All sizes | Carbon fibre wallet | Flickr - Photo Sharing!
An exploit in Android makes every Bitcoin wallet app vulnerable to theft.

In another blow to Bitcoin, the digital currency’s developers have announced that a vulnerability in the Android mobile platform puts every wallet developed on it at risk.

A Bitcoin wallet contains a user’s private keys, the codes that both represent the currency and allow you to spend it.

This vulnerability lays popular wallets like Bitcoin Wallet, blockchain.info wallet, BitcoinSpinner and Mycelium Wallet open to possible theft, though none have as yet been reported.

The problem lies with components which govern the way Android's platform generates strings of secure random numbers.

Developers are encouraging anyone with an Android wallet to do “key rotation” on their account. That is, they should create a new wallet address with a random number generator, then resend all the money in their old wallet to the new one.

Updates are currently being created by the various app makers, according to a thread on Bitcointalk. Updates for Bitcoin Wallet, BitcoinSpinner and blockchain.info wallet have already been released.

Mt. Gox and other exchanges are not affected by the vulnerability, as the numbers governing those transactions are not generated on client mobile devices.

H/T The Verge | Photo by rh1n0/Flickr

Promoted Stories Powered by Sharethrough
bitcoin
Hacked bitcoin exchange site maintained no database backups
Bitcoinica's hiatus from the online currency exchange game could take longer than even the underground site's most vocal critics originally thought.
android
The 6 biggest features iPhone 6 stole from Android
Apple is a company that’s all about polish—and sometimes that means taking other people’s ideas, handing them a cup of coffee and a clean shirt, and waiting for them to sober up. As Samsung and Apple duke it out and the iAcolytes wage an endless war with Android fanboys, it’s worth remembering that "borrowing" goes both ways. And, as the course of human history but not the course of humans-doing-business would suggest, some ideas just occur in two places at once.
Group

Pure, uncut internet. Straight to your inbox.

Thanks for subscribing to our newsletter!