Cybercriminals have already managed to misuse blockchains to perform malicious actions. Ransomware attacks like WannaCry and Petya wouldn’t have been so massive if attackers hadn’t received their rewards in cryptocurrencies. Now, it looks like hackers consider…

We will talk about crypto threats again and we will talk about identifying vulnerabilities for Cold wallets, as well as for Hot wallets. Blockchain is the underlying tech layer made up of a decentralized ledger, and a very secure data structure as there are…

We will talk about crypto threats again and we will talk about identifying vulnerabilities for Cold wallets, as well as for Hot wallets. Blockchain is the underlying tech layer made up of a decentralized ledger, and a very secure data structure as there are…

В этом видеоматериале мы реализуем Twist Attack на примере и покажем как с помощью определенных точек на эллиптической кривой secp256k1 мы можем получить частичные значение приватного ключа и в течение 5-15 минут восстановить Биткоин Кошелек используя “Sagemath…

Vulnerability CVE-2021-44228 allows remote code execution without authentication for several versions of Apache Log4j2 (Log4Shell). Attackers can exploit vulnerable servers by connecting over any protocol, such as HTTPS, and sending a specially crafted string.…

Social Engineering Schemes: How fake crypto app scammers lure users Fake crypto app .The following is a breakdown of some of them. The rise of fake cryptocurrency apps and how to avoid them. Scammers are using fake crypto apps to steal funds from investors.…

Social engineering schemes: How fake crypto app scammers lure users Fake crypto app .The following is a breakdown of some of them. The rise of fake cryptocurrency apps and how to avoid them. Scammers are using fake crypto apps to steal funds from investors.…

В этом видеоматериале мы реализуем Twist Attack на примере №2 согласно первой теоретической части https://youtu.be/S_ZUcM2cD8I мы убедились что с помощью определенных точек на эллиптической кривой secp256k1 мы можем получить частичные значение приватного…

Front-Running AKA Transaction-Ordering Dependence
The University of Concordia considers front-running to be, “a course of action where an entity benefits from prior access to privileged market information about upcoming transactions and trades.” This knowledge…

With the advent of the blockchain technology, front-running has resurfaced in new forms we explore here, instigated by blockchain’s decentralized and transparent nature. In this paper, we draw from a scattered body of knowledge and instances of front-running…

В этой статье мы сделаем новую установку SageMath в Google Colab. Для полного проведения криптоанализа мы установим в Google Colab совершенно новую версию SageMath version 9.3 Ранее мы опубликовали статью: “Install SageMath for cryptanalysis on Fedora 64bit(10GB)…

Биткоин является примером децентрализованной сети. Нет людей или организаций, которые контролируют его. Это часть его архитектуры. ChatGPT стал неотъемлемым инструментом, который большинство людей ежедневно использует для автоматизации различных задач. Биткоин…

Earlier we touched on the topic: “Improving the overall security of the ecosystem from attacks on smart contracts”. In this article, we will continue to develop this painful topic of ecosystem security. Occasionally, it is unwanted for users to be able to…

Occasionally, it is unwanted for users to be able to send Ether to a smart contract. Unfortunately for these circumstances, it’s possible to bypass a contract fallback function and forcibly send Ether. Though it seems like any transaction to the Vulnerable…