Private addresses created using the Profanity private wallet address generator have been hacked. Due to the altcoin tokens stolen in the attack, a loss of $ 966 thousand is mentioned. The latest hack follows a similar previous attack targeting Ethereum vanity addresses with the Profanity tool as a common denominator.
Hacker moved stolen altcoin tokens to Tornado Cash
Leading security organization PeckShield revealed this hack. The security agency has drawn the attention of the crypto community to around 732 transfers. This amount corresponds to 966 thousand dollars according to the current value of ETH as of press time.
The wallet address 0x9731F involved in the attack transferred the stolen funds to Tornado Cash Mixer, which is on OFAC’s blacklist. In this way, he tried to hide his trace. The hacker repeatedly carried out the transfer of funds to Tornado Cash. The attacker emptied his wallet by press time, leaving behind a balance of 0.05 ETH.
More than $3 million was lost in the attack on some other private addresses created using Profanity recently. The current attack took place shortly after this incident. Also, last week, reports surfaced of a hack that resulted in $3.3 million in losses. The affected addresses appear to have been created using Profanity.
Profanity tool has a security issue
Last week’s attack came after several warning calls from decentralized exchange aggregator 1inch highlighting Profanity’s vulnerabilities. After that, 1inch issued a warning on Twitter. In this context, he asked investors to transfer their funds from their Profanity addresses to other places.
According to 1inch, Profanity uses a 32-bit vector to generate a 256-bit seed. This makes him easily the target of an attack. The hack reports, which surfaced on September 18, came three days after the 1-inch warning. The report highlights the following:
Custom addresses are wallet addresses that usually contain user-selected personalized phrases. Users generate these addresses using a tool like Vanity-ETH and Profanity. Despite this, it’s clear that Profanity has a vulnerability issue.
One of the developers of the tool stated that he has abandoned the project. Therefore, he advised people not to use the tool, citing safety concerns. cryptocoin.com As we have previously reported, market maker Wintermute has recently been hacked. Apparently the exploit was made possible due to a private key compromise caused by a Profanity vulnerability.
Contact us to be instantly informed about the last minute developments. twitter‘in, Facebookin and InstagramFollow and Telegram and YouTube join our channel!
Disclaimer: The articles and articles on Kriptokoin.com do not constitute investment advice. Cryptokoin.com does not recommend buying or selling any cryptocurrencies or digital assets, nor is Kriptokoin.com an investment advisor. For this reason, Kriptokoin.com and the authors of the articles on the site cannot be held responsible for your investment decisions. Readers should do their own research before taking any action regarding the company, assets or services in this article.
Warning: Citing the news content of Kriptokoin.com and quoting by giving a link is subject to the permission of Kriptokoin.com. No content on the site can be copied, reproduced or published on any platform without permission. Legal action will be taken against those who use the code, design, text, graphics and all other content of Kriptokoin.com in violation of intellectual property law and relevant legislation.