{"id":231755,"date":"2019-07-05T09:01:30","date_gmt":"2019-07-05T13:01:30","guid":{"rendered":"http:\/\/insidebitcoins.com\/?p=231755"},"modified":"2019-07-05T09:01:30","modified_gmt":"2019-07-05T13:01:30","slug":"a-security-flaw-in-monero-could-have-led-to-theft-in-crypto-exchanges","status":"publish","type":"post","link":"https:\/\/insidebitcoins.com\/news\/a-security-flaw-in-monero-could-have-led-to-theft-in-crypto-exchanges","title":{"rendered":"A Security Flaw in Monero Could Have Led to Theft in Crypto Exchanges"},"content":{"rendered":"

Developers recently announced that Monero blockchain had nine scary bugs<\/a> in its code that could have led to XMR theft from digital currency exchanges.<\/p>\n

Monero\u2019s code has issues<\/h2>\n

Monero (XMR) is a privacy-focused altcoin that providers better transaction obscurity than Bitcoin. It is the second most popular digital currency<\/a> on the dark web after Bitcoin. The devs at Monero recently disclosed that the blockchain had nine security vulnerabilities.<\/p>\n

\"A<\/a><\/p>\n

One of these vulnerabilities could even allow hackers to steal XMR from digital currency exchanges. Security researchers who found these issues concluded their findings in a HackerOne report after they were awarded 45 XMR for their efforts.<\/p>\n

Note that Monero was facing problems until March, where rogue miners could create \u201cspecifically-crafted\u201d blocks and force Monero wallet to accept fake deposits. The attacker could choose the amount to be deposited in the wallets. The researchers also revealed five DoS attack vectors, one of which was categorized as \u201ccritical\u201d severity<\/p>\n

What else could be compromised?<\/h2>\n

One of the bugs is related to CryptoNote, an application layer used by XMR that helps in improving privacy in transactions. If this security flaw was executed by the hackers, they could have taken down XMR nodes by sending large amounts of malicious blockchain data from the network.<\/p>\n

The researcher who found the bug, Andrey Sabelnikov talked to Hard Fork<\/a> about the vulnerability saying that the bug could be executed on a bigger blockchain. Hackers can push a protocol request on the chain that can call all blocks from other nodes. As the blockchain is bigger, this could lead to the calling of hundreds of thousands of blocks.<\/p>\n

However, preparing a response like this could consume unusually high amounts of resources and a typical Linux based system will kill the task because of excessive memory consumptions. He noted that other crypto projects depending on CryptoNote could be susceptible to similar attacks.<\/p>\n

Monero\u2019s software was also leaking \u201cuninitiated\u201d memory, which could include sensitive cryptographic material and private data, to untrusted peers on the network. A majority of these bugs were reported four months ago, and eight have also been patched. The ninth bug is still undisclosed. Most of the flaws were considered \u201cproof of concept\u201d rather than actual security vulnerabilities that were being exploited on the blockchain.<\/p>\n

Note that Monero released its blockchain version 0.14.1.0 in June this year. Monero\u2019s wallet software was reported to have bugs last year that could allow hackers to drain XMR from crypto exchange wallets.<\/p>\n","protected":false},"excerpt":{"rendered":"

