[2017-12-16] Mist Browser’s bug discloses private keys

[Rick Nolan]

Yesterday the Mist team published a warning on the Ethereum blog stating that Mist Browser Beta has a bug that could potentially allow private keys to be stolen by malicious websites. The vulnerability affects Mist Browser Beta v0.9.3 and below.

The warning highlights how security update discrepancies across Mist, its underlying platform Electron, and the Chromium browser could compromise data privacy.

Read more: https://hype.codes/mist-browsers-bug-allows-private-keys-be-stolen

Do you use Mist browser?

[1714794242]

1714794242

[1714794242]

1714794242

[MoonJeina]

Yesterday the Mist team published a warning on the Ethereum blog stating that Mist Browser Beta has a bug that could potentially allow private keys to be stolen by malicious websites. The vulnerability affects Mist Browser Beta v0.9.3 and below.

The warning highlights how security update discrepancies across Mist, its underlying platform Electron, and the Chromium browser could compromise data privacy.

Read more: https://hype.codes/mist-browsers-bug-allows-private-keys-be-stolen

Do you use Mist browser?

No , I don't use Mist Browser
I don't understand , instead of stating the problem and the risk of leaking the private keys why the developers did not think about implementing some changes in the version by making the browser more secure . Who would like to use  a browser that can cost the user its privacy and the private keys ?
That would definitely effect its  number of users.                               

[iamTom123]

Yesterday the Mist team published a warning on the Ethereum blog stating that Mist Browser Beta has a bug that could potentially allow private keys to be stolen by malicious websites. The vulnerability affects Mist Browser Beta v0.9.3 and below. The warning highlights how security update discrepancies across Mist, its underlying platform Electron, and the Chromium browser could compromise data privacy. Read more: https://hype.codes/mist-browsers-bug-allows-private-keys-be-stolen Do you use Mist browser?

No , I don't use Mist Browser. I don't understand , instead of stating the problem and the risk of leaking the private keys why the developers did not think about implementing some changes in the version by making the browser more secure . Who would like to use  a browser that can cost the user its privacy and the private keys? That would definitely effect its  number of users.                               

Maybe they are divulging out the problem in the spirit of transparency and as a form of warning for their users while the problem has not yet been cleared. This is just telling us that as long as we are using third-party wallet there is no such thing as absolute security for our coins or tokens. It is then imperative for us to soon invest in offline wallet which can be more secured and truly under our own control. Security has and will always be a big concern for many of us in the world of cryptocurrency...this has become another industry unto itself. Hope the Mist team have already done the necessary actions to remedy the situation and to avoid the same occurrence again in the future.

[veleten]

....which will affect approximately all 11 users of  Mist browser!
also the number will decrease significantly now
I can't imagine anyone in their right mind using some non mainstream browser to perform sensitive operations