š
Original date posted:2015-07-15
š Original message:> With my white hat on
> Shapeshift.io lost ~3 BTC this week in multiple txs
I assume as a self proclaimed "white hat", you contacted the relevant
companies and returned their funds? Theft is still theft, regardless of
whether you are doing it for research or not.
On Tue, Jul 14, 2015 at 8:29 PM, simongreen--- via bitcoin-dev <
bitcoin-dev at lists.linuxfoundation.org> wrote:
> With my black hat on I recently performed numerous profitable double-spend
> attacks against zeroconf accepting fools. With my white hat on, I'm warning
> everyone. The strategy is simple:
>
> tx1: To merchant, but dust/low-fee/reused-address/large-size/etc. anything
> that miners don't always accept.
>
> tx2: After merchant gives up valuable thing in return, normal tx without
> triggering spam protections. (loltasticly a Mike Hearn Bitcoin XT node was
> used to relay the double-spends)
>
> Example success story: tx1 paying Shapeshift.io with 6uBTC output is not
> dust under post-Hearn-relay-drop rules, but is dust under
> pre-Hearn-relay-drop rules, followed by tx2 w/o the output and not paying
> Shapeshift.io. F2Pool/Eligius/BTCChina/AntPool etc. are all miners who have
> reverted Hearn's 10x relay fee drop as recommended by v0.11.0 release notes
> and accept these double-spends. Shapeshift.io lost ~3 BTC this week in
> multiple txs. (they're no longer accepting zeroconf)
>
> Example success story #2: tx1 with post-Hearn-relay drop fee, followed by
> tx2 with higher fee. Such stupidly low fee txs just don't get mined, so
> wait for a miner to mine tx2. Bought a silly amount of reddit gold off
> Coinbase this way among other things. I'm surprised that reddit didn't
> cancel the "fools-gold" after tx reversal. (did Coinbase guarantee those
> txs?) Also found multiple Bitcoin ATMs vulnerable to this attack. (but
> simulated attack with tx2s still paying ATM because didn't want to go to
> trouble of good phys opsec)
>
> Shoutouts to BitPay who did things right and notified merchant properly
> when tx was reversed.
>
> In summary, every target depending on zeroconf vulnerable and lost
> significant sums of money to totally trivial attacks with high probability.
> No need for RBF to do this, just normal variations in miner policy.
> Shapeshift claims to use Super Sophisticated Network Sybil Attacking
> Monitoring from Blockcypher, but relay nodes != miner policy.
>
> Consider yourself warned! My hat is whiter than most, and my skills not
> particularly good.
>
> What to do? Users: Listen to the experts and stop relying on zeroconf.
> Black hats: Profit!
>
> _______________________________________________
> bitcoin-dev mailing list
> bitcoin-dev at lists.linuxfoundation.org
> https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20150715/3b6fa212/attachment.html>;
Adrian Macneil [ARCHIVE] /
npub18pā¦v2ml4
2023-06-07 15:42:24
in reply to nevent1qā¦v9lk
Author Public Key
npub18plyg5mfmzwlvkcx0fhudfll3x5phjvvlglw4dgj6t5ehyp87ttqzv2ml4Published at
2023-06-07 15:42:24Event JSON
{
"id": "c17b38043c68c1e729190fbbde0233dddcb7850f850b2727bf2a8cf06e103f05",
"pubkey": "387e445369d89df65b067a6fc6a7ff89a81bc98cfa3eeab512d2e99b9027f2d6",
"created_at": 1686152544,
"kind": 1,
"tags": [
[
"e",
"8cfdb6ed676e52875cd3360f4e3b9fd8a9125080a56694ae91a3defb5a52e9fc",
"",
"root"
],
[
"e",
"087a9416e07710dcd2402584597a61be2f37d1a94aa143547f3135df14bf95ca",
"",
"reply"
],
[
"p",
"1b29d94ee81e1ee0479f1db4bc4ac887407bd470a0d7060e76f8ab27fdd57e50"
