Компания OXT Research, стоящая за разработкой биткоин-кошелька Samourai Wallet, опубликовала предупреждение для пользователей конкурирующего решения Wasabi Wallet. По словам OXT, они проводили анализ транзакций, связанных с недавним взломом Twitter, и обнаружили две потенциальные угрозы для приватности пользователей Wasabi. Разработчики утверждают, что в прошлом отмечали множество недостатков Wasabi, однако, в отличие от последнего случая, не причисляли их к […]
Организация Zcash Foundation представила ориентированный на конфиденциальность кошелек под названием Zepio. We're excited to announce Zepio Wallet, a new shielded-first, cross-platform application created for the Foundation by @andreneves and @_astrocoders 🥳 Check it out: https://t.co/LE1nCFJUBs pic.twitter.com/4RVQZrAkHN — Zcash Foundation (@ZcashFoundation) May 29, 2019 В новом кошельке предусмотрены приватные по умолчанию транзакции, а также интуитивно понятный […]
Click here to view original web page at themerkle.com
When the Kik team announcement their initial coin offering a while ago, many people had high expectations. A well-known and respected messaging service issuing its own tokens could introduce a lot more people to the cryptocurrency industry. In the next few weeks, all users must migrate their KIN tokens from Ethereum to Bancor. This move has some very interesting potential consequences.
Moving Away From Ethereum
The biggest development to take note of is how the Kik team has made it rather clear they do not want to use Ethereum’s infrastructure for their token. The decision to switch to Bancor is rather interesting, albeit not all that surprising. Numerous other projects have moved away from Ethereum in search of greener pastures. Whether or not those decisions will pan out as expected, is a very different matter altogether.
With the migration to Bancor now almost completed, one can safely say the Kin token no longer has anything to do with Ethereum come June 15. As of right now, there is still an ERC20 relay active to swap KIN to the Bancor-based token accordingly. Once fully completed, the wait begins to determine if Bancor can live up to the Kik team’s expectations in terms of sustainability and scalability.
Manually Migrating ERC20 Tokens is Pertinent
Contrary to what most users might expect, the switch from ERC20 to Bancor tokens will not occur automatically. Users are advised to either use a swap service such as CoinSwitch or Changelly, or perform this course of action through an exchange. The swap services should complete this process in 30 minutes or less, which might be the more approachable option for KIN holders.
Several exchanges have also supported this migration since March of 2019. That list includes HitBTC, CoinTiger, LAToken, and a few others. However, it seems most of the “windows” for exchanges have closed already, as this swap was announced several months ago. Using the swapping service or the ERC20 relay is still a viable option at this time. Ensuring tokens are converted sooner rather than later is the best course of action.
Finding the Right Wallet
Sorting any cryptocurrency, token, or asset is always a matter of conducting proper research. For Kin holders, moving the funds to a Bancor-based wallet can be done when using either the Ledger or Atomic Wallet, as well as the Freewallet solution. All of these platforms support the old and new token at this time, which should make it relatively easy to generate a new address to receive the correct tokens.
Another option is to use Bancor’s own Smart Wallet, which allows users to support all ERC20 and EOS tokens in existence today. By default, this also means the new Bancor-based tokens will be supported, as this integration was completed in late 2017. There are plenty of options for users to look into in this regard, albeit putting in some effort is to be expected at this time.
Boosting KIN’s Popularity on Bancor
As this token swap will enter the final stages, it is not unlikely KIN will overtake some other tokens issued on Bancor in popularity, albeit briefly. It is rather interesting to take note of how many tokens are currently running on top of Bancor’s infrastructure. This list is a lot longer than most people might assume, although it is evident Ethereum remains the undisputed leader in this regard.
Until Ethereum can successfully address the scaling concerns affecting the network, it seems likely there may be a few more migration efforts in the months and years to come. While it is a popular platform to issue ICO tokens, it seems things will get rather interesting in the coming months and years. For KIn users, not too much will change in terms of using the coin. In terms of which features and use cases may be unlocked in the future, one never knows what may come next.
