves into groups known as pools. A pool will typically consist of a set of cooperating nodes that share their revenues whenever they find blocks. Mining pools are kind of like the shared tip jar at a restaurant: on occasion, a miner will hit the potluck, discover a good solution to a cryptopuzzle, and rake in some revenues, kind of like a waiter who lands a big table that runs a large tab. Since this occurs relatively infrequently from the point of view of any given miner, sharing the proceeds enables the miners to have more predictability in their lives.
The Attack
Cash for gold.

The honest Bitcoin protocol assumes that all miners engage in a benign strategy where they quickly and truthfully share every block they have discovered. Until now, everyone assumed that this was the dominant strategy; no other strategy was known that could result in higher revenues for miners.

Our work shows that there is an alternative strategy, called Selfish-Mine, that enables a mining pool to make additional money at the risk of hurting the system. In Selfish-Mining, miners keep their block discoveries private to their own pool, and judiciously reveal them to the rest of the honest miners so as to force the honest miners to waste their resources on blocks that are ultimately not part of the blockchain.

Here's how this works in practice. Selfish miners start out just like regular miners, working on finding a new block that goes at the end of the blockchain. On occasion, like every other miner, they will discover a block and get ahead of the rest of the honest miners. Whereas an honest miner would immediately publicize this new block and cause the rest of the honest miners to shift their effort to the newly established end of the chain, a selfish miner keeps this block private.

From here, two things can happen. The selfish miners may get lucky again, and increase their lead by finding another block. They will now be ahead of the honest crowd by two blocks. They keep their new discovery secret as well, and work on extending their lead. Eventually, the honest miners close the gap. Just before the gap is closed, the selfish pool publishes its longer chain. The result is that all the honest miners' work is discarded, and the selfish miners enjoy the revenue from their previously secret chain.

The analysis of revenues gets technical from here, and the only way to do it justice is to follow along the algorithm and state machine provided in our paper. But the outcome is that the selfish mining pool, on the whole, nullifies the work performed by the honest pool through their revelations.

The success of the attack, and the amount of excess revenue it yields, depends on the size of the selfish mining pool. It will not be successful if the pool is below a threshold size. But this threshold is non-existent in the current implementation -- selfish mining is immediately profitable. Our proposed fix raises the threshold to 25% if universally adopted. And, while there may be other fixes, no fix can raise it above 33%. So, at least 2/3rds of the Bitcoin miners have to be honest. All three of these findings are a far cry from the 50% previously (and falsely) believed to protect the currency.
The Implications
Cash for gold.

The selfish mining strategy has significant implications for the Bitcoin system:

        The members of a selfish mining pool will earn more revenue than honest participants: This means that rational, self-interested miners, who typically invest significant amounts of money in their rigs, will want to join selfish miners instead of follow the honest strategy.

        Once launched and successful, selfish mining pools will grow in size: There are no mechanisms in place to exert any kind of pressure to break up a selfish mining pool.

        Selfish mining is harmful to the Bitcoin community: Selfish miners bring down revenues for everyone. The fact that a selfish mining attack can be launched, and a selfish pool can grow in size until it controls the currency, is a deterrant to people, like the Winklevii, who are drawn to the decentralized nature of Bitcoin.

        This attack is practical right now with any size mining pool: Anyone can launch this attack successfully right now, and make revenues in excess of what they would otherwise make.

        Under the best theoretical conditions, Bitcoin requires at least 2/3rds of the miners to be honest: It was previously believed that the Bitcoin ecosystem was safe as long as a majority were honest. Our analysis shows that this is wrong. If a selfish-mining pool were to command 1/3rd (33%) of mining power, it'll always be in a position to make excess revenues over honest miners.

        We propose a practical fix that will protect against selfish mining as long as pools command below 25% of the mining power: The fix is simple to apply. It would be a good idea for the Bitcoin community to adopt it.

        There are mining pools in existence that can conceivably launch successful selfish mining attacks: At the moment, any mining pool can launch a successful mining attack. With our proposed fix, only pools above 25% can launch the attack, but there exists a pool of this size right now. And there have even been pools that commanded more than 33% of the mining power in the past.

