Connect with us


Monero’s critical burning bug fixed; developers say organizations could be at risk

Ajay Narayan



Monero's critical burning bug fixed; developers say organizations could be at risk
Source: Unsplash

A recent post by Monero’ official website stated that there was a bug in the wallet which could be used by attackers to send multiple transactions to the same stealth address, which were a predominant part of Monero’s privacy. They would be used to authorize and request a sender to create random one-time addresses for all the transactions which were done on behalf of the receiver.

According to the post, this could result in attackers intentionally burning the funds of an organization present in Monero’s ecosystem. The funds can be burnt from any wallet without any additional cost except for the network transaction fees. However, the attacker does not have any direct monetary gains but might benefit from the attack indirectly.

Sending multiple transactions to the same stealth address to burn the funds of a user is not something new and there has been recorded evidence of its existence for quite some time. They further stated:

“the consequences of an organization being involved was not thoroughly thought through until a community member described a hypothetical attack on the Monero subreddit”

The Monero community stated that numerous duplicate key images can be generated by sending XMR to an identical stealth address. The network then declines the key image as it is already available on the blockchain and it will be recognized as an effort to double spend.

The official post further stated that attackers modify the code to get access to a particular private transaction key. This allows the stealth address to receive the same multiple transactions sent to the public address. The attacker could then send one thousand transactions of one XMR to any cryptocurrency exchange. Since the exchange wallets are not aware of the particular abnormality they will credit the attacker with 1000 XMR. Thus the cryptocurrency exchanges are left with 999 burnt outputs of 1 XMR.

However, The community confirmed that the bug did not affect Monero’s protocol and the coin supply was not affected. According to a recent post, the Monero [XMR] wallets on major exchanges like Poloniex, Bittrex, Cryptopia, and were not functioning. Cryptopia, a major exchange platform also stated that the actions were taken as per the request of the Coin Developer.

Subscribe to AMBCrypto’s Newsletter

Follow us on Telegram | Twitter | Facebook

Ajay Narayan is a full-time journalist at AMBCrypto. He has majored in Economics, Political Science and Sociology. His interests are inclined towards writing and investing in cryptocurrencies.


John McAfee says he will reveal Nakamoto’s identity, Coinbase expands to 11 countries, and more





John McAfee says he will reveal Nakamoto's identity, Coinbase expands to 11 countries, and more
Source: Unsplash

Daily Crypto News – April 18

1. John McAfee on Satoshi Nakamoto: The Founder of McAfee Associates stated that he would narrow down on the identity of Satoshi Nakamoto until he reveals Satoshi himself, otherwise he would reveal his identity to the crypto community. He also spoke about how he knows about Satoshi, to read about it, click here!

2. Coinbase expands its services to more countries: The leading exchange platform announced that it expanding its services to 11 more countries, which includes India, South Korea, and New Zealand. People in these countries can avail services provided on, Coinbase Pro and its app on iOS and Android.

To know more about the countries Coinbase has expanded to, click here!

3. Craig Wright says the crypto-community want to silence him: Craig Wright, the self-proclaimed Satoshi Nakamoto, stated that the majority of the community was against him as they “desire to silence” him because they see someone who would bring an end to scams and pumps and dumps.

He also spoke about the next steps he would be taking in terms of the legal action concerning his defamation case. To read about it, click here!

4. Binance “marks the birth of a new genesis block”: The largest cryptocurrency exchange in terms of trade volume announced the launch of its Decentralized Exchange, and also stated that the mainnet swap would take place on 23 April 2019.

To read more about Binance DEX, click here!

Subscribe to AMBCrypto’s Newsletter

Continue Reading