If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)

Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie

Hi there,
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest

Bitcoin on Android Warning. Android Wallet Bug

Allyall · 2013-08-12 14:39:44

I just read this and i thought i'd post it here as a warning to anyone using Bitcoins, as it wasn't on the first page of the news. Some may already know about it, but others may not. From ZDNet More here - All Android-Created Bitcoin Wallets Vulnerable to theft…

12-08-2013 02:39PM

#1

Allyall

Registered Users, Registered Users 2 Posts: 10,381 ✭✭✭✭

Join Date: August 2010

Posts: 9619

I just read this and i thought i'd post it here as a warning to anyone using Bitcoins, as it wasn't on the first page of the news. Some may already know about it, but others may not.

From ZDNet

Security flaw leaves Android Bitcoin wallets vulnerable

Summary: Bitcoin wallets generated on Android are thought to be suffering from a random number generation weakness.

Bitcoin wallets generated by Android devices are vulnerable to theft caused by a problem in the way Android generates random numbers.
Developers at Bitcoin.org issued an alert on Sunday strongly recommending Bitcoin owners using Android wallets update to new versions of their preferred wallet once they became available.
A number of Android Bitcoin wallets — such as Bitcoin Wallet, BitcoinSpinner, Mycelium Wallet and blockchain.info — were preparing updates that address the flaw, according to the Bitcoin.org notice.
According to a description of the flaw by Bitcoin Wallet, which has released a beta fix, "Android SecureRandom class has multiple severe bugs that render it useless for cryptographic purposes".
Bitcoin apps by exchanges such as Mt Gox and Coinbase are not affected since the private keys for those apps are not generated on the Android device.
Technical details of the Android flaw have not been released. However, Bitcoin Magazine suggests the affected random number generator produces numbers that are not so random and points to a number of thefts that have occurred as a result of the flaw.
The fix involves generating a new address with a repaired random number generator. Users would then send the money in their existing wallet to the new one.
"Once your wallet is rotated, you will need to contact anyone who has stored addresses generated by your phone and give them a new one," Bitcoin.org developers noted.
A member on the Bitcointalk.org forum also noted that keys generated by blockchain.info wallets on desktops or iPhone can also be vulnerable if payments were also made from an Android device.

More here - All Android-Created Bitcoin Wallets Vulnerable to theft

http://www.telegraph.co.uk/technology/news/10236991/Bitcoin-for-Android-hit-by-bug.html

0