FAQ
Cash for gold.

Some frequently asked questions:

        What happens when a selfish mining group is formed?

    Once a group of selfish miners appear on the horizon, rational miners will preferentially join that mining group to obtain a share of their higher revenues. And their revenues will increase with increasing group size. This creates a dynamic where the attackers can quickly acquire majority mining power, at which point the decentralized nature of the Bitcoin currency collapses, as the attackers get to control all transactions.

        When a single pool controls the currency, does the value of a Bitcoin go to $0?

    No. It all depends on how the controlling group runs the currency. But the decentralization, which in our view is so critical to Bitcoin's adoption, is lost. It would not be at all healthy for the Bitcoin ecosystem.

        Does this affect X, where X is another cryptocurrency?

    Probably. It affects every currency system that is inspired by Bitcoin's blockchain. That includes Litecoin, PPcoin, Novacoin, Namecoin, Primecoin, Terracoin, Worldcoin, and a host of other currencies that share the same global ledger concept.

        What's the core discovery here?

    We're the first to discover that the Bitcoin protocol is not incentive-compatible. The protocol can be gamed by people with selfish interests. And once the system veers away from the happy mode where everyone is honest, there is no force that opposes the growth of really large pools that command control of the currency.

        Is selfish mining happening now?

    We cannot know for sure, but we suspect not. Ours is the first work to publicly investigate an alternative mining strategy.

        What's with these two separate thresholds? Do 2/3rds of the nodes have to be honest? Or 3/4ths? Why is there a gap between the two?

    At the moment, the threshold is non-existent. With our proposed fix, which is practical and easy to deploy, it gets raised to 25%; i.e. 3/4ths of the network must be honest. Perhaps someone can propose a fix that raises this threshold further, but we have shown that they cannot raise it above 2/3rds.

        Would we be able to tell a selfish mining pool from any other pool?

    Not easily. A selfish mining pool can hide behind throwaway addresses to mask its identity. And while the timing of block revelations does look different for selfish miners, it's difficult to tell who was genuinely first, as near-concurrent revelations will arrive in different orders at hosts.

        Is there a danger associated with making this attack public?

    The only way to protect the system against selfish mining attacks is to get everyone to change their implementations. So the only way we can protect the system is by publicizing the potential attack. We have chosen not to launch the attack ourselves, because we care about the long-term viability of the currency.

        Can Bitcoin remain a viable currency?

    Probably. We have shown that as long as selfish miners are below a certain threshold, they will not succeed. And while this threshold does not exist yet (i.e. selfish mining will immediately yield benefits for any sized pool), we have a proposed fix that raises the threshold to 25%.

Why worry about those clowns ? That whole bitcoin foundation idea is just a get-rich-scheme for whoever joins it on the longterm. Compare it to politicians trying to create solutions for non-existing problems. Community should just ignore them and let them whawle.  You think they give a shit about bitcoin or principles ? I believe most if not all are trying to find ways to use (read: abuse) bitcoin for their own agendas.

Only thing everyone needs to know is; change bitcoin for the worse and it'll go up in smoke making people choose an alternative coin, period

Why not, the more choice the better !

Don't think litecoin is dead, more like a backup or alternativ to bitcoin.

That is the beauty about bitcoin, decentralized ! No one must control 50 %+

I was considering https://www.privateinternetaccess.com/ but they are physically in the u.s with a u.k office. Guess that's out of the question now.

I think Gox got alot of funds frozen so they can't do bankwires. I don't think they're telling the whole truth yet. So the only way out is by withdrawing BTC so far.

They probably have good intentions but anyone stopped and thought about that they might be under a gag-order which prevents them from explaining the whole situation ?

Looks like it's from a datacenter for servers.

Interesting, if they switch to a corporate account then many laws protecting "consumer" accounts don't apply. Also with a corporate account with most banks they can do alot more with the funds, for good and bad.

All fine with me, as long as the "foundation" does not get any kind of power to force bitcoin(developers) to go a specific route. They better stay a not-for-profit organisation which people voluntarily can support to spread the message and do independend research for the good of all.

