Leak -- Compromised MEMO key successfully detected

avatar
(Edited)



❗❗❗ πŸ’€ ⚠️ πŸ’€ ⚠️ ❗❗❗
It's a new day and another user leaked one of their private keys into the Hive Blockchain.

They COMPROMISED their:

private MEMO key

HOW: in a transf operation


The compromised account owner has now been notified in multiple ways. The identity of the user will be disclosed only in the monthly report in order to give them time to address the issue.

Compromised account stats:

  • Reputation: 61

  • Followers: 38

  • Account creation: 8/2021

  • Last social action on chain: 2022/9/26

  • Estimated account value: $ 122.36


Top 5 private ACTIVE keys protected:

1. @nextgen622: ~$ 28,000
2. @cryptoandcoffee: ~$ 8,400
3. @runridefly: ~$ 3,300
4. @globalmerchantio: ~$ 250
5. @j3dy: ~$ 120 (500 HIVE automatically protected for 9 days)
My security disclosures for Hive:
- XSS vulnerabilities in #########.com
- XSS vulnerabilities in hive-db.com
- XSS vulnerabilities in scribe.hivekings.com
- XSS vulnerabilities in hiveblockexplorer.com
- Malicious ads redirecting all Steemit iOS users to a phishing site
- Reverse tabnabbing and clickjacking in steem.chat and steeemit registration page

Other contributions:
- Universal script to prevent phishing in all Hive frontends
- Commands for community reports and ban/mute lists
Future development: Β  plan
Last (bi)monthly report: https://peakd.com/@keys-defender/monthly-report-june-july-august-2021-hive-13323

Keys-Defender features:

- Keys protection [live scan of transfers/posts/comments/other_ops. Warnings (reply and memo), auto-transfers to savings until fully restored, auto-reset of keys, ..] {see automatic posts on leak and monthly reports}
- Phishing protection [live scan of comments and posts to warn users against known phishing campaigns and compromised domains or accounts, scan of memos and auto-replies, anti phishing countermeasures - eg. fake credentials]
- Re-posting detection [mitigates the issue of re-posters]
- Code injection detection [live scan of blocks for malicious code targeting dapps of the Hive ecosystem]
- Anti abuse efforts [counteracts spam from hive haters and milking campaigns]

Discord chat
To support this project..
- Delegations:
10, 50, 100
500 HP, 1000 HP
Β 
- Curation trail: Follow my curation trail on hive.vote to upvote all my posts with a fixed weight.

Β 

This project is sponsored by @cryptoshots.nft
First-Person-Shooter, play-to-earn, 3D game, for browsers. Β  Powered by Wax and Hive.
https://crypto-shots.com/discord Β 
https://twitter.com/cryptoshots_nft Β 


hive-138876 abuse hacking stem bot palnet leo
0
0
0.000
6 comments
avatar

It is my understanding that even a memo key can be dangerous when lost.

0
0
0.000
Reply
avatar

It allows to decrypt all the messages (if any) that the user encrypted with it. And there is no way back. Once the key is leaked all the previous encrypted messages are compromised too and there is no way to prevent that. So yes, pretty dangerous if someone put sensitive information in an encrypted memo or other blockchain operations.

0
0
0.000
Reply
avatar

It seems like I read something about people being able to insert trojan horse-type programs with the memo key once as well.

0
0
0.000
Reply
avatar

That seems odd, got a link?

0
0
0.000
Reply
avatar

I do not sorry, it was a Hive post I believe that was talking about it though.

0
0
0.000
Reply