Developers recently announced that Monero blockchain had nine scary bugs in its code that could have led to XMR theft from digital currency exchanges. Monero\u2019s […]<\/a><\/div>","protected":false},"author":1730,"featured_media":231757,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"inline_featured_image":false,"footnotes":""},"categories":[7596],"tags":[5477,8745,8746,5297,8744,8743],"class_list":["post-231755","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cryptocurrency","tag-altcoin","tag-andrey-sabelnikov","tag-crypto-note","tag-monero","tag-monero-wallet","tag-security-flaw"],"acf":[],"yoast_head":"\nA Security Flaw in Monero Could Have Led to Theft in Crypto Exchanges<\/title>\n<meta name=\"description\" content=\"Developers recently announced that Monero blockchain had nine scary bugs in its code that could have led to XMR theft from digital currency exchanges.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/231755\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"A Security Flaw in Monero Could Have Led to Theft in Crypto Exchanges\" \/>\n<meta property=\"og:description\" content=\"Developers recently announced that Monero blockchain had nine scary bugs in its code that could have led to XMR theft from digital currency exchanges.\" \/>\n<meta property=\"og:site_name\" content=\"InsideBitcoins.com\" \/>\n<meta property=\"article:published_time\" content=\"2019-07-05T13:01:30+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2019\/07\/Monero1.jpeg\" \/>\n\t<meta property=\"og:image:width\" content=\"1600\" \/>\n\t<meta property=\"og:image:height\" content=\"900\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Sherlock Gomes\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@sherlockgomes\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Sherlock Gomes\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"NewsArticle\",\"@id\":\"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/231755#article\",\"isPartOf\":{\"@id\":\"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/231755\"},\"author\":{\"name\":\"Sherlock Gomes\",\"@id\":\"https:\/\/insidebitcoins.com\/#\/schema\/person\/89bac294cb2c1ff5549edfa9272567ee\"},\"headline\":\"A Security Flaw in Monero Could Have Led to Theft in Crypto Exchanges\",\"datePublished\":\"2019-07-05T13:01:30+00:00\",\"dateModified\":\"2019-07-05T13:01:30+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/231755\"},\"wordCount\":424,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/insidebitcoins.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/231755#primaryimage\"},\"thumbnailUrl\":\"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2019\/07\/Monero1.jpeg\",\"keywords\":[\"Altcoin\",\"Andrey Sabelnikov\",\"crypto note\",\"monero\",\"Monero Wallet\",\"Security flaw\"],\"articleSection\":[\"Breaking Crypto News\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/231755#respond\"]}],\"copyrightYear\":\"2019\",\"copyrightHolder\":{\"@id\":\"https:\/\/insidebitcoins.com\/#organization\"}},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/231755\",\"url\":\"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/231755\",\"name\":\"A Security Flaw in Monero Could Have Led to Theft in Crypto Exchanges\",\"isPartOf\":{\"@id\":\"https:\/\/insidebitcoins.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/231755#primaryimage\"},\"image\":{\"@id\":\"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/231755#primaryimage\"},\"thumbnailUrl\":\"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2019\/07\/Monero1.jpeg\",\"datePublished\":\"2019-07-05T13:01:30+00:00\",\"dateModified\":\"2019-07-05T13:01:30+00:00\",\"description\":\"Developers recently announced that Monero blockchain had nine scary bugs in its code that could have led to XMR theft from digital currency exchanges.\",\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/231755\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/231755#primaryimage\",\"url\":\"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2019\/07\/Monero1.jpeg\",\"contentUrl\":\"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2019\/07\/Monero1.jpeg\",\"width\":1600,\"height\":900},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/insidebitcoins.com\/#website\",\"url\":\"https:\/\/insidebitcoins.com\/\",\"name\":\"InsideBitcoins.com\",\"description\":\"Search & Compare Brokers within Crypto, Forex & Stocks\",\"publisher\":{\"@id\":\"https:\/\/insidebitcoins.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/insidebitcoins.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/insidebitcoins.com\/#organization\",\"name\":\"InsideBitcoins\",\"url\":\"https:\/\/insidebitcoins.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/insidebitcoins.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2022\/07\/insidebitcoins.svg\",\"contentUrl\":\"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2022\/07\/insidebitcoins.svg\",\"width\":195,\"height\":32,\"caption\":\"InsideBitcoins\"},\"image\":{\"@id\":\"https:\/\/insidebitcoins.com\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/insidebitcoins.com\/#\/schema\/person\/89bac294cb2c1ff5549edfa9272567ee\",\"name\":\"Sherlock Gomes\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/insidebitcoins.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2019\/09\/viraj-shah-1-96x96.jpg\",\"contentUrl\":\"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2019\/09\/viraj-shah-1-96x96.jpg\",\"caption\":\"Sherlock Gomes\"},\"description\":\"Sherlock Gomes loves to write and express his views on anything related to Crypto. He has been covering Crypto for more than two years now. He likes Bitcoin and Cardano. He also writes on Finance, Healthcare, and Technology among other stuff.