AI Security AI安全 14h ago Updated 10h ago 更新于 10小时前 48

Attackers Exploit 'Ill Bloom' Vulnerability to Drain Over $5 Million From Cryptocurrency Wallets 攻击者利用“Ill Bloom”漏洞从加密货币钱包中盗取超过500万美元

Attackers exploited a weak random number generator in specific cryptocurrency wallets, dubbed the "Ill Bloom" vulnerability, to derive compromised seed phrases. Coordinated attacks resulted in over $5 million in stolen assets, primarily affecting older or lesser-known software wallets and browser extensions. Hardware wallets and most mainstream software wallets remain unaffected, isolating the risk to legacy applications with poor cryptographic implementations. Victims must create entirely new w 安全公司Coinspect披露名为“Ill Bloom”的加密货币钱包漏洞,攻击者利用弱随机数生成器生成的恢复短语窃取了超过500万美元。 受影响的主要是2018年左右创建的旧版或小众软件钱包及浏览器扩展,硬件钱包和主流软件钱包未受波及。 攻击原理是通过穷举弱随机数生成的有限种子空间,推导出私钥并转移资金,且受损地址列表仍在持续扩大。 用户应立即使用illbloom.org检查钱包地址,若匹配则需创建全新钱包并转移资产,切勿导入旧助记词。

75
Hot 热度
65
Quality 质量
60
Impact 影响力

Analysis 深度分析

TL;DR

  • Attackers exploited a weak random number generator in specific cryptocurrency wallets, dubbed the "Ill Bloom" vulnerability, to derive compromised seed phrases.
  • Coordinated attacks resulted in over $5 million in stolen assets, primarily affecting older or lesser-known software wallets and browser extensions.
  • Hardware wallets and most mainstream software wallets remain unaffected, isolating the risk to legacy applications with poor cryptographic implementations.
  • Victims must create entirely new wallets with freshly generated seeds and transfer funds immediately, as importing old phrases offers no security.

Why It Matters

This incident highlights the critical importance of cryptographically secure random number generation in self-custody solutions, demonstrating that weak entropy can render even complex cryptographic keys trivial to brute-force. For AI and security practitioners, it serves as a stark reminder that historical vulnerabilities in legacy codebases continue to pose active threats, necessitating rigorous auditing of third-party libraries and wallet implementations.

Technical Details

  • Vulnerability Mechanism: The core issue lies in the use of weak pseudo-random number generators (PRNGs) during the creation of 12 or 24-word recovery phrases, drastically reducing the search space from astronomical to computationally feasible.
  • Attack Methodology: Researchers reconstructed the attack by generating all possible weak phrases, deriving corresponding wallet addresses, and scanning public blockchains (Bitcoin, Ethereum, Tron, etc.) for addresses holding funds.
  • Scope of Impact: Over 2,114 exposed addresses with on-chain activity were identified across multiple chains, with significant losses concentrated in Bitcoin and USDT holdings.
  • Mitigation Tool: A public checker at illbloom.org allows users to verify if their wallet address was generated using the vulnerable algorithm, enabling proactive fund migration.

Industry Insight

  • Legacy Code Risk: Organizations relying on older open-source wallet libraries or legacy mobile apps should conduct immediate audits of their cryptographic implementations, particularly regarding entropy sources.
  • User Education Priority: Security awareness campaigns must emphasize that "checking" a wallet does not require sharing private keys or seed phrases, countering the surge in scam attempts exploiting this fear.
  • Hardware Wallet Adoption: This event reinforces the strategic advantage of hardware wallets for high-value storage, provided that users generate fresh seeds on-device rather than importing potentially compromised software-generated phrases.

TL;DR

  • 安全公司Coinspect披露名为“Ill Bloom”的加密货币钱包漏洞,攻击者利用弱随机数生成器生成的恢复短语窃取了超过500万美元。
  • 受影响的主要是2018年左右创建的旧版或小众软件钱包及浏览器扩展,硬件钱包和主流软件钱包未受波及。
  • 攻击原理是通过穷举弱随机数生成的有限种子空间,推导出私钥并转移资金,且受损地址列表仍在持续扩大。
  • 用户应立即使用illbloom.org检查钱包地址,若匹配则需创建全新钱包并转移资产,切勿导入旧助记词。

为什么值得看

该事件揭示了加密货币生态中底层密码学实现缺陷的严重后果,特别是随机数生成质量对资产安全的决定性影响。对于开发者而言,这是一个关于安全编码和第三方库审计的重要反面教材;对于用户,它提供了具体的风险排查工具和紧急应对指南,强调了“新钱包新助记词”的核心安全原则。

技术解析

  • 漏洞根源:部分钱包软件在生成12或24词恢复短语时使用了弱伪随机数生成器(PRNG),导致可能的种子空间从天文数字级缩小到可被暴力破解的范围。
  • 攻击方法:研究人员重建了完整攻击链路,遍历弱生成器产生的所有可能短语,推导对应钱包地址,并在区块链上扫描持有资金的地址进行资金归集。
  • 影响范围:截至6月30日,已追踪到2,114个暴露地址,涉及Bitcoin、Ethereum、Tron等多链。攻击者曾一次性从431个钱包盗取约310万美元,后续又窃取210万美元USDT。
  • 检测工具:提供免费在线检查器illbloom.org,支持比对比特币、以太坊及其兼容链(如Polygon、BNB)的地址,但结果仅为已知脆弱地址列表的匹配,非绝对安全保证。

行业启示

  • 密码学实现需严格审计:钱包开发必须确保使用加密安全的随机数源,避免使用语言默认或易预测的PRNG,这是资产安全的基石。
  • 存量风险持续存在:即使未被立即盗取,使用弱助记词的钱包也处于永久暴露状态,任何后续存入的资金均面临风险,行业需建立长期的漏洞监测机制。
  • 用户安全意识教育至关重要:许多用户缺乏对助记词本质的理解,容易遭受二次诈骗(如“救援”骗局),项目方和安全机构需加强关于“永不分享助记词”和“彻底废弃旧钱包”的教育。

Disclaimer: The above content is generated by AI and is for reference only. 免责声明:以上内容由 AI 生成,仅供参考。

Security 安全