{"id":266716,"date":"2020-07-03T11:40:12","date_gmt":"2020-07-03T15:40:12","guid":{"rendered":"https:\/\/insidebitcoins.com\/?p=266716"},"modified":"2020-07-08T17:12:08","modified_gmt":"2020-07-08T21:12:08","slug":"vulnerability-found-popular-crypto-wallets-like-ledger-and-others","status":"publish","type":"post","link":"https:\/\/insidebitcoins.com\/news\/vulnerability-found-popular-crypto-wallets-like-ledger-and-others","title":{"rendered":"Vulnerability Found Popular Crypto Wallets like Ledger and Others"},"content":{"rendered":"<p>Mobile crypto wallet startup ZenGo recently discovered a vulnerability in some popular <a href=\"https:\/\/insidebitcoins.com\/desktop-wallets\">crypto wallets<\/a> including Edge, BRD, and Ledger.<\/p>\n<h2>BigSpender vulnerability<\/h2>\n<p>The BigSpender vulnerability can show the incorrect balance on a user\u2019s wallets because unconfirmed transactions are taken into account in the total balance. The attacker can revoke these transactions before they are confirmed because of which there could be confusion about the actual balance. This type of attack is quickly gaining prominence in online marketplaces like Craigslist.<\/p>\n<p><a href=\"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2020\/07\/Crypto-Wallet.png\"><img decoding=\"async\" class=\"aligncenter size-full wp-image-266718\" src=\"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2020\/07\/Crypto-Wallet.png\" alt=\"Vulnerability Found Popular Crypto Wallets like Ledger and Others\" width=\"1920\" height=\"1080\" srcset=\"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2020\/07\/Crypto-Wallet.png 1920w, https:\/\/insidebitcoins.com\/wp-content\/uploads\/2020\/07\/Crypto-Wallet-300x169.png 300w, https:\/\/insidebitcoins.com\/wp-content\/uploads\/2020\/07\/Crypto-Wallet-1024x576.png 1024w, https:\/\/insidebitcoins.com\/wp-content\/uploads\/2020\/07\/Crypto-Wallet-768x432.png 768w, https:\/\/insidebitcoins.com\/wp-content\/uploads\/2020\/07\/Crypto-Wallet-1536x864.png 1536w\" sizes=\"(max-width: 1920px) 100vw, 1920px\" \/><\/a><\/p>\n<p>In this method, people buy stuff from others online and send them fake PayPal transaction emails which confirms their transactions. However, in reality, no transaction is made and the user\u2019s account doesn\u2019t reflect any changes. Similar BigSpender techniques are now being used in cryptocurrencies. They utilize a feature in the Bitcoin protocol called Replace-by-Fee.<\/p>\n<p>This feature allows users to send some Bitcoins will a low transaction fee. They could also send the same transaction with a higher transaction fee. The original transaction is then cancelled and the new one replaced it. The new transaction is processed more quickly because of a higher transaction fee.<\/p>\n<h2>How fake transactions work in crypto?<\/h2>\n<p>Some crypto wallets may take unconfirmed transactions into account very quickly because of which it may appear that a user has received Bitcoin. In reality, they behave not received anything. The sender may cancel or replace that transaction with another one at a wallet they control. As a result of this, the balance in user accounts still remains, even though the amount is never credited.<\/p>\n<p>The attackers can use this feature to make multiple transactions even if they don\u2019t possess the money needed to buy an expensive item. The attackers may also launch a denial-of-service attack and freeze a user\u2019s crypto assets. This problem can usually be solved by clearing app cache and resyncing the <a href=\"https:\/\/insidebitcoins.com\/bitcoin-wallets\">Bitcoin wallets<\/a>. It does not affect the existing balance in your <a href=\"https:\/\/insidebitcoins.com\/bitcoin-account\">Bitcoin account<\/a>.<\/p>\n<p>ZenGo discovered the vulnerability in BRD, Ledger, and Edge about 90 days ago. Both BRD and Ledger have handed over bug bounty rewards to the startup. BRD has released a fix while Edge and Ledger are working on a fix.<\/p>\n","protected":false},"excerpt":{"rendered":"<div class=\"fin-excerpt\">Mobile crypto wallet startup ZenGo recently discovered a vulnerability in some popular crypto wallets including Edge, BRD, and Ledger. BigSpender vulnerability The BigSpender vulnerability can <a class=\"read-more-link\" href=\"https:\/\/insidebitcoins.com\/news\/vulnerability-found-popular-crypto-wallets-like-ledger-and-others\" title=\"Vulnerability Found Popular Crypto Wallets like Ledger and Others\">[&#8230;]<\/a><\/div>","protected":false},"author":1730,"featured_media":266719,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"inline_featured_image":false,"footnotes":""},"categories":[1],"tags":[11014,5245,9241,9100],"class_list":["post-266716","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-more-crypto-news","tag-crypto-wallet","tag-ledger","tag-security-vulnerability","tag-zengo"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v23.8 (Yoast SEO v23.8) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Vulnerability Found Popular Crypto Wallets like Ledger and Others<\/title>\n<meta name=\"description\" content=\"Mobile crypto wallet startup ZenGo recently discovered a vulnerability in some popular crypto wallets including Edge, BRD and Ledger.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/266716\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Vulnerability Found Popular Crypto Wallets like Ledger and Others\" \/>\n<meta property=\"og:description\" content=\"Mobile crypto wallet startup ZenGo recently discovered a vulnerability in some popular crypto wallets including Edge, BRD and Ledger.