Disclaimer: This is not trading or investment advice. The above article is for entertainment and education purposes only. Please do your own research before purchasing or investing into any cryptocurrency or digital currency.
Click here to view original web page at cointelegraph.com
Online cryptocurrency paper wallet creator WalletGenerator.net previously ran on code that caused private key/public key pairs to be issued to multiple users. The vulnerability was described in an official blog post by security research Harry Denley of MyCrypto on May 24.
According to the post, the bad code was in effect by August 2018, and was only recently patched out as of May 23. The live code on the website is reportedly supposed to be open source and audited on GitHub, but there were differences detected between the two. After researching the live code, Denley concluded that the keys were deterministically generated on the live version of the website, not randomly.
In one of MyCrypto’s tests between May 18–23, they attempted to use the website’s bulk generator to make 1,000 keys. The GitHub version returned 1,000 unique keys, but the live code returned 120 keys. Running the bulk generator always reportedly returned 120 unique keys instead of 1,000 even when other factors were tweaked, including browser refreshes, VPN changes, or user changes.
Randomness is needed to generate the key pairings in order for the paper wallets to be secure. As the post puts it:
“ELI5: When generating a key, you take a super-random number, turn it into the private key, and turn that into the public key / address. However, if the ‘super-random’ number is always ‘5,’ the private key that is generated will always be the same. This is why it’s so important that the super-random number is actually random…not ‘5.’”
WalletGenerator patched the determinism problem after MyCrypto reached out during the middle of its investigation. WalletGenerator purportedly responded afterward saying that the allegations could not be verified, and even asked the correspondent if MyCrypto was a “phishing website.”
MyCrypto added that users who generated keypairs after August 17, 2018 should immediately move their funds to a different wallet and recommended not to use WalletGenerator.net.
As previously reported by Cointelegraph, a so-called “blockchain bandit” made off with around 45,000 ether (ETH) by guessing weak private keys on the Ethereum blockchain.
Click here to view original web page at www.coinspeaker.comPhoto: Block.one
EOS’s Block.One seems to be up for a big announcement – or more of them at least. Even though it still isn’t quite sure what it might reveal, there are some rumors about it.
Everything should be clear 1st of June in Washington, DC, but, from what we have learned – this could mean anything from new social network to new wallet. However, let’s start from the beginning. In just one year, EOS became one of the most popular platforms for blockchain-based DApps, by some measures outperforming even its closest competitor Ethereum.
The problem was, that no matter the popularity, EOS couldn’t find success among blockchains as in achieving mainstream recognition. It seems that people who created EOS, are now wanting to change that position.
Block.one CEO Brendan Blumer said that last June, Block.One delivered the world most performant Blockchain protocol – EOS. This June they are focused on delivery safety, alignment and decentralization to mainstream personal infrastructure that is, by his words, completely broken today. Dan Larimer, the creator of EOS, said:
“When the time comes, our marketing will be beyond anything seen in crypto. But before you can market you need an onboard strategy that can convert users and a service that can retain them…[Brendan] Blumer [the CEO of Block.one] has assembled a world-class team that is preparing to make big moves in June.”
He also made an appearance on Telegram saying:
“We are going to announce a date for when we will release the roadmap for Block.one.”
He also said that there will be several announcements, not just one.
However, certain rumors went ahead when on May 21st, Galaxy Digital Holdings received $71.2 million for their ordinary shares, a 123% return on their investment from Block.One.
Michael Novogratz, CEO and Founder of Galaxy Digital tweeted:
Want to set the record straight. Galaxy is still a shareholder in @block_one_ , We are a large holder of $EOS tokens, and we strongly believe in the leadership of @BrendanBlumer and @bytemaster7 Very excited for their June announcement. Took profit to rebalance our portfolio.— Michael Novogratz (@novogratz) May 23, 2019
And so, the countdown has begun. Block.one even created a website to hype their announcement. Although everyone is pretty much sick and tired of the ticking clocks (GotSatoshi and Craig Wright, remember?), it seems that this one will not be a scam after all.
