NEWS - August 13, 2013
by Carol~ - 8/13/13 3:34 AM
Bitcoin Transactions on Android Vulnerable to Theft
Bitcoin wallets on the Android platform are vulnerable to theft after a vulnerability was discovered that could allow an attacker to guess a private key used to secure transactions involving the virtual currency.
A post to a Bitcoin forum over the weekend pointed to a report of one address having 55.8 Bitcoins stolen. As of this morning, one Bitcoin was worth $104.52 according to an online Bitcoin exchange calculator.
"All private keys generated on Android phones/tablets are weak and some signatures have been observed to have colliding R values, allowing the private key to be solved and money to be stolen," said developer Mike Hearn who wrote an alert on a Bitcoin development mailing list.
The vulnerability is in the Android implementation of the Java SecureRandom random number generator. An alert on bitcoin.org urges users to rotate their keys and generate new addresses with a repaired random number generator and then send your Bitcoin funds back to yourself.
Continued : http://threatpost.com/bitcoin-transactions-on-android-vulnerable-to-theft/101958
All Android-created Bitcoin wallets vulnerable to theft
Bitcoin wallets created on Android devices at risk of theft
Android random number flaw implicated in Bitcoin theftsAndroid bug batters Bitcoin wallets