\" \/>\n<meta property=\"og:site_name\" content=\"InsideBitcoins.com\" \/>\n<meta property=\"article:published_time\" content=\"2020-07-03T15:40:12+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2020-07-08T21:12:08+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2020\/07\/Crypto-wallet.jpeg\" \/>\n\t<meta property=\"og:image:width\" content=\"2048\" \/>\n\t<meta property=\"og:image:height\" content=\"1365\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Sherlock Gomes\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@sherlockgomes\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Sherlock Gomes\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"NewsArticle\",\"@id\":\"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/266716#article\",\"isPartOf\":{\"@id\":\"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/266716\"},\"author\":{\"name\":\"Sherlock Gomes\",\"@id\":\"https:\/\/insidebitcoins.com\/#\/schema\/person\/89bac294cb2c1ff5549edfa9272567ee\"},\"headline\":\"Vulnerability Found Popular Crypto Wallets like Ledger and Others\",\"datePublished\":\"2020-07-03T15:40:12+00:00\",\"dateModified\":\"2020-07-08T21:12:08+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/266716\"},\"wordCount\":369,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/insidebitcoins.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/266716#primaryimage\"},\"thumbnailUrl\":\"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2020\/07\/Crypto-wallet.jpeg\",\"keywords\":[\"Crypto wallet\",\"ledger\",\"Security Vulnerability\",\"ZenGo\"],\"articleSection\":[\"More Crypto News\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/266716#respond\"]}],\"copyrightYear\":\"2020\",\"copyrightHolder\":{\"@id\":\"https:\/\/insidebitcoins.com\/#organization\"}},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/266716\",\"url\":\"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/266716\",\"name\":\"Vulnerability Found Popular Crypto Wallets like Ledger and Others\",\"isPartOf\":{\"@id\":\"https:\/\/insidebitcoins.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/266716#primaryimage\"},\"image\":{\"@id\":\"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/266716#primaryimage\"},\"thumbnailUrl\":\"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2020\/07\/Crypto-wallet.jpeg\",\"datePublished\":\"2020-07-03T15:40:12+00:00\",\"dateModified\":\"2020-07-08T21:12:08+00:00\",\"description\":\"Mobile crypto wallet startup ZenGo recently discovered a vulnerability in some popular crypto wallets including Edge, BRD and Ledger.\",\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/266716\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/266716#primaryimage\",\"url\":\"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2020\/07\/Crypto-wallet.jpeg\",\"contentUrl\":\"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2020\/07\/Crypto-wallet.jpeg\",\"width\":2048,\"height\":1365,\"caption\":\"Vulnerability Found Popular Crypto Wallets like Ledger and Others\"},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/insidebitcoins.com\/#website\",\"url\":\"https:\/\/insidebitcoins.com\/\",\"name\":\"InsideBitcoins.com\",\"description\":\"Search &amp; Compare Brokers within Crypto, Forex &amp; Stocks\",\"publisher\":{\"@id\":\"https:\/\/insidebitcoins.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/insidebitcoins.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/insidebitcoins.com\/#organization\",\"name\":\"InsideBitcoins\",\"url\":\"https:\/\/insidebitcoins.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/insidebitcoins.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2022\/07\/insidebitcoins.svg\",\"contentUrl\":\"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2022\/07\/insidebitcoins.svg\",\"width\":195,\"height\":32,\"caption\":\"InsideBitcoins\"},\"image\":{\"@id\":\"https:\/\/insidebitcoins.com\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/insidebitcoins.com\/#\/schema\/person\/89bac294cb2c1ff5549edfa9272567ee\",\"name\":\"Sherlock Gomes\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/insidebitcoins.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2019\/09\/viraj-shah-1-96x96.jpg\",\"contentUrl\":\"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2019\/09\/viraj-shah-1-96x96.jpg\",\"caption\":\"Sherlock Gomes\"},\"description\":\"Sherlock Gomes loves to write and express his views on anything related to Crypto. He has been covering Crypto for more than two years now. He likes Bitcoin and Cardano. He also writes on Finance, Healthcare, and Technology among other stuff.\",\"sameAs\":[\"https:\/\/x.com\/sherlockgomes\"],\"gender\":\"male\",\"knowsAbout\":[\"Cryptocurrency\",\"Technology\"],\"jobTitle\":\"Author\",\"url\":\"https:\/\/insidebitcoins.com\/author\/sherlock\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Vulnerability Found Popular Crypto Wallets like Ledger and Others","description":"Mobile crypto wallet startup ZenGo recently discovered a vulnerability in some popular crypto wallets including Edge, BRD and Ledger.