But What Could It Be?
Reading Telegram most of the times give us better insight than just reading the news. So, we know for sure (or at least Larimer wrote so) that there will be “no government partnership” and “no Apple partnership” even though the latter was pretty much talked about.
Then, it might be an announcement of a new social media platform. It is already known that Block.one has recently obtained a trademark for a product called MEOS, which, according to the filing, is a social network. Larimer also asked on Telegram:
“Do you like MEOS?”
Also, his recent comments reveal that the company is “spending on blockchain-based social media” separately from other EOS venture capital activities. His comments also imply that scalability will play into the announcement, and massively onboarding users to a new social media platform could be a big part of that.
MEOS might also serve as sort of photo app and a tool for accessing EOS-based DApps. Additionally, the filing reveals that there will be tools for developers who want to build on top of the platform.
Also, there might be the case of developing mobile app and create a new wallet. Such a wallet could provide users with a way to spend money on EOS-based DApps or allow users to transfer tokens to certain recipients. However, EOS.IO has also expressed interest in something that most crypto wallets don’t provide: universal and “passwordless” authentication systems.
However, because of so much (mostly wrong) rumors, in May 23rd Larimer wrote:
“Please don’t overhype June 1. We have great news, and I’m excited about it. But overhyped will make even great news disappointment.”
It is interesting because just one minute after he asked:
“Is Vitalik on Telegram?”
Does that mean that he is trying to give him a warning or at least a slight stage fright is still not clear. However, if we consider the fact that the EOS network is capable of a more significant transaction each second than Ethereum, which perhaps gives that technical superiority it needs to onboard more users on its DApps, the real battle could be in sight.
After all, to question about whether Block.One prefers to operate at the protocol layer or will it also provide solutions at the application level (it’s own decentralized apps) he answered:
“One day BTC will probably run on Eosio chains.”
You May Also Like
Click here to view original web page at www.ethnews.com
Cryptocurrency wallet provider Coinomi has responded to recent claims that the company’s wallet software sends wallet recovery seed phrases to Google’s remote spell checker servers in unencrypted text. According to Coinomi’s Medium post, the spell check requests "returned an error (code: 400) as they were flagged as ‘Bad Request’ and weren’t processed further by Google."
Exchanging a Few Words
Warith Al Maawali created the avoid-coinomi.com website after finding the alleged vulnerability in the Coinomi desktop wallet. Like other software wallets, Coinomi uses a 12-word seed phrase in the event a user needs to restore a wallet, forgets their pin, or needs to transfer funds to a new device. On his website, Maawali explains that, while restoring his Coinomi wallet on his desktop, his seed phrases were sent in "clear plain text" (unencrypted) to googleapis.com, a domain name owned by Google that acts as a spellcheck function. The feature is supposedly meant to make it easier for users to spot typos while entering in their seed phrases.
Maawali posted a video of the alleged vulnerability to the avoid-coinomi website. He claimed the bug resulted in $60,000 to $70,000 worth of cryptocurrency being stolen from his wallet by "someone from Google’s team" or whoever had access to the Google server. As for how the alleged hacker knew the 12 words were a part of a wallet recovery phrase, Maawali states: "Anyone who is involved in technology and crypto-currency knows that a [sic] 12 random English words separated by spaces will probably be a passphrase to a crypto-currency wallet!"
Maawali alerted Coinomi to the supposed bug via email on February 22. The wallet provider then published the conversation that took place between Maawali and Coinomi. In the conversation, Maawali asked that Coinomi "refund the stolen amount of coins or their value in USD and consider it as a ‘bug bounty reward’ … otherwise I have no choice other than reporting this in social media." Coinomi then asked for a video call to be held for "KYC purposes," to which Maawali replied: "Tomorrow I am going live with this as well as sending a copy to the authorities I will let the authorities and public deal with you [sic]. All I am asking to get my funds back 65k-70k or 17 BTC in value." Finally, Coinomi took to Twitter to declare that the company does not "negotiate with blackmailers."
