You are viewing a single comment's thread from:

RE: STEEM chain scanning part 2 --> 79 leaked Private Keys found and turned in // A new defender

in #steem2 years ago

Wow great job in finding those Keys. The accounts could call themself lucky that you are one of the good actors here on Steem. Otherwise they would have lost all their funds.

Posted using Partiko Android

Sort:  

Well, only the compromised active keys allows for transfers and luckily those accounts didn't have much in their wallet.

The risk comes from an attacker using the posting keys to mass upvote or downvote some users (eg. SDL).

My bot will will keep scanning new operations published into STEEM blockchain in order to save (almost) at runtime compromised keys (including owner keys). It will also keep an eye on those known compromised accounts in order to make them unusable if they get abused.

Thanks, take care.   =]