A critical vulnerability in the Libbitcoin Explorerβs pseudo-random number generator exposed over 120,000 Bitcoin private keys, risking significant asset loss. OneKey confirmed its wallets are unaffected due to the use of certified hardware RNGs and secure entropy sources. #LibbitcoinExplorer #TrustWallet #BitcoinSecurity
Keypoints
- The vulnerability stems from the use of a non-cryptographically secure pseudo-random number generator in Libbitcoin Explorer 3.x.
- The seed for the PRNG was only based on system time, limiting seed options and enabling brute-force attacks.
- Over 120,000 Bitcoin private keys were potentially exposed, putting wallet assets at risk across various platforms.
- OneKeyβs hardware wallets remain secure as they use certified True Random Number Generators with high security standards.
- Software wallets rely on system CSPRNGs, which depend on device security, and users are advised to prefer hardware wallets for safekeeping.
Read More: https://thecyberexpress.com/bitcoin-keys-exposed-via-libbitcoin-explorer/