On February 27, Coinomi posted its official statement on Medium, addressing the vulnerability claim. According to Coinomi, the bug was a result of a "bad configuration option in a plug-in used in Desktop wallets only." The plug-in enabled the spellcheck function by default, and the team patched the desktop version of their wallet on February 22, the day Maawali first got in contact.
The statement also questions the validity of Maawali’s theft claims, stating that Maawali repeatedly refused to disclose his findings and that the wallet could not have been hacked for three reasons:
"Coinomi Team never had access to these seed phrases or funds. No one else except for Google could read the contents of the encrypted packets that contained the seed phrases. Google rejected these requests … as they were badly formed (didn’t contain a valid Google API key) and never actually processed them."
The statement notes that, with the patch to desktop wallets, Android and iOS users do not need to take any actions to secure their wallets, while desktop users just need to make sure they have updated to the latest patched version.
Responding to Coinomi’s Response
With Coinomi’s statement claiming outright that this issue could not have resulted in a loss of funds, MyCrypto founder and CEO Taylor Monahan took to Twitter to discuss the kind of language and tone used by Coinomi. In a series of tweets, Monahan criticized Coinomi’s deflection of the claims made against its wallet software and its treatment of bug reporters. Eventually, MyCrypto posted its own statement on Medium, outlining positive and helpful steps to take in the event of a security incident.
Nicholas Ruggieri studied English with an emphasis in creative writing at the University of Nevada, Reno. When he’s not quoting Vines at anyone who’s willing to listen, you’ll find him listening to too many podcasts, reading too many books, and crocheting too many sweaters for his dogs, RT and Peterman.
Like what you read? Follow us on Twitter @ETHNews_ to receive the latest Coinomi, wallet or other Ethereum wallets and exchanges news.
Click here to view original web page at www.newsbtc.comEthereum prices bearish, strong liquidation at $170Constantinople in progressTransaction volumes increase in last weeks but will accumulation trigger bulls
After previous attempts flopped, we expect the ongoing Constantinople upgrade to be a success. Whether that will rouse price action, we don’t know, but for bulls to be firmly in control, prices must rally above $170 or Dec 2018 highs.
Ethereum Price Analysis
As you read this, Constantinople software upgrade may be in progress and the second stage of the Metropolis could see Ethereum trudge closer to proof of stake in Serenity.
In a two-way fork—a separate upgrade in St. Petersburg because of vulnerabilities presented in the last update, Ethereum will implement all their EIPs ensuring that the network is efficient, delaying the difficulty bomb by another year and reduce ETH rewards for miners from three to two in “thirdening.”
However, a source of controversy is the implementation of CREATE 2, a proposal forwarded by Vitalik Buterin. There are concerns from the developer’s fraternity that interaction with smart contracts outside of Ethereum will create loopholes that would leave the blockchain open to attacks.
Unlike other contentious hard forks, coin holders need not worry about their stash unless otherwise notified by the foundation:
“If you use an exchange (such as Coinbase, Kraken, or Binance), a web wallet service (such as Metamask, MyCrypto, or MyEtherWallet), a mobile wallet service (such as Coinbase Wallet, Status.im, or Trust Wallet), or a hardware wallet (such as Ledger, Trezor, or KeepKey) you do not need to do anything unless you are informed to take additional steps by your exchange or wallet service.”
Like most coins, ETH is in an uptrend, but prices are trending in tight trade ranges. The second most valuable coin is down 8.5 percent from last week’s close and trading inside the bear bar of Feb 24. In an effort versus result point of view, sellers have the upper hand.
Regardless, ETH/USD is within a bull breakout pattern thanks to Feb 18-19 upswings that saw prices rally and conclusively close above $135. Therefore, considering this price action alignment, we shall consider Feb 24 draw down a retest, and for risk-off traders, every low should be a buying opportunity.
Meanwhile, risk-averse and conservative type of traders can only ramp up once prices rally above $170—our main resistance level and Dec 2018 highs.
