Bitcoin Forum
January 26, 2020, 09:47:46 AM *
News: Latest Bitcoin Core release: 0.19.0.1 [Torrent]
 
   Home   Help Search Login Register More  
Pages: [1]
  Print  
Author Topic: #BitcoinIsSafe & #WasabiIsSafe | false positives campaigns  (Read 90 times)
hugeblack
Legendary
*
Offline Offline

Activity: 938
Merit: 1079


Avatar for Rent for 3 weeks. PM me


View Profile
January 14, 2020, 10:13:32 AM
Merited by TryNinja (1), DroomieChikito (1)
 #1

I saw this tag spread on Twitter so I liked to share it here.
Many of Wasabi's wallet users have reported that computer security algorithms for Avira, Bitdefender, and Kaspersky confuse Bitcoin full nodes with unwanted mining software (that runs in the background and steals processing power) hence Wasabi and Bitcoin core is known as "system infections."
Consequently, this campaign began to encourage members to report anti-virus software to regard BitcoinCore and Wasabi as "false positives."


Read more ----> https://bitcoinmagazine.com/articles/wasabi-wallet-launches-bitcoinissafe-campaign-to-counter-erroneous-antivirus-detections
Report using ---> https://docs.wasabiwallet.io/building-wasabi/FalsePositive.html#email-template

1580032066
Hero Member
*
Offline Offline

Posts: 1580032066

View Profile Personal Message (Offline)

Ignore
1580032066
Reply with quote  #2

1580032066
Report to moderator
1580032066
Hero Member
*
Offline Offline

Posts: 1580032066

View Profile Personal Message (Offline)

Ignore
1580032066
Reply with quote  #2

1580032066
Report to moderator
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1580032066
Hero Member
*
Offline Offline

Posts: 1580032066

View Profile Personal Message (Offline)

Ignore
1580032066
Reply with quote  #2

1580032066
Report to moderator
1580032066
Hero Member
*
Offline Offline

Posts: 1580032066

View Profile Personal Message (Offline)

Ignore
1580032066
Reply with quote  #2

1580032066
Report to moderator
1580032066
Hero Member
*
Offline Offline

Posts: 1580032066

View Profile Personal Message (Offline)

Ignore
1580032066
Reply with quote  #2

1580032066
Report to moderator
ETFbitcoin
Legendary
*
Offline Offline

Activity: 1890
Merit: 2168

Use SegWit and enjoy lower fees.


View Profile WWW
January 14, 2020, 11:48:09 AM
 #2

Further discussion can be found here https://bitcointalk.org/index.php?topic=5215945.0

Looks like the campaign is somehow effective according to https://twitter.com/coinforensics/status/1216430197085495297

pooya87
Legendary
*
Offline Offline

Activity: 1890
Merit: 2271


Remember tonight for it's the beginning of forever


View Profile
January 15, 2020, 04:16:51 AM
Merited by mk4 (1), hugeblack (1), o_e_l_e_o (1)
 #3

i don't want to be a wet blanket but this doesn't seem like a useful move to me. people shouldn't rely on their anti viruses in first place. as they have false positives, they also have the opposite (not recognize malicious software). example is all the fake Electrums that have been stealing users money over the past year.

a much better campaign would have been to encourage users to verify not trust. whether their anti virus tells them something they've downloaded is a malware or not they should not trust that thing until they verify it. AV is there as a suggestion, that is why they all have an option to whitelist files.

both bitcoin core and wassabi wallet have PGP signatures that could be verified for those who download the binaries and want to trust the developers + others who have verified the binaries' hashes. and they both support deterministic builds which means anybody can compile the code and verify if the hash of their build matches the hash of what the team released. and being open source means the source has been looked at and the more popular the project the less the chance of having anything malicious inside.

hugeblack
Legendary
*
Offline Offline

Activity: 938
Merit: 1079


Avatar for Rent for 3 weeks. PM me


View Profile
January 15, 2020, 06:20:24 AM
Merited by ETFbitcoin (1)
 #4

both bitcoin core and wassabi wallet have PGP signatures that could be verified for those who download the binaries and want to trust the developers + others who have verified the binaries' hashes.

Your words are true, but the reality is different.
I think it depends on who receives such news.
If you are a beginner, it is difficult for you to choose who you trust and therefore the default trust in antivirus programs as a first step for these beginners, "it is easier to setup and check."
Getting a negative feedback from these applications is a negative indicator for anyone who wants to use Bitcoin.

Pmalek
Legendary
*
Offline Offline

Activity: 1190
Merit: 1222



View Profile
January 15, 2020, 09:52:31 AM
 #5

example is all the fake Electrums that have been stealing users money over the past year.
My guess would be that the same Anti Virus vectors that flag the official Electrum software as malicious would also flag the fake versions.
My systems have never flagged Electrum as a malware and I wonder what would happen if I downloaded one of the fake wallets.

It is not really a malicious software when you think about it. it is used to send Bitcoin transactions just like the original Electrum releases. The only malicious part of it is the clipboard hijacker. I don't know if some of the fake Electrum wallets also come with additional malware like password stealers, keyloggers etc.

