Leak -- Compromised MEMO key successfully protected!!

in HiveDevs4 years ago (edited)


❗❗❗ 💀💀 ⚠️⚠️
It's a new day and another user leaked one of their private keys into the Hive Blockchain.

They COMPROMISED their...

private MEMO key

HOW: in a transfer operation published to the Hive blockchain.


The compromised account owner has now been notified in multiple ways. The identity of the user will be disclosed only in the monthly report in order to give them time to address the issue.

Compromised account stats:

  • Reputation: 55

  • Followers: 43

  • Account creation: May 2019

  • Last Post: 23 hours ago

  • Estimated account value: $ 14.46


Top 5 private ACTIVE keys protected:

1. @nextgen622: ~$ 28,000
2. @cryptoandcoffee: ~$ 8,400
3. @runridefly: ~$ 3,300
4. @globalmerchantio: ~$ 250
5. @j3dy: ~$ 120 (500 HIVE automatically protected for 9 days)

What does this bot do?

- Keys protection[live scan of transfers / posts / comments / other_ops. Auto-transfers to savings, auto-reset of keys, ..] {see automatic posts on leak and monthly reports}
- Phishing protection [live scan of blocks to warn against known phishing campaigns and compromised domains]
- Re-posting detection [mitigates the issue of re-posters]
- Code injections detection [live scan of blocks for malicious code targeting dapps of the Hive ecosystem]
- Anti spam efforts [counteracts spam from hive haters]

My security disclosures:
- XSS vulnerabilities in #########.com
- XSS vulnerabilities in hive-db.com
- XSS vulnerabilities in scribe.hivekings.com
- XSS vulnerabilities in hiveblockexplorer.com
- Malicious ads redirecting all Steemit iOS users to a phishing site
- Reverse tabnabbing and clickjacking in steem.chat and steeemit registration page

To support this bot..

                                       
- Delegation links:
10, 20, 30, 40 HP
50,100, 200 HP,
500 HP, 1000 HP
- Curation trail
Follow my curation trail on hive.vote to upvote all my posts with a fixed weight.

#security #hacking #abuse #stem #neoxian #palnet
4 years ago in HiveDevs by
$1.64
  • Past Payouts $1.64
  • - Author $0.89
  • - Curators $0.75
67 votes
Reply 4
Sort:  
  • Trending
    • [-]
     4 years ago  

    It's a shame that new users fall into this trap

    $0.00
      Reply
      [-]
       4 years ago  

      well, it was just a bad copy and paste - his private key was sent in the transaction memo

      $0.00
        Reply
        [-]
         4 years ago  

        hopefully no one takes advantage of it and that person is not harmed

        $0.00
          Reply
          [-]
           4 years ago  

          They would only able to read his encrypted messages if the compromised account ever sent/received any.

          $0.00
            Reply