iSpace News - iSpace News - Latest Vulnerability News

Telecoms protocol from 1975 exploited to target 20 crypto executives

At least 20 crypto executives and customers of an Israeli telecommunications company were targeted in a sophisticated SS7 attack last month. Hackers compromised the Telegram messenger and email accounts of multiple cryptocurrency executives last month by exploiting a vulnerability in a decades old protocol. The fraudsters are believed to have been trying to intercept two-factor authentication codes of victims in an attack on Israel-based telecommunications provider Partner Communications Company, formerly known as Orange Israel. The attacks are currently being investigated by Israel’s National Cyber Security Authority, and national intelligence agency Mossad. According to cybersecurity publication Bleeping Computer, the devices of at least 20 Partner clients were compromised.

Coin Telegraph - 20th Oct 06:10 - SS7 Attack, Pandora Security, Signaling System 7, Sim-swap, Attack, Telecommunications, Cyber Security, Email, Vulnerability, Victims, Customers, Target, The, Authentication

A Version of Bitcoin’s Lightning Has Unknown Vulnerability

Newly discovered potential exploits affect older versions of Lightning Network Daemon software, said Lightning Labs.

Decrypto - 9th Oct 12:10 - Bitcoin, Lightning Network, Network, Lightning, Software, Lightning Labs, Vulnerability, Unknown

Vulnerability Strikes Lightning Network

A vulnerability in LND versions 0.10.x and below has been found and disclosed to the Lightning Labs, the developer of the Lightning Network. The Lightning Network team, which is working on scaling and speeding up Bitcoin (BTC) transactions, has been warned of a vulnerability in their Lightning Network Daemon (LND).

CryptoNews - 9th Oct 09:10 - Bitcoin, Lightning Network, Bitcoin (BTC), Network, Lightning, Lightning Labs, LND, Vulnerability, The

Lightning network vulnerability discovered, upgrade immediately

The lightning vulnerability was made public on Oct 9. Lightning network node operators running LND versions prior to the Oct.

Coin Telegraph - 9th Oct 03:10 - Lightning Network, Network, Lightning, LND, Vulnerability, Operators, Upgrade, The, Bitcoin

Lightning Vulnerability Discovered; Ind Node Operators Urged to Upgrade ASAP

An undisclosed vulnerability in LND versions 0.10.x and below was revealed Thursday with developers urging node operators to update to the newest version.

Coindesk - 9th Oct 01:10 - Lightning Network, Lighting Labs, Lightning, LND, Vulnerability, Operators, Upgrade, The, Bitcoin

Hackers Drain $15 Million From ‘Unreleased’ Yearn Finance Project

A smart contract vulnerability allowed hackers to mint unlimited tokens and sell those for millions of dollars—before returning half the funds to Yearn founder Andre Cronje.

Decrypto - 29th Sep 07:09 - Ethereum, Hacks, Funds, Smart Contract, Andre Cronje, Yearn Finance, Vulnerability, YEarn Finance, Yearn

Ripple (XRP) Price Indicators Show Vulnerability To A Sharp Decline

Ripple is facing an uphill task near the $0.2500 resistance against the US Dollar.

NewsBTC - 21st Sep 09:09 - Ripple, Dollar, Us, Near, Vulnerability

In Devs We Trust: Bitcoin Bugs Die in Secret, Leaving Altcoins At Risk

Bitcoin (BTC) is regularly championed as the most secure cryptocurrency out there, but even it’s vulnerable to the occasional bug, also meaning that BTC forks might be suffering from the same problem. This unavoidable fact was brought home at the beginning of September, when a research paper revealed that Bitcoin harbored a severe denial-of-service vulnerability.

CryptoNews - 19th Sep 11:09 - Bitcoin, Altcoins, Bitcoin (BTC), Research Paper, Trust, Vulnerability, Paper

Bitcoin Engineers Rediscover Huge Blockchain Vulnerability

A vulnerability in the Bitcoin network—now fixed—could have led to entire systems of nodes being shut down.

Decrypto - 13th Sep 18:09 - Bitcoin, Blockchain, Nodes, Vulnerability

‘High’ Severity Bug in Bitcoin Software Revealed 2 Years After Fix

A previously undisclosed bug in Bitcoin Core could have let attackers steal funds, delay transfers or split the network had it not been patched in 2018.

Coindesk - 9th Sep 13:09 - Bitcoin Core, Bitcoin, Vulnerability, Network, 2018, Funds, Software, Split

Trezor Fixes New Vulnerability, KeepKey Working On It; New Malware Targets Wallets

Swiss hardware wallet provider Shift Crypto said it has disclosed a vulnerability in the Trezor and KeepKey hardware wallets that could allow for potential ransom attacks – while a potentially nasty new malware strain is threatening to cause widespread wallet theft if left unchecked. The vulnerability can potentially be exploited when users enter passphrases on their

CryptoNews - 3rd Sep 12:09 - Bitcoin, Hacks, Hardware Wallet, Can, Theft, Trezor, Vulnerability, Hardware Wallets, KeepKey

Ethereum vulnerable to frontrunners: Researcher

Bots abound. Ethereum may be vulnerable to frontrunners according to Dan Robinson, a research partner with the crypto-asset investment firm Paradigm. Robinson said in a blog post, the design of Ethereum’s mempool, or a set of unconfirmed transactions, is where the vulnerability lies.

Coin Telegraph - 30th Aug 22:08 - Ethereum, Bots, Mempool, Unconfirmed Transactions, Vulnerability

Institutional crypto interest hasn’t been affected by COVID-19

In a world where almost every asset has shown vulnerability, digital assets have proven themselves to be reliable. The coronavirus pandemic has truly been a watershed event — not just for the financial industry but for the world at large.

Coin Telegraph - 30th Aug 08:08 - Event, Assets, Vulnerability

Over $1 Billion Ethereum-Based Tokens Vulnerable to ‘Fake Deposit Exploit’

A number of university researchers published a study that demystifies the “fake deposit vulnerability” in Ethereum-based smart contracts.

Bitcoin.com - 28th Aug 00:08 - 1 Billion, CEX, Deposafe, DEX, ERC20, ERC20 Tokens, ETH Tokens, ETH-based Smart Contracts, Ethereum, Fake Deposit, Fake Deposit Exploit, Subpar Verification, Type-I Attack, Type-II Attack, Verification Methods, Vulnerability, University