成人小说亚洲一区二区三区,亚洲国产精品一区二区三区,国产精品成人精品久久久,久久综合一区二区三区,精品无码av一区二区,国产一级a毛一级a看免费视频,欧洲uv免费在线区一二区,亚洲国产欧美中日韩成人综合视频,国产熟女一区二区三区五月婷小说,亚洲一区波多野结衣在线

立即打開
如何盜取5億美元的加密貨幣?

如何盜取5億美元的加密貨幣?

彭博社 2018-02-22
東京的這次黑客入侵引發(fā)了世界各地對于加密貨幣安全性的質(zhì)疑。

不久前,黑客入侵了東京加密貨幣交易所Coincheck Inc.,卷走了價值近5億美元的數(shù)字代幣。這是史上最大規(guī)模的搶劫之一,交易所損失了超過5億枚NEM幣。這次黑客入侵引發(fā)了世界各地對于加密貨幣安全性的質(zhì)疑。

1. 黑客是如何成功入侵的?

Coincheck沒有披露系統(tǒng)是如何被入侵的,只表示這次不是內(nèi)部人員作案。公司坦承自身在安全方面存在過錯,導(dǎo)致竊賊拿走了這么大一筆錢:他們把用戶資產(chǎn)保存在熱錢包中,與外部網(wǎng)絡(luò)相聯(lián)。通常來說,交易所應(yīng)當(dāng)設(shè)法把大部分儲蓄保存在與外部斷絕聯(lián)系的冷錢包中,這樣就不太容易遭受黑客攻擊了。Coincheck也沒有多重簽名的安全措施,資金在轉(zhuǎn)移之前不必獲得多份簽名許可。

2. 被盜的錢流向何處?

這類搶劫有一個特殊之處。由于比特幣和類似貨幣的交易都是公開的,因此很容易看到這些NEM幣位于何處——即使它們已經(jīng)遭竊了。Coincheck已經(jīng)確認并公布了5.23億枚遭竊貨幣流向的全部11個地址。你自己就能上網(wǎng)看到。麻煩在于,沒有人知道這些賬戶的所有者是誰。每個賬戶都被貼上了標簽“Coincheck被盜貨幣,不要接受交易:賬戶所有者是黑客”。NEM的開發(fā)者設(shè)計了一個追蹤工具,可以讓各大交易所自動拒收遭竊資金。

3. 這是否意味著黑客無法把它們兌換成現(xiàn)金?

不一定。竊賊可以嘗試通過ShapeShift等服務(wù)擺脫監(jiān)視,它們支持加密貨幣的交易,卻不收集個人數(shù)據(jù)。將NEM幣變成另一種更加匿名的貨幣例如Monero幣,很可能就可以把錢洗干凈。ShapeShift在平臺上發(fā)布了所有的交易,他們聲稱已經(jīng)屏蔽了與黑客有關(guān)的地址。另外還有一些“不倒翁”服務(wù)可以隱藏身份和交易,不過這次被盜的錢幣數(shù)額過大,對竊賊而言是個難題。

4. NEM開發(fā)者還可以做些什么來修正問題?

他們可以回滾記錄到黑客攻擊之前的某個時段,從而改變NEM區(qū)塊鏈。這種所謂的硬分叉會創(chuàng)造兩個版本的NEM,一個從未經(jīng)歷過黑客攻擊,另一個的資金已經(jīng)遭竊。盡管以太坊(Ethereum)在2015年用過這種方式,但NEM Foundation的副總裁杰夫·麥克唐納表示不會選擇分叉。

5. 這些交易所是不是屢次被黑客攻擊?

沒錯,加密貨幣交易所和錢包有著悠久的遭竊史,這可以追溯到2014年著名的東京Mt. Gox遭竊案。隨著數(shù)字資產(chǎn)的價格一路上揚,這些平臺在黑客眼中的誘惑力也與日俱增。據(jù)說,由于朝鮮面臨的經(jīng)濟制裁形勢日益嚴峻,領(lǐng)導(dǎo)人金正恩已經(jīng)派出黑客來洗劫數(shù)字貨幣。一位研究人員估計,超過14%的比特幣和其競爭對手以太幣已經(jīng)遭竊。

6. 如何保證加密貨幣資產(chǎn)的安全?

對于加密貨幣的愛好者而言,這次的教訓(xùn)在于:交易所是黑客的主要目標,不適合儲存你的貨幣。一個方案是把這些資產(chǎn)存在自己的軟件錢包中,它們可能有在線、移動或桌面的多種形式。硬件錢包則是那些儲存加密貨幣的專用設(shè)備,提供了額外的安全保護層。對于那些妄想癥嚴重的人士,還有一個模擬選項:把加密貨幣的私人密鑰打印在紙上。(財富中文網(wǎng))

譯者:嚴匡正?

