Security Agency: Hackers can extract private keys from Bitcoin hardware wallets with only two-signature transactions through the "Dark Skippy" attack

2024-08-09 21:08:09

Collection

ChainCatcher news, according to Cointelegraph, the latest report shows that security researchers have discovered a new attack mechanism called "Dark Skippy," which hackers can use to extract private keys from Bitcoin hardware wallets that only have two-signature transactions. This vulnerability could affect all hardware wallet models, but it only activates when victims are tricked into downloading malicious firmware.

The previous version of "Dark Skippy" required dozens of transactions to be effective, while the new version of "Dark Skippy" can execute with just a few transactions. Additionally, the attack can be carried out even if users rely on separate devices to generate their mnemonic phrases.

The disclosure report was published by Lloyd Fournier, Nick Farrow, and Robin Linus. Fournier and Farrow are co-founders of the hardware wallet manufacturer Frostsnap, while Linus is a co-developer of the Bitcoin protocols ZeroSync and BitVM.

(Source Link)

ChainCatcher reminds readers to view blockchain rationally, enhance risk awareness, and be cautious of various virtual token issuances and speculations. All content on this site is solely market information or related party opinions, and does not constitute any form of investment advice. If you find sensitive information in the content, please click "Report", and we will handle it promptly.