]
],
"content": "š
Original date posted:2015-07-15\nš Original message:\u003e With my white hat on\n\n\u003e Shapeshift.io lost ~3 BTC this week in multiple txs\n\nI assume as a self proclaimed \"white hat\", you contacted the relevant\ncompanies and returned their funds? Theft is still theft, regardless of\nwhether you are doing it for research or not.\n\nOn Tue, Jul 14, 2015 at 8:29 PM, simongreen--- via bitcoin-dev \u003c\nbitcoin-dev at lists.linuxfoundation.org\u003e wrote:\n\n\u003e With my black hat on I recently performed numerous profitable double-spend\n\u003e attacks against zeroconf accepting fools. With my white hat on, I'm warning\n\u003e everyone. The strategy is simple:\n\u003e\n\u003e tx1: To merchant, but dust/low-fee/reused-address/large-size/etc. anything\n\u003e that miners don't always accept.\n\u003e\n\u003e tx2: After merchant gives up valuable thing in return, normal tx without\n\u003e triggering spam protections. (loltasticly a Mike Hearn Bitcoin XT node was\n\u003e used to relay the double-spends)\n\u003e\n\u003e Example success story: tx1 paying Shapeshift.io with 6uBTC output is not\n\u003e dust under post-Hearn-relay-drop rules, but is dust under\n\u003e pre-Hearn-relay-drop rules, followed by tx2 w/o the output and not paying\n\u003e Shapeshift.io. F2Pool/Eligius/BTCChina/AntPool etc. are all miners who have\n\u003e reverted Hearn's 10x relay fee drop as recommended by v0.11.0 release notes\n\u003e and accept these double-spends. Shapeshift.io lost ~3 BTC this week in\n\u003e multiple txs. (they're no longer accepting zeroconf)\n\u003e\n\u003e Example success story #2: tx1 with post-Hearn-relay drop fee, followed by\n\u003e tx2 with higher fee. Such stupidly low fee txs just don't get mined, so\n\u003e wait for a miner to mine tx2. Bought a silly amount of reddit gold off\n\u003e Coinbase this way among other things. I'm surprised that reddit didn't\n\u003e cancel the \"fools-gold\" after tx reversal. (did Coinbase guarantee those\n\u003e txs?) Also found multiple Bitcoin ATMs vulnerable to this attack. (but\n\u003e simulated attack with tx2s still paying ATM because didn't want to go to\n\u003e trouble of good phys opsec)\n\u003e\n\u003e Shoutouts to BitPay who did things right and notified merchant properly\n\u003e when tx was reversed.\n\u003e\n\u003e In summary, every target depending on zeroconf vulnerable and lost\n\u003e significant sums of money to totally trivial attacks with high probability.\n\u003e No need for RBF to do this, just normal variations in miner policy.\n\u003e Shapeshift claims to use Super Sophisticated Network Sybil Attacking\n\u003e Monitoring from Blockcypher, but relay nodes != miner policy.\n\u003e\n\u003e Consider yourself warned! My hat is whiter than most, and my skills not\n\u003e particularly good.\n\u003e\n\u003e What to do? Users: Listen to the experts and stop relying on zeroconf.\n\u003e Black hats: Profit!\n\u003e\n\u003e _______________________________________________\n\u003e bitcoin-dev mailing list\n\u003e bitcoin-dev at lists.linuxfoundation.org\n\u003e https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev\n\u003e\n\u003e\n-------------- next part --------------\nAn HTML attachment was scrubbed...\nURL: \u003chttp://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20150715/3b6fa212/attachment.html\u003e",
"sig": "ccaa041dfba964635e02072526866d4359c31528e0e6a53cc43d9b3ba327b59effa0676f724b2a93128eb704305d4088ecf075e7a351867f4cf09ff82eab413b"
}