Bitcoin wallets vulnerable to double-spending bug

Bitcoin wallets vulnerable to double-spending bugThe cryptocurrency Bitcoin has not been without its problems. There have been numerous hacks leading to the loss of millions of dollars, and Bitcoin mining tool Epic Scale became embroiled in a crapware scandal with uTorrent. The latest problem to hit the digital currency is a double-spending bug.

As the name suggests, this essentially makes it possible to spend the same Bitcoins twice, and it stems from a problem with a planned upgrade. An issue with some Bitcoin miners means that tests that usually prevent double-spending are not correctly performed. The problem was discovered on 4 July as many Americans were busy celebrating Independence Day.

Double-spending is supposed to be thwarted by a safety mechanism which checks the block chain (or transaction database) to check whether any given Bitcoins have been spent or not. Some Bitcoin miners are now generating invalid blocks, making it impossible to guarantee that currency cant be spent more than once. The Bitcoin Foundation assures users that all transactions confirmed by 15:00 on 4 July are safe.

An announcement on the Bitcoin website explains:

For several months, an increasing amount of mining hash rate has been signaling its intent to begin enforcing BIP66 strict DER signatures. As part of the BIP66 rules, once 950 of the last 1,000 blocks were version 3 (v3) blocks, all upgraded miners would reject version 2 (v2) blocks.

Early morning UTC on 4 July 2015, the 950/1000 (95%) threshold was reached. Shortly thereafter, a small miner (part of the non-upgraded 5%) mined an invalid block--as was an expected occurrence. Unfortunately, it turned out that roughly half the network hash rate was mining without fully validating blocks (called SPV mining), and built new blocks on top of that invalid block.

Note that the roughly 50% of the network that was SPV mining had explicitly indicated that they would enforce the BIP66 rules. By not doing so, several large miners have lost over $50,000 dollars worth of mining income so far.

Despite adoption by a number of big names -- including Microsoft -- many people remain skeptical of the digital currency. But there are others who believe cryptocurrencies are the future of online, and real world, transactions. With the economy failing in Greece as the country teetering on the verge of crashing out of the EU, some Greeks have converted their money into Bitcoin in an attempt to minimize the risk of devaluation.

At the moment there is no news that the problem has been exploited by anyone, but unless the vulnerability is addressed, it's only a matter of time before this happens.

Source: Betanews

Tags: security

Comments
Add comment

Your name:
Sign in with:
or
Your comment:


Enter code:

E-mail (not required)
E-mail will not be disclosed to the third party


Emir#10 0
「我们所做的事,该不会只和用双手倒立在悬崖边的小丑一样愚蠢吧?」 Perhaps we're just clowns <a href="http://rqliahmqpq.com">stindang</a> on tiptoe at the edge of a cliff? 「要不是你让凉宫同学产生了奇怪的想法,我们现在都还藏身在远处观察她。」 Not exactly in the anime, but instead it says Your conversation gave her the inspiration to make a club made up of strange individuals. It is your responsibility. As a result, low-ranked members from the three factions interested in Suzumiya-san have gathered together in one group. They're probably the result of fitting the neccessary conversation into the alloted time frame, but the clown comment can be interpreted rather differently between the two translations.
Reply 
Emir#20 0
「我们所做的事,该不会只和用双手倒立在悬崖边的小丑一样愚蠢吧?」 Perhaps we're just clowns <a href="http://rqliahmqpq.com">stindang</a> on tiptoe at the edge of a cliff? 「要不是你让凉宫同学产生了奇怪的想法,我们现在都还藏身在远处观察她。」 Not exactly in the anime, but instead it says Your conversation gave her the inspiration to make a club made up of strange individuals. It is your responsibility. As a result, low-ranked members from the three factions interested in Suzumiya-san have gathered together in one group. They're probably the result of fitting the neccessary conversation into the alloted time frame, but the clown comment can be interpreted rather differently between the two translations.
Reply 
Emir#30 0
「我们所做的事,该不会只和用双手倒立在悬崖边的小丑一样愚蠢吧?」 Perhaps we're just clowns <a href="http://rqliahmqpq.com">stindang</a> on tiptoe at the edge of a cliff? 「要不是你让凉宫同学产生了奇怪的想法,我们现在都还藏身在远处观察她。」 Not exactly in the anime, but instead it says Your conversation gave her the inspiration to make a club made up of strange individuals. It is your responsibility. As a result, low-ranked members from the three factions interested in Suzumiya-san have gathered together in one group. They're probably the result of fitting the neccessary conversation into the alloted time frame, but the clown comment can be interpreted rather differently between the two translations.
Reply 

Last news

 
Consumer group recommends iPhone 8 over anniversary model
 
LTE connections wherever you go and instant waking should come to regular PCs, too
 
That fiction is slowly becoming a reality
 
The Snapdragon 845 octa-core SoC includes the Snapdragon X20 LTE modem
 
Human moderators can help make YouTube a safer place for everyone
 
Google says Progressive Web Apps are the future of app-like webpages
 
All 2018 models to sport the 'notch'
 
The biggest exchange in South Korea, where the BTC/KRW pair is at $14,700 now
The Samsung Galaxy A5 (2017) Review
The evolution of the successful smartphone, now with a waterproof body and USB Type-C
February 7, 2017 /
Samsung Galaxy TabPro S - a tablet with the Windows-keyboard
The first Windows-tablet with the 12-inch display Super AMOLED
June 7, 2016 /
Keyboards for iOS
Ten iOS keyboards review
July 18, 2015 /
Samsung E1200 Mobile Phone Review
A cheap phone with a good screen
March 8, 2015 / 4
Creative Sound Blaster Z sound card review
Good sound for those who are not satisfied with the onboard solution
September 25, 2014 / 2
Samsung Galaxy Gear: Smartwatch at High Price
The first smartwatch from Samsung - almost a smartphone with a small body
December 19, 2013 /
 
 

News Archive

 
 
SuMoTuWeThFrSa
     12
3456789
10111213141516
17181920212223
24252627282930
31      




Poll

Do you use microSD card with your phone?
or leave your own version in comments (4)