Hacking time itself 😏 now that's cool
Security researchers have cracked a password to recover over $3 million of bitcoin that had been stuck in a crypto wallet for 11 years - The password was a series of 20 upper and lower case letters, as well as numbers, that had been designed to be as difficult as possible to crack.
decade-old flaw in a password generator allowed hackers to recover lost crypto fortune
He figured out that if he was able to trick the system that it was the moment in 2013 when the password was generated, then it would recreate the same password.
RoboForm password generator has since updated its platform to improve the randomness of its tool, meaning the time-based hacking approach no longer works with passwords created after 2015.
How long that take 'em and how many mega-GPU's did they have on the job?
@th3j35t3r Grand used a reverse engineering tool developed by the US National Security Agency (NSA) to disassemble the password generator’s code. - then done the time hack tricked the system into believing it was 2013 to generate the same passwords lol genius
More a flaw in the password service RoboForm
“I generated the password, I copied it, put it in the passphrase of the wallet, and also in a text file that I then encrypted,” the wallet’s owner, who chose to remain anonymous, said in a video published by Mr Grand.
"While RoboForm’s passwords appear to be randomly generated, they’re not. With the older versions of this software, if we can control the time, we can control the password.”