\",\"sameAs\":[\"https:\/\/x.com\/sherlockgomes\"],\"gender\":\"male\",\"knowsAbout\":[\"Cryptocurrency\",\"Technology\"],\"jobTitle\":\"Author\",\"url\":\"https:\/\/insidebitcoins.com\/author\/sherlock\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"A Security Flaw in Monero Could Have Led to Theft in Crypto Exchanges","description":"Developers recently announced that Monero blockchain had nine scary bugs in its code that could have led to XMR theft from digital currency exchanges.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/231755","og_locale":"en_US","og_type":"article","og_title":"A Security Flaw in Monero Could Have Led to Theft in Crypto Exchanges","og_description":"Developers recently announced that Monero blockchain had nine scary bugs in its code that could have led to XMR theft from digital currency exchanges.","og_site_name":"InsideBitcoins.com","article_published_time":"2019-07-05T13:01:30+00:00","og_image":[{"width":1600,"height":900,"url":"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2019\/07\/Monero1.jpeg","type":"image\/jpeg"}],"author":"Sherlock Gomes","twitter_card":"summary_large_image","twitter_creator":"@sherlockgomes","twitter_misc":{"Written by":"Sherlock Gomes","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"NewsArticle","@id":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/231755#article","isPartOf":{"@id":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/231755"},"author":{"name":"Sherlock Gomes","@id":"https:\/\/insidebitcoins.com\/#\/schema\/person\/89bac294cb2c1ff5549edfa9272567ee"},"headline":"A Security Flaw in Monero Could Have Led to Theft in Crypto Exchanges","datePublished":"2019-07-05T13:01:30+00:00","dateModified":"2019-07-05T13:01:30+00:00","mainEntityOfPage":{"@id":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/231755"},"wordCount":424,"commentCount":0,"publisher":{"@id":"https:\/\/insidebitcoins.com\/#organization"},"image":{"@id":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/231755#primaryimage"},"thumbnailUrl":"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2019\/07\/Monero1.jpeg","keywords":["Altcoin","Andrey Sabelnikov","crypto note","monero","Monero Wallet","Security flaw"],"articleSection":["Breaking Crypto News"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/231755#respond"]}],"copyrightYear":"2019","copyrightHolder":{"@id":"https:\/\/insidebitcoins.com\/#organization"}},{"@type":"WebPage","@id":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/231755","url":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/231755","name":"A Security Flaw in Monero Could Have Led to Theft in Crypto Exchanges","isPartOf":{"@id":"https:\/\/insidebitcoins.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/231755#primaryimage"},"image":{"@id":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/231755#primaryimage"},"thumbnailUrl":"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2019\/07\/Monero1.jpeg","datePublished":"2019-07-05T13:01:30+00:00","dateModified":"2019-07-05T13:01:30+00:00","description":"Developers recently announced that Monero blockchain had nine scary bugs in its code that could have led to XMR theft from digital currency exchanges.","inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/231755"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/231755#primaryimage","url":"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2019\/07\/Monero1.jpeg","contentUrl":"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2019\/07\/Monero1.jpeg","width":1600,"height":900},{"@type":"WebSite","@id":"https:\/\/insidebitcoins.com\/#website","url":"https:\/\/insidebitcoins.com\/","name":"InsideBitcoins.com","description":"Search & Compare Brokers within Crypto, Forex & Stocks","publisher":{"@id":"https:\/\/insidebitcoins.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/insidebitcoins.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/insidebitcoins.com\/#organization","name":"InsideBitcoins","url":"https:\/\/insidebitcoins.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/insidebitcoins.com\/#\/schema\/logo\/image\/","url":"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2022\/07\/insidebitcoins.svg","contentUrl":"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2022\/07\/insidebitcoins.svg","width":195,"height":32,"caption":"InsideBitcoins"},"image":{"@id":"https:\/\/insidebitcoins.com\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/insidebitcoins.com\/#\/schema\/person\/89bac294cb2c1ff5549edfa9272567ee","name":"Sherlock Gomes","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/insidebitcoins.com\/#\/schema\/person\/image\/","url":"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2019\/09\/viraj-shah-1-96x96.jpg","contentUrl":"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2019\/09\/viraj-shah-1-96x96.jpg","caption":"Sherlock Gomes"},"description":"Sherlock Gomes loves to write and express his views on anything related to Crypto. He has been covering Crypto for more than two years now. He likes Bitcoin and Cardano. He also writes on Finance, Healthcare, and Technology among other stuff.","sameAs":["https:\/\/x.com\/sherlockgomes"],"gender":"male","knowsAbout":["Cryptocurrency","Technology"],"jobTitle":"Author","url":"https:\/\/insidebitcoins.com\/author\/sherlock"}]}},"_links":{"self":[{"href":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/231755"}],"collection":[{"href":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/users\/1730"}],"replies":[{"embeddable":true,"href":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/comments?post=231755"}],"version-history":[{"count":0,"href":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/231755\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/media\/231757"}],"wp:attachment":[{"href":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/media?parent=231755"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/categories?post=231755"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/tags?post=231755"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}