Leaking Keys in the name of science
well more in the name of testing out things.
With the yesterdays big news of 200 BTC stolen from Luke Dashjr (one of the Bitcoin core developers) i decided to do a test. Because if it can happen (if it happened) to a bitcoin core developer, there is a good chance it will happen to me or you.
Most that are in crypto for some time heard and know all about the keys safety. Store offline, use hardware wallets, keep multiple copies of seeds in different secure locations... Question is how many do all of that, and how good and secure was the execution of all of it.
I do know a lot about recovery account, possibility to change keys and all of that Hive good stuff but i never had the need to use it to try and save my account. So i decided to do this test and see what is the process and how complicated it is.
To make it a bit more interesting i transferred 50HBD to the account. As i didn't see the news about the 200 BTC hack for almost 24 hours i will not be doing anything whit the account for the next 2 days. And i will not move funds for the wallet for 30 days.
There is a chance you will not notice that your keys are compromised right away (there is a way to set up phone notification for some actions like powerdown, transfer... i think through a discord bot. But that is also something i need to learn about).
I think i will learn stuff and if i lose 50$ it will be a valuable lesson.
If there are Bitcoin Maxies reading this you can transfer that 50HBD easy through V4V and get aprox. 50$ of BTC on the lightning network in few seconds.
account/wallet: leaked.key
Private Keys:
Posting Key used for "social transactions": 5JsQKGdJPRwLaXyPbk5b1bwq9jYghT24r8gzBGLgXYQXdmJr4X2
Active Key used for "value transfers": 5JB24uqagMfLLXSN612iS2JwX5V9eWVVSjZyn4fZXo1K6EHbLAZ
By clicking the publish button i realized that Peakd added this check to warn you before you publish your keys on chain. Nice.
Good luck to you and me :)
And Happy New Year
not a dev but i think someone changed keys almost immediately after publishing the post. Is there a bot roaming through posts doing that?
Yes, there is a white hat version, that sees when it happens and changes the keys. I don't remember who runs it.
But it can be that the bad guys did it. You can recover the account, as you have some days time to do it, having your old keys. I don't have the procedure.
didn't know there is something like that. So if you leak keys the best thing is to leak them on the chain :)
i did change them after few days. I need to do the experiment again with leaking it on twitter or something. The results will probably be the same because Hive keys sound complicated but are really good for protection of your account.
Yes, there is something as people did send a lot of their keys in transactions before.
Posted Using LeoFinance Beta
I understand the point of "testing" but why did you put the active key public like that?
i know it was a test but man 🤣🤣🤣 i knew someone would take that money away really fast
well it is still there and i do think i will get it back. Powering up hive or sending HBD into savings is a nice way to save your funds even if you leak your keys.
We will see how complicated it is to recover the account :)
i'm interesting in knowing the result and the process of how you will do to recover they keys... is not easy in a blockchain
Interesting experiment. Good luck guarding those fifty bucks :D
@tipu curate
Upvoted 👌 (Mana: 0/40) Liquid rewards.
keys stopped working almost right away. not sure is it some kind of a bot reading the chain or what. i tried to log in with them 10 minutes after posting and it did not work. we will see will the recovery work. and will i manage to not fuck it up :)
Yeah, there probably are bots here programmed to catch leaked keys and change them immediately... Curious to know how this experiment will pan out. Keep us updated :)
Congratulations @bil.prag! You have completed the following achievement on the Hive blockchain And have been rewarded with New badge(s)
Your next target is to reach 220000 upvotes.
You can view your badges on your board and compare yourself to others in the Ranking
If you no longer want to receive notifications, reply to this comment with the word
STOPCheck out our last posts:
Support the HiveBuzz project. Vote for our proposal!