• Visitors can check out the Forum FAQ by clicking this link. You have to register before you can post: click the REGISTER link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below. View our Forum Privacy Policy.
  • Want to receive the latest contracting news and advice straight to your inbox? Sign up to the ContractorUK newsletter here. Every sign up will also be entered into a draw to WIN £100 Amazon vouchers!

Cryptocurrency

Collapse
X
  •  
  • Filter
  • Time
  • Show
Clear All
new posts

    interesting report from Bloomberg:

    Digital currencies and the software developed to track them have become attractive targets for cybercriminals while also creating a lucrative new market for computer-security firms.

    In less than a decade, hackers have stolen $1.2 billion worth of Bitcoin and rival currency Ether, according to Lex Sokolin, global director of fintech strategy at Autonomous Research LLP. Given the currencies’ explosive surge at the end of 2017, the cost in today’s money is much higher.

    “It looks like crypto hacking is a $200 million annual revenue industry,” Sokolin said. Hackers have compromised more than 14 percent of the Bitcoin and Ether supply, he said.

    All told, hacks involving cryptocurrencies like Bitcoin have cost companies and governments $11.3 billion through lost potential tax revenue from coin sales and illegitimate transactions, according to Susan Eustis, chief executive officer of WinterGreen Research. The blockchain ecosystem -- the decentralized “distributed ledgers” that track crypto transactions -- is also vulnerable.

    Those losses could snowball as more companies and investors rush into the white-hot cryptocurrency market without weighing the dangers or taking steps to protect themselves.

    Super-Secure?


    Blockchain records are shared, making them hard to alter, so some users see them as super-secure. But in many ways they are no safer than any other software, Matt Suiche, who runs the blockchain security company Comae Technologies, said in a phone interview.

    And since the market is immature, blockchains may even be more vulnerable than other software. There are thousands of them, each with its own bugs. Until the field is winnowed to a few favorites, as happened with web browsers, securing them all will be a challenge.

    “Each implementation is going to have its own problems,” Suiche said. “The more implementations, the harder it is to cover all of them.”

    Blockchains can track identity information, property records and even digital car keys, not just cryptocurrency. But of course, they do that too, and stolen Bitcoins can be converted into hard cash.

    So while hacking a blockchain may be harder than breaking into a retailer’s database, “the rewards are greater,” according to Andras Cser, an analyst at Forrester Research. “You have much more information you can steal.”

    Exploiting Forks

    Many blockchains started as forks that diverged from existing crypto ledgers, and as Taiwanese security researchers have pointed out, every fork gives hackers a new way to try to falsify data.

    In a Dec. 25 paper, researchers at the Institute of Electrical and Electronics Engineers outlined ways hackers can spend the same Bitcoins twice, the very thing blockchains are meant to prevent. In a Balance Attack, for instance, hackers delay network communications between subgroups of miners, whose computers verify blockchain transactions, to allow for double spending.

    “We have no evidence that such attacks have already been performed on Bitcoin,” the IEEE researchers said. “However, we believe that some of the important characteristics of Bitcoin make these attacks practical and potentially highly disruptive.”

    ‘Sensitive Data’

    A researcher from Cisco Talos, a security group, found vulnerabilities in Ethereum clients, including a bug that “can lead to the leak of sensitive data about existing accounts.” A security hole in the Parity wallet resulted in losses of $155 million in November.

    In December, Youbit, an exchange in South Korea, said it would file for bankruptcy following an attack in which it lost 17 percent of its assets. The same month, mining service NiceHash said hackers stole as much as $63 million in Bitcoin from its virtual wallet.

    Smart contracts -- blockchain-based programs that automate asset transfers -- are also vulnerable. In 2016, hackers stole at least $50 million out of the DAO, a venture-capital smart contract. Only an update to Ethereum allowed users to get their money back.

    Programmers’ old-school mindsets are partly to blame for the technology’s flaws.

    “When you have a bug, you release a patch,” Richard Ma, co-founder of Quantstamp, a company backed by venture-capital firm Y Combinator Inc. “With a smart contract, you deploy it to the network, and it’s not possible to ever change it again.”

    Opportunity Knocks

    But Ma sees an opportunity. In March, Quantstamp will release an automated tool that scours smart contracts for bugs. Established security firms such as McAfee Inc. may also repurpose their wares for the blockchain crowd.

    “In many cases, our existing products can help secure the ecosystem,” Steve Grobman, chief technology officer of McAfee, said in a phone interview. “In general, it will be vulnerable to threats just like any other software system.”

