1 week ago

Hackers Exploiting ‘Bitmessage’ Zero-Day to Steal Bitcoin Wallet Keys


Bitmessage developers have warned of a critical ‘remotely executable’ zero-day vulnerability within the PyBitmessage application which was being exploited within the wild.

Bitmessage will be a Peer-to-Peer (P2P) communications protocol used to send encrypted messages to users. Since This particular will be decentralized along with also also trustless communications, one need-not inherently trust any entities like root certificate authorities.

Those who unaware, PyBitmessage will be the official client for Bitmessage messaging service.

According to Bitmessage developers, a critical zero-day remote code execution vulnerability, described as a message encoding flaw, affects PyBitmessage edition 0.6.2 for Linux, Mac, along with also also Windows along with also also has been exploited against some of their users.

“The exploit will be triggered by a malicious message if you are the recipient (including joined chans). The attacker ran an automated script although also opened, or tried to open, a remote reverse shell,” Bitmessage core developer Peter Šurda explained in a Reddit thread.

“The automated script looked in ~/.electrum/wallets [Electrum wallets], although when using the reverse shell, he had access to some other files as well. If the attacker transferred your Bitcoins, please contact me (here on Reddit).”

Moreover, hackers also targeted Šurda. Since his Bitmessage addresses were most likely considered to be compromised, he suggested users not to contact him at which address.

“My old Bitmessage addresses are to be considered compromised along with also also not to be used,” Šurda tweeted.

Šurda believes which the attackers exploiting This particular vulnerability to gain remote access are primarily looking for private keys of Electrum bitcoin wallets stored on the compromised device, using which they could/might have stolen bitcoins.

Bitmessage developers have since fixed the vulnerability with the Discharge of brand-new PyBitmessage edition

So, if you are running an affected edition of PyBitmessage, you are highly recommended to upgrade your software to edition

Since the vulnerability affects PyBitmessage edition 0.6.2 along with also also not PyBitmessage 0.6.1, alternatively you can also consider, as suggested by Šurda, downgrading your application to mitigate yourself coming from potential zero-day attacks.

Although the developers did not reveal more details about the critical vulnerability, Šurda advised users to change all their passwords along with also also create brand-new Bitmessage keys, if they have any suspicion of their computers being compromised.

Binary files for Windows along with also also OSX are anticipated to become available on Wednesday.

The investigation into these attacks will be still ongoing, along with also also we will update This particular article with more information as This particular becomes available.

Stay Tuned! Stay Safe!

Article Categories:
Security Hacks

Leave a Comment

Your email address will not be published. Required fields are marked *

19 − 7 =