Prior to Bitcoin, the process for maintaining the transaction ledger remained effectively unchanged since the Medici developed double entry accounting in the 14th century. The Medici process of accounting required banks…
Bitcoin is going to do to banks what email did the post office and Amazon did to retail. Understandably those at the center of the financial system are concerned.
The banker’s mantra of “blockchain not bitcoin” has caught fire on Wall Street – everybody loves blockchain, they may not know what it is, but they love it! Jamie Dimon, CEO of JPMorgan, hates Bitcoin, but loves blockchain, Goldman Sachs CEO, Lloyd Blankfein, has embraced blockchain while he is warming to Bitcoin. Admittedly, I suffered from the same love affair with blockchain. As an early adopter of Bitcoin I still had feelings for the currency, but for a period of time I was infatuated with blockchain.
https://kinematec.de/wp-content/uploads/2017/10/bitcoin-2007769_1280.jpg8981280christianhttps://kinematec.de/wp-content/uploads/2019/10/kinematec_logo.pngchristian2017-10-24 08:19:232017-11-04 10:20:54Why Bitcoin Matters More Than Blockchain
Unless you’ve been living under a rock for the past three years, you have surely taken notice of an industry buzzword that has been giving “machine learning” a run for its money: Blockchain.
Ethereum is one of the most successful implementations of the distributed blockchain concept. In contrast to Bitcoin, which offers limited scripting capabilities, Ethereum provides a Turing-complete virtual machine. State transitions in the network (such as a changes in account balance of a particular token) are regulated by code running in the virtual machine, a.k.a. “smart contracts”.
https://kinematec.de/wp-content/uploads/2017/10/mythril.jpg8001204christianhttps://kinematec.de/wp-content/uploads/2019/10/kinematec_logo.pngchristian2017-10-09 14:11:532017-11-04 10:21:07Introducing Mythril: A framework for bug hunting on the Ethereum blockchain
Metropolis is finally (almost) here! The fork for Byzantium, the first and larger part of Metropolis, succeeded on the testnet over two weeks ago, and the likely date for the fork on the mainnet has been set to block 4.37 million, which is expected to be on Oct 17. New features include opcodes such as REVERT and RETURNDATACOPY, as well as precompiles that can be used to support a wide array of cryptographic algorithms. At the same time, we have been seeing many improvements to Ethereum core code, Whisper, Swarm as well as Ethereum’s future scaling plans.
On Wednesday, an anonymous hacker (or hackers) stole $32 million worth of ethereum’s cryptocurrency, ether, from three multi-signature wallets thanks to a vulnerability in the contract for the wallets.
A volunteer group of coders calling themselves the White Hat Group took it upon themselves to „rescue“ the funds in the other 500 vulnerable wallets before the hackers could get them. They did this by breaching the wallets using the same vulnerability as the hackers and funneling the funds into the group’s own account.
On Monday morning, the group was in possession of $86 million USD worth of other people’s ether, and $122 million in tokens—the digital assets that are sold off in Initial Coin Offerings (ICOs), fundraising events that have raised millions in mere minutes. That’s about $208 million worth of digital assets in ethereum, in total.
By Monday afternoon, tens of millions of dollars worth of tokens and ether had been returned to their owners. They say they plan to give all the funds back to their owners by July 31st.
This is the story of how it all happened.
Alex Van de Sande didn’t know what he was in for.
As an interface designer for the Ethereum Foundation, the organization that leads protocol development for the eponymous cryptocurrency and app platform, he was a notable attendee at an annual ethereum workshop at Cornell University that kicked off on Monday. The last time de Sande attended, in the summer of 2016, the worst hack in ethereum’s short history had just occurred: Hackers exploited a bug in the code of a crowd-directed investment fund called the DAO and stole $53 million worth of ether, the platform’s currency.
In response, de Sande became the public face for an ad hoc group of coders who called themselves the Robin Hood group. They exploited the same bug that the hackers had used to siphon away most of the remaining ether from the DAO before the hackers could. It was an extremely controversial move, robbing people for „good,“ before a hard fork split ethereum into two versions and wiped out the effects of the DAO hack on the new version.
This year, though, the workshop had gone swimmingly. On Wednesday afternoon, a coding workshop had just wrapped up, and de Sande as well as other ethereum developers were evaluating student projects. As 2 PM rolled around, déjà vu struck with a vengeance. Someone in the room got a call from another ethereum developer and dropped a bomb. The foundation’s wallet, they said, was being hacked at that very moment.