The problem with paypal is that they always want to play "safe", especially for being a u.s company. Just take for example the donations to Wikileaks or others where instead of simply doing their job by getting a donation from A to B they get involved in politics.

Ah ok, i thought you'd simply adjust the bitcoind code responsible for decryption to remove such delay

Does anyone know if MtGox is audited by a reputable thirdparty ?

I don't think satoshi is 1 person but rather a few people, a group. It is also very likely that they or one might still be involved in the development or communicating anonymously with the community "leaders"

Thank you for the info !

Only one thing, the limitation of 10 per second is just coded in the client software right ? So a programmer can change that and recompile the client and this allows you to use all you got in computing power.

Storage is dirt cheap nowadays, i guess the only issue is when your drive crashes or the data gets corrupted you'll have to redownload it.

Maybe far fetched but i think they have issues on the level of governments on their shoulders. A new SWIFT code suddenly could also mean that those who tap SWIFT transactions want it to be easy to track every transfer to Gox using a unique SWIFT code.

Pfff, when will joe sixpack wake up and discover this right/left bullshit is just a way to keep people away from the real source of issues.

Currency Controls in Cyprus Increase Worry About Euro System
By ANDREW HIGGINS
Published: July 9, 2013

NICOSIA, Cyprus — On a visit to Athens this year, Marios Loucaides, a Cypriot businessman, saw an apartment he liked in the heart of the Greek capital and decided to buy it. He told the owner he would seal the deal with a bank transfer — the price was 170,000 euros, about $220,000 — once he got back to Cyprus.Marios Loucaides, a Cypriot entrepreneur, had a deal collapse after he was prevented from moving euros to Greece.


Alexandros Diogenous, whose company imports cars from Germany, lamented the disparity in interest rates between Cyprus and the rest of the euro zone.After returning home, however, Mr. Loucaides discovered that the euros he had on deposit here in Nicosia, the capital, could not be moved to Greece, even though the two countries share the same currency and, in theory at least, the same commitment to the free movement of capital.The apartment deal collapsed. And so, too, did Mr. Loucaides’s belief that Europe has a common currency. Tangled in restrictions imposed in March as part of a bailout for the country’s ailing banks, a euro in Cyprus is no longer the same as one in France, Germany or Greece.

“A Cyprus euro is a second-class euro,” said Mr. Loucaides, the managing director of the Cyprus Trading Corporation.

Capital controls, once a tool used frequently by governments in times of crisis, have become extremely rare in Europe, though they are not unknown. Iceland, which is not a member of the European Union and uses its own currency, imposed them in 2008 after its three main banks imploded.

With a gross domestic product of about $23 billion and shrinking, Cyprus is little more than a rounding error in the $9.5 trillion euro zone economy. But Cyprus is also the first nation using the euro to restrict the flow of capital, raising a crucial question: Has the breakup of the euro zone — something European leaders have been struggling to prevent for three years with frantic summit meetings in Brussels and a series of bailout packages worth hundreds of billions of euros — in fact already started?

President Nicos Anastasiades of Cyprus certainly thinks so. “Actually, we are already out of the euro zone,” he said, citing restrictions on the movement of euros from Cyprus as evidence that his country’s money now has a different status and value from that in France, Germany and the 14 other European Union nations that use the currency.

“It is a peculiar situation,” Mr. Anastasiades said in an interview.

The rules of the European Union, enshrined in the 1992 Maastricht Treaty, ban restrictions on the movement of capital, but the measures by Cyprus have been endorsed by the European Central Bank and the union’s executive arm, the European Commission, as essential to prevent money from fleeing the country. While the European Central Bank declined to comment on the Cyprus situation, officials in Brussels say they remain firmly committed to maintaining the euro as a single currency.

Nevertheless, many financial experts say Cyprus has, in effect, made a “silent, hidden exit” from the euro, said Guntram B. Wolff, the director of Bruegel, a Brussels research group. Despite a softening of restrictions, he added, “the euro in Cyprus is still not the same as a euro in Frankfurt.”

