Hackers stole $3,300,000 in cryptocurrency due to vulnerability in Ethereum address generator
Ethereum users lost more than $3 million because of a vulnerability in Profanity. This is a tool that users use to generate Ethereum addresses.
Here's What We Know
Profanity makes it possible to generate a conveniently readable Ethereum address that can contain words or entire phrases, rather than a random one. The developers stopped developing the tool a few years ago, but all the wallets that were created with it continue to function normally. Relatively normal, if we forget about the fact that they can be accessed by hackers.
Update: Earlier I noticed the 0x6ae attacker hadn't fully drained one of the wallets they interacted with.
- ZachXBT (@zachxbt) September 17, 2022
Am pleased to share I helped alert the owner saving their $1.2m+ worth of crypto & NFTs (they've since moved everything)
0xDA0Da0Da0Da0a77740bB62c5c9D45423533d0CE2 pic.twitter.com/zP9LaovCv8
Users lost a total of $3.3 million because of the Profanity vulnerability, which allows them to pick a key to an address simply by trying every possible combination of characters, researcher @zachxbt reported. He also wrote that he helped one of the users to save $1.2 million. The specialist informed the owner of NFT about hackers getting access to his wallet in time.
Source: @zachxbt
Image: Bein Crypto
