Dec 2022 - Talos II RNG Exploit Theft Luke Dash Jr - $3.59m (United States)
"Luke Dashjr, a developer who works on Bitcoin Core, the technology and security behind the cryptocurrency, has lost over 200 Bitcoins in an apparent hack."
It's well known that I run Gentoo on a Talos II with everything self compiled
they got it all, including a brand new 2FA I made the same day.
(Besides, as someone already pointed out, the wallets weren't on my main system.)
It's well known that I run Gentoo on a Talos II with everything self compiled
Talos II? It seems likely you were a victim of CVE-2019-15847 : The random number generator of Power9 (DARN instruction) was broken with GCC ->
If your main system (Talos II) was using a weak RNG then your private ssh keys could be compromised relatively easy, allowing the bad guys to get access to any device where you had ssh access. Once they got access they could have installed any backdoor or malicious software.
Further Analysis
Bitcoin core developer Luke Dashjr experienced a significant loss at the start of the new year, reportedly losing over 200 BTC in a hack. Dashjr revealed on Twitter that his PGP key was compromised, leading to the theft of many bitcoins. The stolen bitcoins were transferred to a wallet address using the Bitcoin mixer CoinJoin in four transactions, totaling approximately 216.93 BTC, equivalent to $3.6 million. In November, Dashjr's server was accessed by an unknown individual using new malware/backdoors, and on Christmas day, the server was reaccessed, resulting in the successful theft of over 200 Bitcoins. Binance CEO CZ expressed sympathy and pledged to freeze the funds if they come to Binance, sparking discussions in the crypto community about the risks and challenges of self-custody.
How Could This Have Been Prevented?
More Cryptocurrency Exchange Hacks/Scams/Frauds
Clucoin Founder Gambled Away Funds > > < < Kevin O Leary Twitter Hack Giveway
Sources/Further Reading
Bitcoin developer loses $3.3 million in massive hack - Dexerto (Dec 31)
@LukeDashjr Twitter (Dec 31)
@OurielOhayon Twitter (Dec 31)
91481 – (CVE-2019-15847) POWER9 "DARN" RNG intrinsic produces repeated output (CVE-2019-15847) (Dec 31)
xkcd: Random Number (Dec 31)
@LukeDashjr Twitter (Dec 31)
@LukeDashjr Twitter (Dec 31)
@LukeDashjr Twitter (Dec 31)
@LukeDashjr Twitter (Dec 31)
@mytechmix Twitter (Dec 31)
@tryboeck Twitter (Dec 31)
Luke Dashjr, Early Bitcoin Developer, Says Hack Took His BTC (Dec 31)
Bitcoin / Address / 1YAR6opJCfDjBNdn5bV8b5Mcu84tv92fa — Blockchair (Dec 31)
Bitcoin Core Dev Says His BTC Is ‘Basically All Gone’ After Hack - YouTube (Dec 31)
Bitcoin core developer claims to have lost 200+ BTC in hack (Dec 31)
Reddit - Dive into anything (Dec 31)
@MichaelDunwort1 Twitter (Dec 31)
@LukeDashjr Twitter (Dec 31)
@LukeDashjr Twitter (Dec 31)
@LukeDashjr Twitter (Dec 31)
@PsychedelicBart Twitter (Dec 31)
Who's Luke Dashjr? (Dec 31)
@LukeDashjr Twitter (Dec 31)
@LukeDashjr Twitter (Dec 31)
luke-jr (Luke Dashjr) · GitHub (Dec 31)
https://www.linkedin.com/in/lukedashjr/ (Dec 31)
Bitcoin price today, BTC live marketcap, chart, and info | CoinMarketCap (Dec 31)
Transaction: 432ded946431a9612f09d73bd15ded045d11d1095ffdfe8d68306ea9b2e78930 | Blockchain.com (Dec 31)
Transaction: c38a3210fbb758cfc41d9a64b7534b83aecca96f051231f15545e8e5c7365190 | Blockchain.com (Dec 31)
Transaction: 4b3cde50e2bce3d02e15b61957d2452e29f53d9a99e1ab14e83b6ec0f87fd851 | Blockchain.com (Dec 31)
Transaction: 50df1eab0bf2bd01999cea4fc531a65c17e1a285823c9ae4eab0feb7e21a11b6 | Blockchain.com (Dec 31)
 t.me/QuadrigaInitiative
|
 /r/QuadrigaInitiative
|
 @QuadrigaInit
|
 info@quadrigainitiative.com
|