Zcoin?

[simonbtc]

What else can the exchanges do? The most recent blocks show that the attacker is still minting away, see the 100 XZC transactions:

https://chainz.cryptoid.info/xzc/block.dws?21758.htm

https://chainz.cryptoid.info/xzc/block.dws?21749.htm

The transaction is a Zcoin Spend which moves money from the private pool to the public pool.  The attacker's fraudulent Zcoin Spend transactions are being accepted as valid by nodes when instead they (and the block) should be rejected as invalid.

I don't think the bug is due to a simple typo.  I believe it's somewhere in the implementation of the verification code, which looks like its full of repeated blocks of copy and paste code.  Posted more info here:

https://makebitcoingreatagain.wordpress.com/2017/02/18/is-the-zcoin-bug-in-checktransaction/

In terms of resolution, the following would be prudent:

To demonstrate that the bug has been fixed, all the fraudulent Zcoin Spend transactions found on the blockchain should be run through a patched CheckTransaction and detected as invalid.

[PovertyByte]

https://letstalkbitcoin.com/blog/post/the-crypto-show-with-gary-le-of-zcoin

here is an interview with developer.


From the show:


They are related in the sense that the academic community often see ZCoin as the stabler, more secure, and more proven cryptocurrency - whereas ZCash is seen as the more experimental coin using more dangerous and risky cryptography. For example, ZCoin uses the Zerocoin paper, which has been cited about 200 times by academic scholars, according to Google Search. And ZCash is cited about only half as many times. So ZCoin has about twice as much support from cryptography scholars as ZCash, because it’s based on much more stable and proven cryptography. On the other hand, ZCash has a lot fewer cryptography citations because it is based on something called ZK-Snarks, which only a few people in the world have researched.

Because ZCash is based on more risky cryptography, ZCash has this critical problem that ZCoin doesn’t face. ZCash attempts to conceal the amount of money sent in a transaction. By doing this, if ZCash has a major bug or double-spending problem, it would be unnoticed and someone could drain tens or hundreds of millions of dollars away from the ZCash market cap without anybody noticing a double spend.

Any project that involves new cryptography, including projects like ZCash, faces vulnerabilities. As we’ve seen with the Ethereum DAO project, about two hundred million dollars was drained away. Luckily, that money was recovered through a bailout because it was noticed and viewable on the public blockchain. But if ZCash faced a bug, it could potentially see hundreds of millions of dollars drained from its market cap and ZCash would be worth a lot less for speculators.

Spreading fud on ZCash backfires, hacker creates ZCoins out of thin air almost doubling all the coins in existence and dumps on gullible speculators on exchanges over multiple weeks.

https://zcoin.io/language/en/important-announcement-zerocoin-implementation-bug/

Zerovert devs create yet another batch of victims.

The bug got fixed in short time. Also due to ZCash hiding transaction quantities this bug would have been much harder to detect if it were happening on ZCash. The ZCoin model allowed for this to be more easily detected and resolved as a result.

For the time before anybody realized this problem was occurring, the price was actually going up in spite of the dumping.

Now if this problem were to happen to ZEC, I can bet you that the ZCL and KMD developers would manage to fix their coins before the ZEC devs do.