Thinking the developer had meant the Ethereum Foundation, the room scrambled to find out what was going on, de Sande told me in an interview. They quickly discovered that the foundation’s wallet had all of its funds intact, but a vulnerability in a popular ethereum client called Parity had let hackers treat multi-signature wallets created with the latest version of the client as personal ATMs.
Multi-signature wallets are popular among companies because they have multiple key-holders and require a majority to sign off on transactions. The hackers cleaned out three of these accounts to the tune of $32 million worth of ether.
„It wasn’t affecting us directly, but we could see that 500 other wallets could be affected, and a few of them were holding more than one million dollars,“ de Sande told me on a phone call from New York. „That’s when we got really worried. We were talking, and a few people said, ‚Our money is safe but somebody can attack these other wallets at any moment. And somebody has to do something about it.'“
The first funds had been taken eight hours before de Sande and the others in the room at Cornell realized what was going on. They were running out of time. At any moment, the hackers could clean out the rest of those 500 wallets. So, he and the rest of the developers logged onto a dedicated Skype group for ethereum security issues.
The online group of high-profile ethereum developers, which included Taylor Monahan, founder of popular ethereum wallet MyEtherWallet, was hard at work pinning down the problem and formulating a solution.
„Everyone simply does what they can to contribute, which turns out to be immensely powerful,“ Monahan wrote in an email. „Someone says, ‚we need X info‘ and someone else responds ‚on it‘.“
Eventually a plan coalesced. Someone could sweep all of the funds from vulnerable wallets into a secure address and give the ether back to its rightful owners later. Basically, hacking people’s wallets themselves.
But who would push the button? Who would take the risk of running afoul of federal laws on criminal hacking, even if they were supposedly fighting the good fight? Hell, who could be trusted to hold on to that much ether and actually give it back?
Enter the White Hat Group. These are the people who would ultimately „save“ $85 million worth of ether, and even more in the digital assets known as tokens, by taking a page from the hackers‘ own playbook.
The White Hat Group, apparently a volunteer collective of coders, has its origins in the aftermath of the DAO hack that occurred in the summer of 2016.
After hackers took advantage of a bug of the DAO’s code to siphon away $53 million worth of ether, de Sande formed a small group of ethereum developers to hack back and rescue the remaining ether in the DAO by siphoning it out into a „white hat“ account. They called themselves the Robin Hood group, and it worked.
But then, the unexpected happened: Vitalik Buterin, ethereum’s inventor and chief scientist of the Ethereum Foundation, elected to split ethereum into two versions in order to completely wipe out the damage the DAO hackers had done. On the new version of ethereum, it was as if the hack had never happened. On the old one, called ethereum classic, nothing had changed—the hackers still made bank.
The White Hat Group formed to take over where the Robin Hood group had left off, and siphoned off the ether classic left in the shadow DAO by exploiting the same bug as the hackers. The person acting as the public face of the White Hat Group at the time was „jbaylina“ on Reddit, the online pseudonym of a coder named Jordi Baylina, according to de Sande. They then set about returning the funds to their owners.
Fast forward to 2017, and the recent hack due to the vulnerability in multi-signature wallets created with a popular client called Parity. The ethereum community was looking to sweep vulnerable wallets of all their funds before the bad guys could get to them.
Halfway across the world from de Sande, in Barcelona, Jordi Baylina and his colleague Griff Green were seated at the offices of their ethereum startup, Giveth, on Wednesday. Green was part of the original Robin Hood group initiative, and now he works with Baylina on Giveth. It was pure chance that they were in the same room when the news came through that hackers had cleaned out three wallets.
„We were in the zone. We’d done this before“
„We had just finished a two-day product meeting for Giveth, and that momentum was just fucked,“ Green said over video chat from their office in Spain. „We had no other options, really. It was trivial for these funds to be taken from anybody else.“
When reached for comment over Reddit, Baylina directed Motherboard to Green.
According to Green, all of the developers who had gathered in the Giveth office for the meeting got to work writing a script to sweep all the remaining funds from the vulnerable wallets. However, Baylina, Green, and a hacker who goes by the name „Barry Whitehat“ were „the main three“ members of the White Hat Group, Green said.
„We were in the zone,“ he said. „We’d done this before. We did this for the DAO. Last time, we were all spread apart. We were really lucky to be in the same place this time.“
Later that night, Baylina posted on Reddit that the White Hat Group had funneled $85 million worth of ether and $100 million in tokens from vulnerable wallets and stashed it in a secure address they controlled. The group will create new wallets for those affected and return their funds, Baylina wrote, and cryptographically proved that he owns the account containing the funds. The White Hat Group will not be accepting donations for their work, Baylina wrote.
