Bitcoin password cracking attacks made hackers $103,000

Poorly secured accounts are cracked within minutes or even seconds after going live.

By - February 16, 2016 Share on LinkedIn

Hackers have cleaned out around $103,000 worth of Bitcoin from accounts protected with passwords, instead of the the long cryptographic keys normally required.

This is according to a report on Ars Technica, citing a recently published research paper titled “The Bitcoin Brain Drain: A Short Paper on the Use and Abuse of Bitcoin Brain Wallets”.

Called “brain wallets”, security experts had long warned that the alternative security measure is a bad idea and should not be used.

Brain wallet passwords do not use a cryptographic salt and are passed through a single iteration of the SHA–256 hashing function.

A form of these insecurely hashed passwords are also stored in the Bitcoin blockchain, giving hackers everything they need to compromise the accounts.

The paper tracked attacks over a six year period, and found that hackers had cracked the passwords of 884 brain wallets, taking 1,806 Bitcoins.

“In total, approximately $100K worth of bitcoin has been loaded into brain wallets, with the ten most valuable wallets accounting for over three-quarters of the total value,” the researchers said.

“Many brain wallets are drained within minutes, and while those storing larger values are emptied faster, nearly all wallets are drained within 24 hours.”

Anonymous hacks and leaks South African government data

Networks in South Africa that host malware and botnets

Networks in South Africa that host malware and botnets

The South African government passwords cracked in Anonymous database hack

Share your thoughts

Join the conversation

Connect with Us



Do you like Microsoft's new Surface Studio PC?

View Results

Loading ... Loading ...

More News

New MacBook Pro unveiled – absolutely incredible


Apple has officially unveiled its new line of MacBook Pro computers.

Apple unveils new TV app


Apple has unveiled a new app for iOS and the Apple TV – called TV.

Twitter killing Vine apps


Twitter’s Vine team has announced it will discontinue the service’s mobile apps “in the coming months”.

Facebook launches Snapchat filters – “Masks”


Facebook has launched augmented reality masks for its live video service, just in time for Halloween.

Free MyBroadband Newsletter