XRP’s Recent Collapse Could Force Ethereum Under $200, Analyst Suggests

24m
bitcoinist

Data analyst: Ethereum unlikely to rally until the end of the DeFi bull market

1h
cryptoslate

Bitcoin Price Poised for ‘Imminent’ Breakout As Network Hashrate Hits Record Highs

2h
thebitcoinnews

Banks Worldwide are Increasingly Clamping Down on Customer Being Able to Withdraw Cash and This is Why the World Needs Bitcoin

2h
bitcoinnews

Bitcoin Remains in Firm Bull Territory as Buyers Defend Critical Support

2h
bitcoinist

Crypto Analyst Claims Bitcoin Is Less Than 50 Days Away From...

4h
zycrypto

Bitcoin Has To Reclaim This Level Or Risk A Correction To $8,600, Warns Crypto Strategist

4h
zycrypto

Analysts: DOGE TikTok challenge, falling Bitcoin dominance show “altseason” is here

4h
cryptoslate

IOHK could demonstrate Cardano’s multi-asset standard with Presidential campaign coins for Kanye West and Brock Pierce

4h
cryptoslate

The Popular Stablecoin Tether Is Now Circulating on the Bitcoin Cash Network

5h
thebitcoinnews

Crypto News Roundup for July 7, 2020

5h
beincrypto

Crypto Volumes Plummeted In June, But CME Data Shows Institutional Bitcoin...

5h
zycrypto

The Bitcoin Price Bubble That Never Bursts

5h
zycrypto

Cardano (ADA) May Be Forming a Macro Top Despite Surging 400% Since March

5h
bitcoinist

Top 3 Cryptocurrencies Outperforming Bitcoin Amidst Altcoin Rally

6h
coingape

Alleged scammers hid $14 million of stolen money in Bitcoin

6h
tokendaily

Top 3 Cryptocurrencies Outperforming Bitcoin Amid Altcoin Rally

6h
coingape

Kyber Protocol Katalyst Upgrade And KyberDAO Deployed On The Ethereum Mainnet

6h
cryptoticker

Hey, Big Spender! Don’t Steal My BTC

6h
livebitcoinnews

Female Crypto Influencers Kicked Off Instagram Over Binance Awards

6h
beincrypto

Escalating Bank Runs Spur Chinese Government to Require Approval for Large Cash Transactions

7h
thebitcoinnews

Binance Acquires Crypto Debit Card Issuer for an Undisclosed Sum

7h
cryptoglobe

Analyst: Bitcoin Needs to Push Past $9,600 to Avoid a Brutal Decline

7h
bitcoinist

Tim Draper Reveals He Owns Cryptocurrencies Other Than Bitcoin

8h
cryptoglobe

Beginner’s Guide on How to Buy Litecoin

8h
thebitcoinnews


How a Trader Lost $1,200 in 100 Seconds » The Merkle News

A fool and his money are soon parted. When it comes to dealing with cryptocurrency, it’s important to know exactly what you’re doing. However, not only new crypto users fall victim to lurking predators, even a crypto OG will slip up once in awhile.

Here’s a story about a reddit user – tycooperaow – losing over $1,200 in a matter of seconds.

It all started with a mnemonic passphrase that was accidentally left on a github repository. The reddit user forgot to take out the secret passphrase out of his code, which effectively gives control to all the coins in the wallet it unlocks. Unfortunately for tycooperaow, the hackers were able to scan the mnemonic using their bot which searched every recent public github for a potential crypto mnemonic.

Once the bot confirms a match, it will automatically siphon off all funds to the hackers’ addresses.

Looking at the compromised address‘s transaction history, we can see the rogue transaction sending out 0.038ETH. That is roughly $1,000 at the time of writing.

The caveat here, is that the bot only scans for ether, it doesn’t scan for all tokens attached to the address. The user in question still has roughly $600 in DeFi tokens locked up in the address. However, the user can’t create a transaction to send those tokens to an alternate address because any gas sent gets siphoned off by the bot.

If you have any idea how the reddit user can get those tokens out, please help him out by posting in his stackexchange question.

The best lesson we can learn from the this unfortunate event is to never leave your mnemonic in your code, especially one you might publicly submit to github. A better solution would have been to use environment variables and define them outside the code.

Source: Reddit

Regarding any copyrights issue, please contact us:content@hashbee.com.

0 comments