Ethereum vanity address exploit may be cause of Wintermute hack

Must read

FTX looking to raise $1B in funding at $32B valuation

FTX looking to raise $1B in funding at $32B valuation Zeynep Geylan · 15 mins ago · 2 min read...

India considering GST on crypto transactions amid evaluation of sector’s legality

India considering GST on crypto transactions amid evaluation of sector’s legality Cynthia Chung · 1 hour ago · 2 min...

Zilliqa launches web3 gaming console with in-built miner and crypto wallet

Zilliqa launches web3 gaming console with in-built miner and crypto wallet Liam 'Akiba' Wright · 2 hours ago · 2...

Binance sets up global advisory board to drive responsible regulation of crypto

Binance sets up global advisory board to drive responsible regulation of crypto Christian Nwobodo · 2 hours ago · 2...

Ethereum vanity address exploit may be cause of Wintermute hack Ethereum vanity address exploit may be cause of Wintermute hack Liam ‘Akiba’ Wright · 2 hours ago · 2 min read

It may take less than 2 months to brute force hack an Ethereum vanity address using a GPU mining rig.

2 min read

Updated: September 20, 2022 at 1:18 pm

Ethereum vanity address exploit may be cause of Wintermute hack

Cover art/illustration via CryptoSlate

Xeggex

The Ethereum community is reviewing the nature of the recently announced $160 million Wintermute hack and has stumbled upon a potential attack vector. One of Wintermute’s addresses has the properties of a vanity address which could be the root of the vulnerability.

wintermute’s address had 7 leading 0’s

according to @k06a‘s estimation, can brute for this in 50 days using 1000 GPUs

the attacker was definitely a pro pic.twitter.com/JNOQ3qdXiV

— tuba 🦈 (@0xtuba) September 20, 2022

Vanity addresses are generated cryptographically by assigning a specific prefix or suffix to a program that then generates potentially millions of addresses until it finds one matching the specified conditions.

One such tool — Profanity — is available via GitHub and has had serious security concerns for some time. The repository is abandoned due to “fundamental security issues in the generation of private keys,” according to the readme.md file.

A blog post by the 1inch team is included in the markup, which lists several potential vulnerabilities in the code. Although the codebase has allegedly been updated to remove “all affected binaries,” the methodology may be flawed at its core.

According to research from k06a, a contributor to 1inch, 0xtuba was able to calculate that it may take only 50 days to brute force an address with seven leading 0s using 1,000 GPUs. Given Ethereum’s recent move to proof-of-stake, plenty of miners are currently looking for somewhere to apply their GPU power.

The image below showcases the estimated time to generate an Ethereum address with seven leading 0s using an RTX 3070TI GPU home gaming computer.

vanity url
Source: Vanity ETH

Should this attack vector be confirmed viable, there is now a fear that some miners may choose to move toward malicious means to ensure their farms continue to return a profit.

The 1inch blog post contains the following warning:

“Notice: Your money is NOT SAFU if your wallet address was generated with the Profanity tool. Transfer all of your assets to a different wallet ASAP! “

CryptoSlte has reached out to Wintermute for comment on the method used to generate addresses but has not immediately received a response.

More articles

Latest article

FTX looking to raise $1B in funding at $32B valuation

FTX looking to raise $1B in funding at $32B valuation Zeynep Geylan · 15 mins ago · 2 min read...

India considering GST on crypto transactions amid evaluation of sector’s legality

India considering GST on crypto transactions amid evaluation of sector’s legality Cynthia Chung · 1 hour ago · 2 min...

Zilliqa launches web3 gaming console with in-built miner and crypto wallet

Zilliqa launches web3 gaming console with in-built miner and crypto wallet Liam 'Akiba' Wright · 2 hours ago · 2...

Binance sets up global advisory board to drive responsible regulation of crypto

Binance sets up global advisory board to drive responsible regulation of crypto Christian Nwobodo · 2 hours ago · 2...

Helium community votes to migrate to Solana, scores new T-Mobile partnership

Helium community votes to migrate to Solana, scores new T-Mobile partnership Oluwapelumi Adejumo · 3 hours ago · 2 min...