Ninjastic
PostEdited versionsQuotes to this post
Post
Topic
Board Collectibles
Merits 5 from 2 users
Re: RarityCheck VIBGYOR gilded #12 swept yesterday.
by
seavodin
on 08/08/2024, 21:59:08 UTC
⭐ Merited by LoyceV (4) ,DaveF (1)
Quote from: hybridsole on Today at 09:34:03 PM
Walletgenerator.net has had known vulnerabilities since at least 2019: https://medium.com/mycrypto/disclosure-key-generation-vulnerability-found-on-walletgenerator-net-potentially-malicious-3d8936485961

But one other issue is that walletgenerator does not support the creation of Vanity keys...so I'm confused why you even switched to using this software from bitaddress?

This is for the website- not for the code on github which RC said he used.
One of the main reasons this vulnerability was found was by comparing the two code bases, which revealed the addition of the malicious code.

From that medium article you posted in (2019):
'At this time, the code on GitHub is not malicious nor vulnerable, nor has it been malicious or vulnerable previously.'
Last checkin for that code on github appears to be 7 years ago.

Even if that code was compromised, if it was on an air gapped system theres no way it could have communicated the keys back to the malicious actors.
Something doesnt smell right here.