Hackers can jack ShapeShift’s crypto wallets in 15 minutes, Kraken warns

Channel:
United Kingdom Colin Boyd SEO
Subscribers:
4,200
Published on ● Video Link: https://www.youtube.com/watch?v=fZb2HrsWQEs


Duration: 2:25
62 views
0

Reported today on TheNextWeb

For the full article visit: https://thenextweb.com/hardfork/2019/12/10/cryptocurrency-shapeshift-keepkey-wallet-cold-hacker-voltage-attack/

Hackers can jack ShapeShift's crypto wallets in 15 minutes, Kraken warns

KeepKey has a new vulnerability to deal with

Cybersecurity researchers have disclosed a glaring vulnerability in the KeepKey cryptocurrency hardware wallet that allows physical attackers to steal funds in just 15 minutes.

Kraken Security Labs' latest blog details a "voltage glitching" attack that extracts the encrypted seed used to access cryptocurrency stored on the device.

An attacker can then brute force the encrypted seed, as it is simply protected by a 1-9 digit PIN, which the firm described as "trivial."

Worse still, researchers warn that fixing this flaw is no easy feat  - the KeepKey team reportedly can't do anything about it without redesigning the hardware.

"The attack takes advantage of inherent flaws within the micro-controller that is used in the KeepKey," said Kraken Security Labs.

KeepKey wallets are sold by cryptocurrency exchange platform ShapeShift.

KeepKey apparently needs to be completely redesigned

"Voltage glitching" refers to maliciously controlling the power supply of a micro-contr



Other Videos By Colin Boyd SEO


2019-12-11Hawa Dawa monitors air quality block-by-block to help cities make decisions
2019-12-11The DOJ is reportedly investigating Google's acquisition of Fitbit
2019-12-11Satoshi Nakaboto: ‘Bitcoin price is slowly but consistently declining again’
2019-12-11Daimler and Bosch take a mixed mobility approach to autonomous vehicles
2019-12-11North’s Focals 2.0 smart glasses drop in 2020 — and they’d better be good
2019-12-11Accel and Index back Tines, as the cybersecurity startup adds another $11M to its Series A
2019-12-11Coalition outlines plan to pressure internet giants over cyberbullying
2019-12-11I want to meet the person who buys the $53k Mac Pro
2019-12-1110 predictions for data science and AI in 2020
2019-12-11Resident Evil 3 Remake is real — and it’s coming out in April
2019-12-11Hackers can jack ShapeShift’s crypto wallets in 15 minutes, Kraken warns
2019-12-11Introducing the TechCrunch Disrupt Berlin Startup Battlefield companies for 2019
2019-12-11Wayv launches Payments, the first all-digital payment solution for the cannabis market
2019-12-11Twitter will now preserve JPEG quality for photo uploads on web
2019-12-11Wefox, the Berlin-based insurtech, raises $110M Series B extension at a $1.65B pre-money valuation
2019-12-10Introducing ‘Dear Sophie,’ an advice column for U.S.-bound immigrant employees
2019-12-10North discontinues Focals smart glasses, focuses on Focals 2.0
2019-12-10Electric vehicle startup Nio lays off 141 employees at its North American headquarters
2019-12-10Google Brings New Features to ‘App + Web’ Properties in Google Analytics via @MattGSouthern
2019-12-10Carsome raises $50M for its used-car sales platform in Southeast Asia
2019-12-10Ada Ventures launches with a $34M fund aimed at super-charging diverse global founders