The rigid capital controls introduced in March have been steadily relaxed, but they still snarl businesses and ordinary Cypriots in a web of red tape.

Within certain, and constantly changing, limits, individuals and companies can now make transfers abroad and between banks in Cyprus, operations that were initially prohibited. However, they need to present invoices and other documents to justify moving their money. Transfers over 500,000 euros, about $640,000, by a company — and 300,000 euros, about $380,000, by an individual — require the central bank’s approval.

It is still forbidden to cash checks or to open a new account unless a previous one existed at the same bank. Individuals can withdraw no more than 300 euros a day, while the limit for companies is currently set at 500 euros. Signs at airports warn passengers that it is illegal to carry more than 3,000 euros out of the country.

All these rules and the paperwork they create add to the cost of many transactions, effectively reducing the value of the euro in Cyprus compared with a freely movable euro in the rest of the euro zone.

“Our euro looks like a euro and feels like a euro, but it is not really a euro,” said Alexandros Diogenous, the chief executive of Unicars, a company in Nicosia that imports cars made by the VW Group in Germany.

One measure of this, Mr. Diogenous said, is the wide gap in interest rates between Cyprus and the rest of the euro zone. “I’m paying 7.75 percent on long-term loans, but my partners in Germany are paying 3 to 4 percent,” he said.

But this issue is increasingly academic: most banks in Cyprus have stopped issuing loans altogether.

Mr. Diogenous said that getting authorization to transfer money abroad to pay for his vehicles initially took 10 days or longer and was a significant obstacle to business. It now takes just 24 hours, a headache but just about a bearable one.

The taint now attached to a euro in Cyprus “challenges the very essence of a common currency area,” said Harris Georgiades, the new finance minister. He said he planned to lift all restrictions by the end of the year, but first needed to get unspecified help from the European Central Bank to ensure Cyprus’s banking system could withstand the jolt.

A big problem with capital controls is that, once imposed, they tend to linger longer than anyone anticipates because fear builds up over what might happen once they are gone. The controls introduced in Iceland are still in place five years later. The Cypriot authorities initially said their controls would last just a week and then extended them to a month. They have now been in force for four months.

But while already partly out of the euro zone, Cyprus still does not enjoy the main advantage of having a wholly separate currency: the freedom to devalue. In the European Union, this is a prerogative held only by Britain, Sweden and other countries that kept their national currencies.

Michael Kammas, director general of the Association of Cyprus Banks, an industry lobbying group, said his organization favored swiftly lifting all restrictions, which have created a deep wariness abroad of dealing with Cypriot banks and are hampering trade. A letter of credit issued by a bank in Cyprus, for example, is now rarely accepted abroad or even within Cyprus, forcing traders to pay for goods in cash.

But no one is eager to see the controls lifted too soon. Mr. Kammas cautioned against doing so until confidence returned to a banking system shattered by the March closing of Cyprus’s insolvent second-biggest bank, Laiki, the confiscation of money held by its big depositors and the freezing of all but a small portion of deposits over $130,000 at the Bank of Cyprus, the country’s biggest financial institution.

But removing restrictions in a country where nobody, not even bankers, trusts banks would probably lead to a flood of money out of the country and the collapse of the entire banking system, said Theodore Panayotou, an economist and the director of the Cyprus International Institute of Management.

When the European Commission and the International Monetary Fund demanded that Cypriot bank depositors and investors holding bonds from these banks suffer losses as part of the bailout deal, they set a precedent that has since become a central element of Europe’s banking crisis strategy. At a meeting in Brussels last month, European Union finance ministers endorsed the “bail-in” as a necessary part of bailouts for banks in the future.

Mr. Panayotou says he believes that by detaching Cyprus from the rest of the euro zone, albeit in an informal way, European policy makers have taken the experiment one step further and are now testing what happens when the common currency is no longer really common. But officials in Brussels insist they have no such hidden agenda.

Dimitris Bounias contributed reporting from Nicosia, and Jack Ewing from Frankfurt.

I still have to read some more about zerocoin but if it's true from what it is designed to do and being a kind of extension to bitcoin for anonymity then by all means !