Fun

News Feed - 2023-08-10 02:08:00

Tom Blackstone6 hours agoOnly 6 out of 45 crypto wallet brands have undergone penetration testing: ReportCybersecurity certification platform CER said the vast majority of wallets do not hire outside experts to perform penetration tests.3213 Total views86 Total sharesListen to article 0:00NewsJoin us on social networksA July report from cybersecurity certification platform CER found that only six of 45 cryptocurrency wallet brands, or 13.3%, have undergone penetration testing to find security vulnerabilities. Of these, only half have performed tests on the latest versions of their products.


The three brands that have done up-to-date penetration tests are MetaMask, ZenGo and Trust Wallet, according to the report. Rabby and Bifrost performed penetration testing on older versions of their software, and Ledger Live did it on an unknown version (listed as “N/A” in the report). All other brands listed did not provide any evidence of having done these tests.


The report also provided an overall ranking of the security of each wallet, listing MetaMask, ZenGo, Rabby, Trust Wallet and Coinbase Wallet as being the most secure wallets overall.CER rankings for wallet security. Source: CER


“Penetration testing” is a method of finding security vulnerabilities in computer systems or software. A security researcher attempts to hack into the device or software and use it for purposes it wasn’t intended for. In most cases, a penetration tester is given little to no information about how the product works. This process is used to simulate real-world attempts at hacking to uncover vulnerabilities before the product is released.


CER found that 39 out of 45 wallet brands didn’t perform any penetration testing at all, not even on older versions of the software. CER speculated that the reason may be that these tests are expensive, especially if the company makes frequent upgrades to their products, stating, “We attribute it to the amount of updates an average app has, where each new update can disqualify the pentest made earlier.”


CER found that the most popular wallet brands were more likely to perform security audits, including penetration tests, as they often had the funds to do so:“Essentially, popular wallets tend to adopt more robust security measures to protect their increasing user base. This seems logical — a higher user base often corresponds to more significant funds to secure, more visibility, and consequently, more potential threats. It can also result in a positive feedback loop, with more secure wallets attracting new users in higher numbers than the less secure ones.”


CER’s ranking of wallets was based on a methodology that included factors like bug bounties, past incidents, and security features such as restore methods and password requirements.


Although most wallet brands don’t perform penetration testing, CER stated that many of them do rely on bug bounties to find vulnerabilities, which is often an effective means of preventing hacks. The firm rated 47 out of 159 individual wallets as “secure” overall, meaning that they had a security score of above 60. These 159 wallets included some that were from the same brands. For example, MetaMask for Edge browser was considered a separate wallet from MetaMask for Android.


Related:Bug bounties can help secure blockchain networks, but have mixed results


Wallet security has become an urgent issue in 2023, as over $100 million was lost in the Atomic Wallet hack on June 3. The Atomic team has speculated that the breach may have been caused by a virus or injection of malware in the company’s infrastructure, but the exact vulnerability that allowed the attack is still unknown. Web wallet MyAlgo also suffered a security breach in late February, resulting in an estimated loss to users of over $9 million.# Blockchain# Wallet# Adoption# Hardware Wallet# Mobile Wallet# Cybersecurity# Hot wallet# HacksAdd reactionAdd reactionRelated NewsHow to track and report crypto transactions for tax purposesEnsuring integrity of blockchain transactions: Trust through audits11 ChatGPT prompts for maximum productivityCoinbase Wallet launches instant messaging feature with XMTPConsenSys releases ‘fuzzing’ tool to test smart contract vulnerabilitiesBinance’s CZ warns crypto community about emerging scam

News Feed
Derek Andersen4 hours agoOneCoin co-founder Greenwood gets 20 years in US jail for fraud, money launderingKarl Greenwood will also have to pay back the $300 million he made in commissions in the OneCoin pyramid scheme.17
2023-09-13 04:34 AM
HK police arrest 4, including teen, in HK$11M crypto fraud
Amaka Nwaokocha11 hours agoHK police arrest 4, including teen, in HK$11M crypto fraudThe authorities continue to urge the public to remain cautious and verify the legitimacy of financial transactions to avoid falling vic
2024-07-28 21:59 PM
ESG Study Shows Bitcoin Mining’s Potential to Eliminate 0.15% of Global Warming by 2045, Claims No Other Technology Can Do Better
ESG Study Shows Bitcoin Mining’s Potential to Eliminate 0.15% of Global Warming by 2045, Claims No Other Technology Can Do Better In recent times, the impact of bitcoin mining on
2022-05-26 13:00 PM
July’s CPI Report Shows US Inflation Cooling — Critics Say ‘US Government’s Formula Understates the Actual Rise in Prices’
July"s CPI Report Shows US Inflation Cooling — Critics Say "US Government"s Formula Understates the Actual Rise in Prices" After last June’s inflation report published by
2022-08-11 02:30 AM
Bitcoin Price Likely To Fluctuate Between $100,000 And $110,000 Until FOMC Meeting, Says Analyst
Este artículo también está disponible en español. After a flash crash to $89,256 earlier this month, Bitcoin (BTC) made a swift recovery, reaching a new all-time high (AT
2025-01-24 07:30 AM
Stellantis Owned Fiat Launches Metaverse Store Using Touchcast and Microsoft Tech
Stellantis Owned Fiat Launches Metaverse Store Using Touchcast and Microsoft Tech Fiat, an automotive brand property of Stellantis, has launched its first metaverse-based store, wh
2022-12-03 20:30 PM
StarkWare changes STRK token unlock schedule following controversy
Jesse Coghlan15 minutes agoStarkWare changes STRK token unlock schedule following controversyStarknet developer StarkWare cited community feedback as the reason it changed its token unlock schedule for its investors.104
2024-02-23 08:44 AM
Bitcoin, Ethereum Technical Analysis: BTC Nears $25,000, Whilst ETH Hits $1,700
Bitcoin, Ethereum Technical Analysis: BTC Nears $25,000, Whilst ETH Hits $1,700 Bitcoin moved significantly higher on Feb. 16, as the world’s largest cryptocurrency hit its
2023-02-16 22:30 PM
Bitcoin Price Signals Bullish Continuation With SuperTrend Rising, Here’s The Next Target After Beating $81,000
Este artículo también está disponible en español. The Bitcoin price trajectory has been nothing short of impressive since the beginning of November. Notably, Bitcoin has
2024-11-12 01:30 AM
How The Israel-Iran War Could Shake Crypto Prices, Explains Arthur Hayes
Este artículo también está disponible en español. Arthur Hayes, the co-founder and former CEO of BitMEX, published an essay titled “Persistent Weak Layer” on
2024-10-17 01:30 AM
Indian Crypto Exchanges Flooded With INR Deposits and New Users After Elon Musk’s Tesla Revealed Bitcoin Purchase
Indian Crypto Exchanges Flooded With INR Deposits and New Users After Elon Musk"s Tesla Revealed Bitcoin Purchase Indian crypto exchanges have been experiencing
2021-02-09 23:05 PM
Ricardo Salinas Pliego Hints at Elektra Group Selling Bitcoin in Its Stores
Ricardo Salinas Pliego Hints at Elektra Group Selling Bitcoin in Its Stores Ricardo Salinas Pliego, president of the Salinas Group, owner of the Elektra Group stores, hinted at the
2022-02-10 16:00 PM