A message on the White Hat Group’s ethereum wallet asks affected user so be patient, and shows it contains nearly $85 million USD in ether, and even more in tokens (to see this, you must visit the page and click the token drop-down.) Screengrab: Etherscan.io
„In the end, [the White Hat Group] were the ones pushing the button because they are trusted, and they have the courage,“ de Sande said. „But they had a lot of help from the community as a whole.“
Monahan, of MyEtherWallet, also emphasized how the entire community—not just the core White Hat Group—had contributed to the effort.
„Others help gather, collect, and organize lists,“ Monahan wrote me in an email, before giving an example of what the conversation in the room was like. „ ‚Just merged the compiled address list. Need to know which have balance.‘ ‚I’m merging my balance one right now.‘ ‚Is someone else doing tokens?‘ ‚Yes, almost done with the scan.‘ ‚Post when that’s ready and I’ll add it to ours and merge‘.“
Together, the group managed to scrape together $208 million in ether and tokens, the assets that are issued during ICOs.
„So far we see good intentions only from [White Hat Group],“ Brave founder Brendan Eich wrote me in a direct message over Twitter on Monday morning. „We are working with them now and expect full recovery.“
Hours later, he messaged me again: „FYI we got the tokens back.“
It’s possible that the White Hat Group members, aside from Green and Baylina, wish to stay relatively anonymous because hacking, even if it’s for „good,“ is illegal under federal law.
„If I were advising someone, I would say not to do it—it’s very risky,“ Marcus Christian, a DC-based partner specializing in cybersecurity at law firm Mayer Brown, told me over the phone. „It’s going to be a crime under the law and the only question is if anyone is going to prosecute it or not. That’s not a good place to be.“
Getting law enforcement on board, Christian continued, would have been a way for the White Hat Group to shield themselves from prosecution should investigators decide to pursue them.
De Sande didn’t appear to be worried for the White Hat Group on this point. „If you see a burning building and you break in to save the cat that’s inside, I don’t think anyone will press charges against you for trespassing,“ he said. „I don’t think any judge in their right mind would think it’s a valid trespassing case.“
According to Green, the team is mostly worried about desperate people who learn of the group’s temporary wealth coming after them.
„We have a bat,“ he said over video chat. „We’re careful about where the cameras are going. It’s a new office, and we have no address. Jordi isn’t sleeping at home.“
That aside, it seems like the White Hat Group has little to fear from most of the ethereum community.
„I am extremely grateful the White Hat group responded as they did,“ Matthew Carano, a spokesperson for Swarm.City, one of the three companies that had all its ether stolen by the hacker, wrote in an email, „and believe if you [polled] every group whose funds were saved, they would say the same thing.“
The BAT organization doesn’t seem to be incensed, either.
„I’ll just say the [White Hat Group] came through, they are good folks,“ Eich, of BAT, wrote me in a Twitter direct message. „Remember near the end of ‚The Dark Knight,‘ ‚clowns and hostages?‘ Batman has to sort out very quickly who was who and save the hostages. [White Hat Group] is Batman.“
„You guys are literal fucking heros,“ the top post on Baylina’s Reddit thread announcing the rescue reads. „Good fucking job.“
It’s important to keep in mind, though, that these comments were made in the afterglow of a seemingly successful rescue operation.
The amount of funds in ether and tokens in the White Hat Group’s account has only gone up over the past week—$200 million is nothing to sniff at, and people want their virtual money back.
https://kinematec.de/wp-content/uploads/2018/01/1500657074235-shutterstock_645725677-copy.jpeg15001500christianhttps://kinematec.de/wp-content/uploads/2019/10/kinematec_logo.pngchristian2017-07-24 10:56:052018-01-08 11:05:50How Coders Hacked Back to ‘Rescue’ $208 Million in Ethereum – Motherboard
Smart contracts in Ethereum are executed by the Ethereum Virtual Machine (EVM). We defined EVM in Lem, a language that can be compiled for a few interactive theorem provers. We tested our definition against a standard test suite for Ethereum implementations. Using our definition, we proved some safety properties of Ethereum smart contracts in an interactive theorem prover Isabelle/HOL. To our knowledge, ours is the first formal EVM definition for smart contract verification that implements all instructions. Our definition can serve as a basis for further analysis and generation of Ethereum smart contracts.
1 Introduction
Ethereum is a protocol for executing a virtual computer in an open and distributed manner. This virtual computer is called the Ethereum Virtual Machine (EVM). The programs on EVM are called Ethereum smart contracts. A deployedEthereum smart contract is public under adversarial scrutiny, and the code is not updatable. Most applications (auctions, prediction markets, identity/reputation management etc.) involve smart contracts managing funds or authenticating external entities. In this environment, the code should be trustworthy.