Our anchor bar is Feb 24 because it has high transaction volumes—880k versus 415k according to BitFinex data streams. Bulls are in control but for trend continuation, a bar that will cause a sharp reversal of trend must have high trade volumes exceeding recent averages of 365k or 900k above those of Feb 24.
Tags: constantinople, ETH, ethereum
Constantinople in progress
Transaction volumes increase in last weeks but will accumulation trigger bulls After previous attempts flopped, we […]
Click here to view full article
Click here to view original web page at www.coindesk.comThe long-anticipated upgrade Constantinople has officially activated on the ethereum blockchain.
At 19:57 (UTC), the sixth system-wide upgrade to be released since the second largest cryptocurrency by market cap launched in 2015 has successfully been rolled out onto the main network at block number 7,280,000.
But, that’s not all. The unusual part about today’s hard fork is that are two of them. St. Petersburg – ethereum’s seventh system-wide upgrade – has been released simultaneously and as intended has disabled part of the Constantinople code deemed back in January to host security vulnerabilities that could be used by attackers to steal funds.
It’s such a big upgrade, it’s important it goes well so as to not cause ethereum to split. So far, as seen on blockchain monitoring website Fork Monitor, there is no evidence of a significant chain split to suggest a portion of ethereum users are still running on old ethereum software.
As background, before any system-wide upgrade also called a hard fork, users such as miners and operators of ethereum-based applications are required to install new client software that automatically updates at the exact same block number.
This prevents two concurrent and incompatible versions of the same blockchain from splitting the wider network.
“With the blockchain, everyone has to upgrade in order for everyone to be able to use [the new] features,” explained Taylor Monahan – CEO of blockchain wallet tool MyCrypto.
That means everyone has to be prepared ahead of time.
“About two weeks before the fork, everyone upgrades the software but none of the new features are enabled,” said Monahan to CoinDesk. “Then, on that block number, everyone at the exact same time starts using the new features. So, that’s how we prevent differing states from existing simultaneously. It’s [also] called a consensus issue or a consensus bug.”
MyCrypto presently runs 10 to 15 computer servers also called nodes all running on the most updated version of the Parity ethereum client.
With today’s release of Constantinople and St. Petersberg, four different ethereum improvement proposals (EIPs) have been officially activated on the ethereum network – one of which does introduce a new “corner case” affecting smart contract immutability.
As of press time, the market price for ether – the main cryptocurrency of the network – has seen a small jump from $135.14 shortly prior to mainnet release and presently sits at $136.99, according to the CoinDesk Price Index.
Railroad tracks image via Shutterstock
At 19:57 (UTC), the sixth system-wide upgrade to be released since the second largest cryptocurrency by market cap launched […]
Click here to view full article
Click here to view original web page at coincodex.com
In this guide, we will be creating an Ethereum wallet using the popular MyEtherWallet (MEW) service. There’s also other great ways to make an Ethereum wallet such as MyCrypto, but we think MyEtherWallet is the easiest to use for first-time users. The wallet will let us safely store and transact with our ETH as well as ERC-20 tokens.
Always make sure you are using the correct website, as MyEtherWallet is commonly imitated by scammers because of its popularity. When you visit for the first time, the website provides a helpful walkthrough of the steps you need to take to ensure you’re safe. Read the walkthrough carefully, as it also clears up many of the common misconceptions regarding what MyEtherWallet is and what it does.
Once you’ve read the walkthrough, you will land on the main page of MEW. Now, you have to come up with a password that will be used to encrypt your private keys. Enter the password and click “Create new Wallet”.
Now, MEW will generate a keystore file for you to download. Once downloaded, you shouldn’t be opening this file of your computer, but only use it to unlock your wallet via MEW or other Ethereum wallet clients. Once you’re done, click “I understand. Continue.”.
MEW will generate a private key and give you an option of printing a paper wallet. It’s up to you if you want to store your private key digitally, on a paper wallet, or both. Whatever you choose to do, always keep your private key safe and never share your private key with anyone. If you choose to create a paper wallet, do not store the PDF file that is used to print the paper wallet on your computer without encryption.