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/266716","og_locale":"en_US","og_type":"article","og_title":"Vulnerability Found Popular Crypto Wallets like Ledger and Others","og_description":"Mobile crypto wallet startup ZenGo recently discovered a vulnerability in some popular crypto wallets including Edge, BRD and Ledger.","og_site_name":"InsideBitcoins.com","article_published_time":"2020-07-03T15:40:12+00:00","article_modified_time":"2020-07-08T21:12:08+00:00","og_image":[{"width":2048,"height":1365,"url":"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2020\/07\/Crypto-wallet.jpeg","type":"image\/jpeg"}],"author":"Sherlock Gomes","twitter_card":"summary_large_image","twitter_creator":"@sherlockgomes","twitter_misc":{"Written by":"Sherlock Gomes","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"NewsArticle","@id":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/266716#article","isPartOf":{"@id":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/266716"},"author":{"name":"Sherlock Gomes","@id":"https:\/\/insidebitcoins.com\/#\/schema\/person\/89bac294cb2c1ff5549edfa9272567ee"},"headline":"Vulnerability Found Popular Crypto Wallets like Ledger and Others","datePublished":"2020-07-03T15:40:12+00:00","dateModified":"2020-07-08T21:12:08+00:00","mainEntityOfPage":{"@id":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/266716"},"wordCount":369,"commentCount":0,"publisher":{"@id":"https:\/\/insidebitcoins.com\/#organization"},"image":{"@id":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/266716#primaryimage"},"thumbnailUrl":"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2020\/07\/Crypto-wallet.jpeg","keywords":["Crypto wallet","ledger","Security Vulnerability","ZenGo"],"articleSection":["More Crypto News"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/266716#respond"]}],"copyrightYear":"2020","copyrightHolder":{"@id":"https:\/\/insidebitcoins.com\/#organization"}},{"@type":"WebPage","@id":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/266716","url":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/266716","name":"Vulnerability Found Popular Crypto Wallets like Ledger and Others","isPartOf":{"@id":"https:\/\/insidebitcoins.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/266716#primaryimage"},"image":{"@id":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/266716#primaryimage"},"thumbnailUrl":"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2020\/07\/Crypto-wallet.jpeg","datePublished":"2020-07-03T15:40:12+00:00","dateModified":"2020-07-08T21:12:08+00:00","description":"Mobile crypto wallet startup ZenGo recently discovered a vulnerability in some popular crypto wallets including Edge, BRD and Ledger.","inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/266716"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/266716#primaryimage","url":"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2020\/07\/Crypto-wallet.jpeg","contentUrl":"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2020\/07\/Crypto-wallet.jpeg","width":2048,"height":1365,"caption":"Vulnerability Found Popular Crypto Wallets like Ledger and Others"},{"@type":"WebSite","@id":"https:\/\/insidebitcoins.com\/#website","url":"https:\/\/insidebitcoins.com\/","name":"InsideBitcoins.com","description":"Search &amp; Compare Brokers within Crypto, Forex &amp; Stocks","publisher":{"@id":"https:\/\/insidebitcoins.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/insidebitcoins.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/insidebitcoins.com\/#organization","name":"InsideBitcoins","url":"https:\/\/insidebitcoins.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/insidebitcoins.com\/#\/schema\/logo\/image\/","url":"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2022\/07\/insidebitcoins.svg","contentUrl":"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2022\/07\/insidebitcoins.svg","width":195,"height":32,"caption":"InsideBitcoins"},"image":{"@id":"https:\/\/insidebitcoins.com\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/insidebitcoins.com\/#\/schema\/person\/89bac294cb2c1ff5549edfa9272567ee","name":"Sherlock Gomes","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/insidebitcoins.com\/#\/schema\/person\/image\/","url":"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2019\/09\/viraj-shah-1-96x96.jpg","contentUrl":"https:\/\/insidebitcoins.com\/wp-content\/uploads\/2019\/09\/viraj-shah-1-96x96.jpg","caption":"Sherlock Gomes"},"description":"Sherlock Gomes loves to write and express his views on anything related to Crypto. He has been covering Crypto for more than two years now. He likes Bitcoin and Cardano. He also writes on Finance, Healthcare, and Technology among other stuff.","sameAs":["https:\/\/x.com\/sherlockgomes"],"gender":"male","knowsAbout":["Cryptocurrency","Technology"],"jobTitle":"Author","url":"https:\/\/insidebitcoins.com\/author\/sherlock"}]}},"_links":{"self":[{"href":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/266716"}],"collection":[{"href":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/users\/1730"}],"replies":[{"embeddable":true,"href":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/comments?post=266716"}],"version-history":[{"count":0,"href":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/posts\/266716\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/media\/266719"}],"wp:attachment":[{"href":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/media?parent=266716"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/categories?post=266716"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/insidebitcoins.com\/wp-json\/wp\/v2\/tags?post=266716"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}