    The market for software, services and hardware to secure blockchain activity should grow to $355 billion as the digital economy moves to cybercurrency and banks and the financial community totally restructure, according to WinterGreen. It was $259 million in 2017.

    Let’s hope they put all that money somewhere safe.

    Comment


      Yeah it's still the wild West out there - the non-tech savvy are wide open and there is massive opportunity for hackers to steal people's money. Basic rules of thumb are:

      Don't leave coins on Exchanges - because exchanges get hacked
      Avoid web based wallets - use local/paper based cold storage
      Don't share your private key or store it on a file on your computer
      Don't buy hardware wallets on Ebay or 'used' hardware wallets - always check the seal is unbroken and buy from a reputable source (I bought my nano on Amazon)

      If you get into crypto and don't take the time to understand how to secure your assets it's all on you if/when it all get's nicked. I think the next year or so we should start seeing crypto use for the masses with granny friendly UIs and paypal like security.

      At the moment if you want to check on a Stellar transaction you'll get a page like this.

      Still the Bloombergs/CNBCs of this world will keep spreading FUD - let them I want to keep loading up at these prices before the 'non-technical' users come flooding in.
      "Is someone you don't like allowed to say something you don't like? If that is the case then we have free speech."- Elon Musk

      Comment


        Originally posted by Jog On View Post
        Use GDAX (coinbase's other platform for trading as opposed to buying and holding) ....
        I tried this, have you seen the spreads on BTC/GBP?

        They are usually around 25 to 30, whereas BTC/USD is around 0.01

        Being in the UK, GDAX will only allow me to trade BTC/GBP but why would I want to when you see the spreads are 2500x higher?
        First Law of Contracting: Only the strong survive

        Comment


          Originally posted by Martin@AS Financial View Post
          interesting report from Bloomberg:

          Digital currencies and the software developed to track them have become attractive targets for cybercriminals while also creating a lucrative new market for computer-security firms.

          In less than a decade, hackers have stolen $1.2 billion worth of Bitcoin and rival currency Ether, according to Lex Sokolin, global director of fintech strategy at Autonomous Research LLP. Given the currencies’ explosive surge at the end of 2017, the cost in today’s money is much higher.

          “It looks like crypto hacking is a $200 million annual revenue industry,” Sokolin said. Hackers have compromised more than 14 percent of the Bitcoin and Ether supply, he said.

          All told, hacks involving cryptocurrencies like Bitcoin have cost companies and governments $11.3 billion through lost potential tax revenue from coin sales and illegitimate transactions, according to Susan Eustis, chief executive officer of WinterGreen Research. The blockchain ecosystem -- the decentralized “distributed ledgers” that track crypto transactions -- is also vulnerable.

          Those losses could snowball as more companies and investors rush into the white-hot cryptocurrency market without weighing the dangers or taking steps to protect themselves.

          Super-Secure?


          Blockchain records are shared, making them hard to alter, so some users see them as super-secure. But in many ways they are no safer than any other software, Matt Suiche, who runs the blockchain security company Comae Technologies, said in a phone interview.

          And since the market is immature, blockchains may even be more vulnerable than other software. There are thousands of them, each with its own bugs. Until the field is winnowed to a few favorites, as happened with web browsers, securing them all will be a challenge.

          “Each implementation is going to have its own problems,” Suiche said. “The more implementations, the harder it is to cover all of them.”

          Blockchains can track identity information, property records and even digital car keys, not just cryptocurrency. But of course, they do that too, and stolen Bitcoins can be converted into hard cash.

          So while hacking a blockchain may be harder than breaking into a retailer’s database, “the rewards are greater,” according to Andras Cser, an analyst at Forrester Research. “You have much more information you can steal.”

          Exploiting Forks

          Many blockchains started as forks that diverged from existing crypto ledgers, and as Taiwanese security researchers have pointed out, every fork gives hackers a new way to try to falsify data.

          In a Dec. 25 paper, researchers at the Institute of Electrical and Electronics Engineers outlined ways hackers can spend the same Bitcoins twice, the very thing blockchains are meant to prevent. In a Balance Attack, for instance, hackers delay network communications between subgroups of miners, whose computers verify blockchain transactions, to allow for double spending.

          “We have no evidence that such attacks have already been performed on Bitcoin,” the IEEE researchers said. “However, we believe that some of the important characteristics of Bitcoin make these attacks practical and potentially highly disruptive.”

          ‘Sensitive Data’

          A researcher from Cisco Talos, a security group, found vulnerabilities in Ethereum clients, including a bug that “can lead to the leak of sensitive data about existing accounts.” A security hole in the Parity wallet resulted in losses of $155 million in November.

