The security company Unciphered successfully cracked the hardware wallet OneKey, which has since updated its patch and paid a bounty

2023-02-11 12:53:13

Collection

ChainCatcher news, according to The Block, security company Unciphered announced that it has successfully hacked the hardware wallet OneKey. It is reported that Unciphered demonstrated a so-called "man-in-the-middle" wallet hacking attack in a YouTube video, which can extract recovery keys from the OneKey Mini hardware wallet by exploiting vulnerabilities. OneKey has promptly fixed the vulnerability after contacting Unciphered.

Unciphered stated that the FPGA used in the hack is a high-speed processor that allows it to iterate through different algorithms, bypassing the wallet's security measures and extracting the recovery phrases. OneKey indicated that it has fixed the vulnerability immediately and that no users were harmed in this incident. The attack method demonstrated by Unciphered cannot be executed remotely and requires the user's encrypted hardware wallet and a specialized FPGA device. OneKey has already paid a bug bounty to Unciphered for the vulnerability disclosure. (Source link)

ChainCatcher reminds readers to view blockchain rationally, enhance risk awareness, and be cautious of various virtual token issuances and speculations. All content on this site is solely market information or related party opinions, and does not constitute any form of investment advice. If you find sensitive information in the content, please click "Report", and we will handle it promptly.