The cryptocurrency and blockchain security pioneer Ledger has secured a $7M Series A funding led by MAIF Avenir, with the participation of Xange, Wicklow Capital, GDTRE, Libertus Capital, Digital Currency Group, The Whittemore Collection, Kima Ventures, BHB Network and Nicolas Pinto. This latest investment follows a $1.5M round in 2015 and brings the total funding to $8.5M, one of the biggest blockchain related start-up funding to date in Europe.
Ledger’s competitive edge is its technology: a low-footprint crypto-embedded operating system built for Secure Elements and Secure Enclaves which enables full orchestration of code and systems directly from the secure core. Ledger designs a line of products for the cryptocurrency and blockchain market: hardware wallets for consumers, server appliances for enterprise and embedded solutions for connected objects.
The company’s flagship products are the Ledger Nano S and the Ledger Blue, hardware wallets securing cryptocurrencies and digital identities.
https://kinematec.de/wp-content/uploads/2017/04/1odAy2B9sgTKmNrF1BhtTrw.png4281024christianhttps://kinematec.de/wp-content/uploads/2019/10/kinematec_logo.pngchristian2017-04-12 09:35:322017-11-04 10:22:20Ledger raises $7M to accelerate worldwide adoption of security solutions for bitcoin and blockchain
Python 3 script allowing to copy and index the Ethereum blockchain in an efficient way to ElasticSearch by connecting to a local node supporting RPC (tried with Parity).
I hardcoded the use of Elasticsearch but feel free to fork it to support others.
Pull requests are welcome!
As of now, this tool saves all block data as well as the related transaction data. The relation is kept as follows:
https://kinematec.de/wp-content/uploads/2019/10/kinematec_logo.png00christianhttps://kinematec.de/wp-content/uploads/2019/10/kinematec_logo.pngchristian2017-04-12 09:25:112017-11-04 10:23:10ElasticSearch for Ethereum
The best API for getting cryptocurrency pricing, OHLC and volume data from multiple exchanges. We have integrated so far with: BTC38, BTCC, BTCE, BTER, Bit2C, Bitfinex, Bitstamp, Bittrex, CCEDK, Cexio, Coinbase, Coinfloor, Coinse, Coinsetter, Cryptopia, Cryptsy, Gatecoin, Gemini, HitBTC, Huobi, itBit, Kraken, LakeBTC, LocalBitcoins, MonetaGo, OKCoin, Poloniex, Yacuna, Yunbi, Yobit, Korbit, BitBay, BTCMarkets, QuadrigaCX, CoinCheck, BitSquare, Vaultoro, MercadoBitcoin, Unocoin, Bitso, BTCXIndia and the list keeps growing every month. We are your one stop shop for all your cryptocurrency APIs and data needs.Please make sure you credit us with a link if you use our data on your website or app.All our APIs are available under free to use under a Creative Commons Attribution-NonCommercial 3.0 Unported (CC BY-NC 3.0) license ( https://creativecommons.org/licenses/by-nc/3.0/ )Inform us on that you are using our API so we can let you know if we make any updates. (If Vlad sent you here, you are already on the list)WE RECOMMEND YOU USE – https://min-api.cryptocompare.com/ for all your pricing API needs.Some of the great services using our pricing API: https://etherchain.org/, http://etherscan.io/, https://www.exodus.io/, https://github.com/ethereum/meteor-dapp-wallet, http://nanopool.org/, Ethereum Stats App, https://gastracker.io/ Ethereum Classic Stats, https://explorer.zcha.in/
https://kinematec.de/wp-content/uploads/2019/10/kinematec_logo.png00christianhttps://kinematec.de/wp-content/uploads/2019/10/kinematec_logo.pngchristian2017-03-26 09:48:132017-10-31 09:16:25CryptoCompare API – Cryptocurrency data API for over 40 exchanges and 600 coins
‘This can revolutionize assistance to vulnerable families across the globe’
The World Food Programme (WFP) is testing the use of blockchain, a bold technology that can potentially transform the fight against hunger. Blockchain technology, most famously associated with the crypto-currency Bitcoin, offers unique opportunities for humanitarian agencies to provide the best-possible assistance to vulnerable people around the world.
What is blockchain?