          In December, Youbit, an exchange in South Korea, said it would file for bankruptcy following an attack in which it lost 17 percent of its assets. The same month, mining service NiceHash said hackers stole as much as $63 million in Bitcoin from its virtual wallet.

          Smart contracts -- blockchain-based programs that automate asset transfers -- are also vulnerable. In 2016, hackers stole at least $50 million out of the DAO, a venture-capital smart contract. Only an update to Ethereum allowed users to get their money back.

          Programmers’ old-school mindsets are partly to blame for the technology’s flaws.

          “When you have a bug, you release a patch,” Richard Ma, co-founder of Quantstamp, a company backed by venture-capital firm Y Combinator Inc. “With a smart contract, you deploy it to the network, and it’s not possible to ever change it again.”

          Opportunity Knocks

          But Ma sees an opportunity. In March, Quantstamp will release an automated tool that scours smart contracts for bugs. Established security firms such as McAfee Inc. may also repurpose their wares for the blockchain crowd.

          “In many cases, our existing products can help secure the ecosystem,” Steve Grobman, chief technology officer of McAfee, said in a phone interview. “In general, it will be vulnerable to threats just like any other software system.”

          The market for software, services and hardware to secure blockchain activity should grow to $355 billion as the digital economy moves to cybercurrency and banks and the financial community totally restructure, according to WinterGreen. It was $259 million in 2017.

          Let’s hope they put all that money somewhere safe.
          A couple of snippets I've just quickly grepped From the bitcoin C++ source code (my git clone is a couple of months out of date)...

          amount.h

          * in unusual circumstances like a(nother) overflow bug that allowed
          * for the creation of coins out of thin air

          * */
          static const CAmount MAX_MONEY = 21000000 * COIN;


          timedata.cpp

          // But in this case the 'bug' is protective against some attacks
          if (vTimeOffsets.size() >= 5 && vTimeOffsets.size() % 2 == 1)
          {


          Sleep tight !

          Comment


            Looks like BTC will continue to consolidate for another week or two IMO, don't be surprised to see $9k again. Every time it does it is gathering more and more oomph. Starting to wonder if we're going to see $50k before the summer. Wish I could tag these posts for later ogling.

            Meanwhile use this opportunity to gather more alt's. Ripple and TRX spiked amazingly well the last 24 hours, i'd be taking profits if I had some.
            "Never argue with stupid people, they will drag you down to their level and beat you with experience". Mark Twain

            Comment


              Originally posted by scooterscot View Post
              Looks like BTC will continue to consolidate for another week or two IMO, don't be surprised to see $9k again. Every time it does it is gathering more and more oomph. Starting to wonder if we're going to see $50k before the summer. Wish I could tag these posts for later ogling.

              Meanwhile use this opportunity to gather more alt's. Ripple and TRX spiked amazingly well the last 24 hours, i'd be taking profits if I had some.
              TRX likely to be listed on KuCoin in the next 3 days. Currently miles ahead in the vote.

              It might spike at that point but I would agree that I would take some profit given that it's already doubled in the past couple of days.

              Watch out for APPC. It's a sleeping giant I reckon.

              Comment


                hoping qtum chews through the rest of the 66btc wall it's facing then explodes :-) ... 58 or so to go
                Your friendly neighbourhood VirtualMonkey - Not giving financial advice since...well...ever.

                Comment


                  APPC does look interesting.

                  Neutron (NTRN) is another low volume potential that has my interest, an education platform. Also can setup a master node to stake your coinage.
                  "Never argue with stupid people, they will drag you down to their level and beat you with experience". Mark Twain

                  Comment


                    Originally posted by Jog On View Post
                    Just had this confirmed by a paid newsletter I'm subscribed to (dollar vigilante) - looks like current rally is precursor to more down which could go on for a few weeks/months. Recommends £ cost averaging in to a portfolio of 50% BTC and more solid alts.
                    Just wondered what the quality of TDV was like? Do you have the premium or basic? Been looking at different sources for info (palm beach group aren't accepting subs for their crypto offering anymore). It's difficult to sort the wheat from the chaff / fake news.

                    Comment


                      Originally posted by doconline View Post
                      Just wondered what the quality of TDV was like? Do you have the premium or basic? Been looking at different sources for info (palm beach group aren't accepting subs for their crypto offering anymore). It's difficult to sort the wheat from the chaff / fake news.
                      Premium sub looks pretty solid, doesn't come out that often and geared to a longer term portfolio. Like the BTC analysis both fundamental and technical.
                      "Is someone you don't like allowed to say something you don't like? If that is the case then we have free speech."- Elon Musk

                      Comment

                      Working...
                      X