Every level of the cryptography ecosystem is a disaster. Using a cryptography program that has a mode that inadvertently makes it easy to create a low-entropy cryptographic key is a potential issue for any use of modern cryptography at all, there’s nothing specific to the specific cryptographic application of cryptocurrency that makes this vulnerability more likely.
Huh, the seemingly-uncommon case of someone actually breaking a bad PRNG being used to generate a secret, rather than just stealing the secret outright. I’d salute the thieves for putting in the work to actually track down the opportunity and do things the hard way, if they weren’t… you know, thieves.
It reads like this tool was designed to “capture entropy” for the express purpose of handing it off to some other program, but it’s full of dumb shit like mersenne twisters (that we’ve all been making fun of since the 90s) and chokepoints where they’re going down to 32 bits of real random…. Why would anybody do this if not with “malice aforethought”?
LOL. Every level of the cryptocurrency ecosystem is a disaster.
If you would like to read about more disasters in with crypto / NFTs: https://web3isgoinggreat.com/
Every level of the cryptography ecosystem is a disaster. Using a cryptography program that has a mode that inadvertently makes it easy to create a low-entropy cryptographic key is a potential issue for any use of modern cryptography at all, there’s nothing specific to the specific cryptographic application of cryptocurrency that makes this vulnerability more likely.
Huh, the seemingly-uncommon case of someone actually breaking a bad PRNG being used to generate a secret, rather than just stealing the secret outright. I’d salute the thieves for putting in the work to actually track down the opportunity and do things the hard way, if they weren’t… you know, thieves.
It reads like this tool was designed to “capture entropy” for the express purpose of handing it off to some other program, but it’s full of dumb shit like mersenne twisters (that we’ve all been making fun of since the 90s) and chokepoints where they’re going down to 32 bits of real random…. Why would anybody do this if not with “malice aforethought”?