Put simply, blockchains provide a way for two parties to do business with each other without the need for a trusted third party. Akin to emails, information on the blockchain can flow from one address to another. The content of the message, for example, can be a value transfer, a beneficiary’s ID, or somebody’s health records. Weiterlesen
https://kinematec.de/wp-content/uploads/2019/10/kinematec_logo.png00christianhttps://kinematec.de/wp-content/uploads/2019/10/kinematec_logo.pngchristian2017-03-25 10:53:112017-11-04 10:25:21What is ‘Blockchain’ and How is it Connected to Fighting Hunger?
What we can learn from the evolution of another groundbreaking technology.
Even years into the deployment of the internet, many believed that it was still a fad. Of course, the internet has since become a major influence on our lives, from how we buy goods and services, to the ways we socialize with friends, to the Arab Spring, to the 2016 U.S. presidential election. Yet, in the 1990s, the mainstream press scoffed when Nicholas Negroponte predicted that most of us would soon be reading our news online rather than from a newspaper.
Fast forward two decades: Will we soon be seeing a similar impact from cryptocurrencies and blockchains? There are certainly many parallels. Like the internet, cryptocurrencies such as Bitcoin are driven by advances in core technologies along with a new, open architecture — the Bitcoin blockchain. Like the internet, this technology is designed to be decentralized, with “layers,” where each layer is defined by an interoperable open protocol on top of which companies, as well as individuals, can build products and services. Weiterlesen
https://kinematec.de/wp-content/uploads/2017/03/mar17-08-477201989.jpg6751200christianhttps://kinematec.de/wp-content/uploads/2019/10/kinematec_logo.pngchristian2017-03-09 13:01:182017-11-04 10:25:46The Blockchain Will Do to Banks and Law Firms What the Internet Did to Media
Wir können Cookies anfordern, die auf Ihrem Gerät eingestellt werden. Wir verwenden Cookies, um uns mitzuteilen, wenn Sie unsere Websites besuchen, wie Sie mit uns interagieren, Ihre Nutzererfahrung verbessern und Ihre Beziehung zu unserer Website anpassen.
Klicken Sie auf die verschiedenen Kategorienüberschriften, um mehr zu erfahren. Sie können auch einige Ihrer Einstellungen ändern. Beachten Sie, dass das Blockieren einiger Arten von Cookies Auswirkungen auf Ihre Erfahrung auf unseren Websites und auf die Dienste haben kann, die wir anbieten können.
Notwendige Website Cookies
Diese Cookies sind unbedingt erforderlich, um Ihnen die auf unserer Webseite verfügbaren Dienste und Funktionen zur Verfügung zu stellen.
Da diese Cookies für die auf unserer Webseite verfügbaren Dienste und Funktionen unbedingt erforderlich sind, hat die Ablehnung Auswirkungen auf die Funktionsweise unserer Webseite. Sie können Cookies jederzeit blockieren oder löschen, indem Sie Ihre Browsereinstellungen ändern und das Blockieren aller Cookies auf dieser Webseite erzwingen. Sie werden jedoch immer aufgefordert, Cookies zu akzeptieren / abzulehnen, wenn Sie unsere Website erneut besuchen.
Wir respektieren es voll und ganz, wenn Sie Cookies ablehnen möchten. Um zu vermeiden, dass Sie immer wieder nach Cookies gefragt werden, erlauben Sie uns bitte, einen Cookie für Ihre Einstellungen zu speichern. Sie können sich jederzeit abmelden oder andere Cookies zulassen, um unsere Dienste vollumfänglich nutzen zu können. Wenn Sie Cookies ablehnen, werden alle gesetzten Cookies auf unserer Domain entfernt.
Wir stellen Ihnen eine Liste der von Ihrem Computer auf unserer Domain gespeicherten Cookies zur Verfügung. Aus Sicherheitsgründen können wie Ihnen keine Cookies anzeigen, die von anderen Domains gespeichert werden. Diese können Sie in den Sicherheitseinstellungen Ihres Browsers einsehen.
Andere externe Dienste
Wir nutzen auch verschiedene externe Dienste wie Google Webfonts, Google Maps und externe Videoanbieter. Da diese Anbieter möglicherweise personenbezogene Daten von Ihnen speichern, können Sie diese hier deaktivieren. Bitte beachten Sie, dass eine Deaktivierung dieser Cookies die Funktionalität und das Aussehen unserer Webseite erheblich beeinträchtigen kann. Die Änderungen werden nach einem Neuladen der Seite wirksam.
Google Webfont Einstellungen:
Google Maps Einstellungen:
Google reCaptcha Einstellungen:
Vimeo und YouTube Einstellungen:
Datenschutzrichtlinie
Sie können unsere Cookies und Datenschutzeinstellungen im Detail in unseren Datenschutzrichtlinie nachlesen.
