Ninjastic
PostEdited versionsQuotes to this post
Post
Topic
Board Altcoin Discussion
Re: Unveiling the truth over the major Monero hoax
by
ArticMine
on 26/08/2014, 16:37:31 UTC
Quote from: fluffypony on August 26, 2014, 10:34:02 AM
Quote from: Cheesus on August 26, 2014, 09:50:56 AM
I wonder why they're not very interested with botnets and fake accounts and pretend that nothing weird is going on

A cryptocurrency growing in popularity is being mined by botnets?? It can't be, this is surely unprecedented in all the history of all the world!

http://krebsonsecurity.com/2013/07/botcoin-bitcoin-mining-by-botnet/
http://www.coindesk.com/microsoft-destroys-bitcoin-mining-botnet-sefnit/
http://www.theinquirer.net/inquirer/news/2332589/bitcoin-mining-botnets-and-windows-xp-threats-are-booming-says-dell-sonicwall
http://www.networkworld.com/article/2225927/security/gaming-company-caught-building-bitcoin-mining-botnet-from-users--computers-gets-off-light.html
http://www.scmagazine.com/bitcoin-mining-botnet-has-become-one-of-the-most-prevalent-cyber-threats/article/288315/
http://www.symantec.com/connect/blogs/bitcoin-botnet-mining
http://www.bbc.com/news/technology-25653664
http://www.zdnet.com/nas-device-botnet-mined-600000-in-dogecoin-over-two-months-7000030662/
http://www.engadget.com/2014/02/25/bitcoin-cryptocurrency-compromise-pony-botnet/
http://blogs.mcafee.com/mcafee-labs/delving-deeply-into-a-bitcoin-botnet
http://securelist.com/blog/incidents/30863/the-miner-botnet-bitcoin-mining-goes-peer-to-peer-33/
http://bitcoinvox.com/article/883/litecoin-mining-botnet-using-cloud-accounts
http://www.reddit.com/r/litecoin/comments/1uvz7m/litecoin_botnet_killing_difficulty/
http://www.pcworld.com/article/2452080/facebook-kills-lecpetex-botnet-which-hit-250000-computers.html
http://www.webroot.com/blog/2013/07/22/yet-another-commercially-available-stealth-bitcoinlitecoin-mining-tool-spotted-in-the-wild/
http://www.esecurityplanet.com/malware/researchers-warn-of-litecoin-mining-malware.html
http://imaginarymarkets.com/the-doge-report-rampaging-scrypt-botnet-jumps-from-litecoin-onto-dogecoin-causes-fear-and-panic/

...

So you're suggesting people in a cryptocurrency forum stick to USD...?

I am going to focus on the botnet issue because it is the only valid criticism I have seen of XMR among pages and pages of anti XMR posts. As fluffypony has correctly pointed out above virtually every POW coin and all POS coins are vulnerable to this. The notable exceptions at this point is XBT, and coins such as NMC that are merged mined with XBT because of ASIC mining. To understand and deal with this issue we must go to the root cause and recognize a fundamental flaw in distributed crypto currency models:

The false assumption that most people particularly consumers actually control their computing devices

The only people that have real control are those who run a FLOSS operating system such as GNU/Linux or Android/Linux and have root access to their computer or device. This excludes that vast majority including over 98% of desktop / laptop computers running propriety Microsoft Windows or OS X and almost all mobile devices with the exception of rooted Android or some GNU/Linux based devices. There are two kinds of attacks here:

1) DRM based attacks. In this scenario the operating system vendor uses the DRM built into a propriety operating system to attack the coin. Since all popular propriety operating systems are infected with DRM this kind of attack can happen any time, either by the OS vendor on their own accord or at the request of a government actor. The best example of this is the attack by Apple on XBT since XBT's inception in 2009 until earlier this year on the Apple IOS platform. 

2) Malware / botnet based attacks. These are most common on Microsoft Windows since this OS is particularly vulnerable to malware. The reasons behind this are beyond this discussion.

The solution here is to move the functions critical to the security of a coin away from DRM infected propriety operating systems such as Microsoft Windows to FLOSS operating systems such as GNU/Linux. In particular with a POW coin this means mining. This can be accomplished in a CPU / GPU coin by developing, releasing and supporting mining software only on GNU/Linux, and even going as far as avoiding cross platform development tools for the mining components. Making the mining software highly optimized for GNU/Linux. Targeting the ARM platform for mining is also a possibility. The idea is to make mining the coin far more efficient on GNU/Linux than on Microsoft Windows thereby putting botnets at a significant disadvantage.