Now, MEW will present us with a range of options for accessing our wallet. In this guide, we’ll be using our private key to access our wallet, because it means we don’t need to download any additional software or purchase any items.
This is not the safest way of going about things, and we strongly encourage you to consider purchasing a hardware cryptocurrency wallet such as the Ledger Nano S if you are dealing with an amount of funds that is substantial to you.
For just getting started with small amounts and experimenting with Ethereum, DApps, and tokens, the private key method will work fine. If you decide to step up your ETH game and handle larger amounts, we recommend you create a new wallet with MEW and access it through safer methods such as a hardware wallet.
After we paste in our private key and press “Unlock”, we will be able to see our new address for the first time.
Congratulations, you now have an Ethereum address! To see how you can use your wallet to send your ETH, check out our next guide:
Click here to view original web page at ethereumworldnews.com
The popular cryptocurrency exchange of Coinbase launched a new 12 day event similar to the popular Christmas carol of ‘The 12 Days of Christmas’. The Christmas carol has been long known to be a song that talks about giving gifts to loved ones in a 12 day period. In the classic song, the value and importance of each gift increases as the days go by with the first day being Christmas day.
Unlike the popular song, the team at Coinbase chose to start their 12 days of giving on the 10th of December. The 12 day event ends on the 21st of December which is four days before Christmas.
The team at Coinbase also describes how they will announce their ‘gifts’ every day.
Each day at noon PST we’ll announce new features, support for new cryptocurrencies, and more. Check back daily!
First and Second Days of Giving by Coinbase
On the first day of the 12 day event, the team at Coinbase announced that customers in the United States, could now spend their crypto balances on WeGift e-gift cards. The gift cards can now be purchased at dozens of vendors. Customers will enjoy no withdrawal fees and bonuses of up to 10% on select vendors thus making it easier to use crypto for day to day purchases of goods and services.
On the second day of the 12 Days of Coinbase, the exchange donated $10,000 in ZCash (ZEC) to support GiveCrypto.org‘s project in the Venezuelan border town of Santa Elena de Uairen. The exchange went on to explain how the donation will be put to use:
With our gift, the organization will put $1 USD worth of crypto directly into the crypto wallets of more than 100 families in Santa Elena every day for 3 months. Recipients can purchase food and basic supplies at a local store that accepts payments in crypto, subsidizing everyday expenses — this $1 USD equivalent per day can buy 1–2 kilos of protein or 2-kilos of starches and vegetables. Recipients will come from the networks of Venezuelan families already in GiveCrypto.org’s program with Bonnum.
10 Days to Go
Coinbase has already revealed the first two gifts. We now have 10 more days and 10 more gifts to receive from Coinbase. The exchange is surely to increase the value of their gifts to worthy causes and to their customers as time goes by.
Coinbase To List More Digital Assets in the Next 10 Days
The exchange has recently announced that its new strategy is driven by customers. They have noted that the one thing their customers want is new cryptocurrencies on the platform. This in turn leaves the door wide open for the exchange to list popular cryptocurrencies such as XRP, Stellar (XLM) and Cardano (ADA) as part of their 12 day event.
The exchange’s commitment to its customers can be found in the following tweet a few hours ago.
“Our recent shift in strategy is really driven by customers. When we asked customers the number one thing they want, they told us it’s adding new cryptocurrencies to the platform.” — Coinbase (@coinbase) December 11, 2018
What are your thoughts on the 12 Days of Coinbase event? Do you think they will list XRP, XLM or ADA? Please let us know in the comment section below.
[Image courtesy of Coinbase.com]
Disclaimer: This article is not meant to give financial advice. Any additional opinion herein is purely the author’s and does not represent the opinion of Ethereum World News or any of its other writers. Please carry out your own research before investing in any of the numerous cryptocurrencies available. Thank you.
#1 Stock to Own in 2019 – Niche Expected to Surge Banyan Hill