████████████████████████████
████████▀▀ █▀ █▀ ▀██████████
█████████▄ ▄▄▄▄▄▄███████████
██████████▀     ▀  ▀████████
███████▀ ▀  ▄█▀▀▀█▀▀████████
██████▄      █▄  ▀▀  ▀██████
██████         ▄▄█▄ ▄ ▀█████
█████ ▄         ▀▀ ▄ ▀ █████
██████▌          █▀█▀ ▐█████
███████  ▄▌         ▄ ██████
████████▄█         ▄████████
█████████▀     ▄▄ ▄█████████
████████████████████████████
.JACKMATE'S...........
.
MAJESTIC..
████████████████████████
███████████████████████
████████████████████████
████████████████████████
████████████████████████
████████████████████████
████████████████████████
████████████████████████
████████████████████████
████████████████████████
████████████████████████
████████████████████████
████████████████████████
.
..WIN 1 BITCOIN ON EVERY PREMIER LEAGUE MATCHDAY..
████████████████████████████████
████████████▀█▀ ▀█▀█▀███████████
███████████▄ ▄▄▄▄▄▄▄████████████
███████████▀▀▄▄▄▄▄▄▄▄███████████
█████████▀▄ ██▀▄▄▄ ▀ ▄▀█████████
███████▀ ▀█████▄▄▄█▄▄▄██████████
███████▀▄████████▀  ▀█ █▐███████
███████ ▀█████████▄█▀▀██ ███████
████████ ███▀██████ ▄ ██ ███████
████████▌▐▀▄ ██████████ ▄███████
█████████▄██▌▐█████▀██ █████████
████████████▄▀▀▀▀▀▄ ▀▄██████████
████████████████████████████████
.
.JOIN US - IT'S FREE! .
o_e_l_e_o
Legendary
*
Offline Offline

Activity: 812
Merit: 3398


Decent


View Profile
January 15, 2020, 03:36:05 PM
Merited by ETFbitcoin (1), Pmalek (1)
 #6

If you are a beginner, it is difficult for you to choose who you trust and therefore the default trust in antivirus programs
I agree with you, but perhaps we need to educate newbies a little bit about this. People think antivirus programs are completely trustworthy, based on nothing. If you believe your anti-virus or you believe your bitcoin wallet is down to trust. Both are being developed by people you (presumably) don't know personally, and don't know if you can trust. The former is likely closed source; the latter should be open source, and in the case of Bitcoin Core, Electrum, or any of the other major wallets, will have had its code widely reviewed. Even if you don't or can't review the code yourself, I'd be picking the latter.

The only malicious part of it is the clipboard hijacker.
The fake 4.0.0 Electrum wasn't a clipboard hijacker. Instead, as soon as you opened it, it would attempt to sweep your wallet to the attacker's address. Anyone who used Electrum stand-alone (as in, not paired with a hardware wallet) had all their coins lost instantly. They didn't need to copy and paste anything for this to happen.

mk4
Legendary
*
Offline Offline

Activity: 1190
Merit: 1107


Vires in Numeris


View Profile WWW
January 15, 2020, 04:48:18 PM
 #7

i don't want to be a wet blanket but this doesn't seem like a useful move to me. people shouldn't rely on their anti viruses in first place. as they have false positives, they also have the opposite (not recognize malicious software). example is all the fake Electrums that have been stealing users money over the past year.

a much better campaign would have been to encourage users to verify not trust. whether their anti virus tells them something they've downloaded is a malware or not they should not trust that thing until they verify it. AV is there as a suggestion, that is why they all have an option to whitelist files.

both bitcoin core and wassabi wallet have PGP signatures that could be verified for those who download the binaries and want to trust the developers + others who have verified the binaries' hashes. and they both support deterministic builds which means anybody can compile the code and verify if the hash of their build matches the hash of what the team released. and being open source means the source has been looked at and the more popular the project the less the chance of having anything malicious inside.

I'm for users verifying what they download and install on their computer, but I can guarantee it's going to be a difficult move to convince everyone, especially the older crowd, and the less tech-savvy crowd. You're probably underestimating how much people don't even know how to navigate computers that much, but instead rely too much on their iPhones. Having an antivirus put's their minds at peace I guess, even though I personally don't use antiviruses either. I'd say giving publicity to these false positives for both of these wallets is a decent temporary solution.

ETFbitcoin
Legendary
*
Offline Offline

Activity: 1890
Merit: 2168

Use SegWit and enjoy lower fees.


View Profile WWW
January 16, 2020, 10:05:55 AM
 #8

If you are a beginner, it is difficult for you to choose who you trust and therefore the default trust in antivirus programs
I agree with you, but perhaps we need to educate newbies a little bit about this. People think antivirus programs are completely trustworthy, based on nothing. If you believe your anti-virus or you believe your bitcoin wallet is down to trust. Both are being developed by people you (presumably) don't know personally, and don't know if you can trust. The former is likely closed source; the latter should be open source, and in the case of Bitcoin Core, Electrum, or any of the other major wallets, will have had its code widely reviewed. Even if you don't or can't review the code yourself, I'd be picking the latter.

To be fair, people who use AV for long time will realize AV isn't 100% trustworthy or 100% accurate, even if they're beginner.

But as @hugeblack mentioned, people would likely to trust AV rather than Bitcoin or any application they use for first time. They need advice from someone else or really need to use the application to do otherwise.

Pages: [1]
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!