Early Friday morning in Tokyo, hackers broke into a cryptocurrency exchange called Coincheck Inc. and made off with nearly $500 million in digital tokens. It’s one of the biggest heists in history, with the exchange losing more than 500 million of the somewhat obscure NEM coins. The hack has raised questions about security of cryptocurrencies around the world.

1.How did the hackers pull it off?

Coincheck hasn’t disclosed how their system was breached beyond saying that it wasn’t an inside job. The company did own up to a security lapse that allowed the thief to seize such a large sum: It kept customer assets in what’s known as a hot wallet, which is connected to external networks. Exchanges generally try to keep a majority of customer deposits in cold wallets, which aren’t connected to the outside world and thus are less vulnerable to hacks. Coincheck also lacked multi-signature security, a measure requiring multiple sign-offs before funds can be moved.

2.Where did the stolen coins go?

That’s one of the stranger aspects of these heists. Because transactions for Bitcoin and the like are all public, it’s easy to see where the NEM coins are — even though they’re stolen. Coincheck has identified and published 11 addresses where all 523 million of the stolen coins ended up. You can see for yourself online. Trouble is, no one knows who owns the accounts. Each one has been labeled with a tag that reads “coincheck stolen funds do not accept trades : owner of this account is hacker.”NEM developers created a tracking tool that would allow exchanges to automatically reject stolen funds.

3.Does that mean the hackers won’t be able to cash in?

Not necessarily. The thief could attempt to shake off surveillance by going through a service like ShapeShift, which offers cryptocurrency trading without collecting personal data. Converting NEM coins into a more anonymized currency, like Monero, could conceivably launder them. ShapeShift, which publishes all trades on its platform, said they have already blocked addresses associated with the hack. There are also “tumbler” services, designed to obscure both identities and transactions, but the huge total amount of money stolen presents a challenge.

4.What else can NEM developers do to fix this?

They could change the NEM blockchain by rolling back the record to a point before the attack. The so-called hard fork would create two versions of NEM, one that has never been hacked and another containing the stolen funds. While this approach worked for Ethereum in 2015, NEM Foundation Vice President Jeff McDonald said a fork is not an option.

5.Aren’t these exchanges being hacked a lot?

Yes, there’s a long history of thefts at cryptocurrency exchanges and wallets, dating back to the infamous robbery of Tokyo-based Mt. Gox in 2014. As prices of digital assets have soared, the platforms have become increasingly juicy targets for hackers. North Korean leader Kim Jong Un has allegedly sent his hackers out to swipe digital coins as his country faces tightening trade sanctions. One researcher estimates that more than 14 percent of Bitcoin and rival currency Ether has been stolen.

6.So what can you do to keep crypto-assets safe?

The lesson for crypto-enthusiasts is that exchanges are prime targets for hackers and no place to store your coins. One alternative is to keep the assets in software wallets, which come in online, mobile and desktop varieties. Hardware wallets are dedicated devices that offer an additional layer of security. For the extra paranoid, there is always the analog option: printing out the private keys for your coins on paper.

掃描二維碼下載財富APP
国产AV人人夜夜澡人人爽| 欧美日韩亚洲第一区| 亚洲人成在线观看网站无码| 亚洲国产国语自产精品| 曰韩内射六十七十老熟女影视| 翁公粗大挺进王丽霞高潮嗨文| 精品无人区无码乱码毛片国产| 中文字幕人妻中文AV不卡专区| 国产国产精品人在线观看| 亚洲无码色色性行为视频| 久久久久国产精品免费免费搜索 | 国产无遮挡无码视频免费软件| 亚洲欧美日韩久久一区二区| 久久久久精品久久久久影院蜜桃| 国产一级a毛一级a看免费视频视频一区二区三区| 日本激情夜色网站| 亚洲人成无码网站| 日韩无不卡无码毛片| 国产成人无码精品一区不卡| 国产在线看片无码人精品| 亚洲成AV动漫人片在线观看无码| 蜜桃久久久久久精品免费观看| 亚洲综合色在线观看一区二区三区| 亚洲AV成人一区二区三区观看| 美女被男人桶到爽免费网站国产| 国产精品美女久久久浪潮av| 久久成人国产精品免费| 国产成人精品一区二三区在线观看| 亚洲精品WWW久久久久久| 成年女人黄网站18禁| 精品人人妻人人澡人人爽牛牛| 在线观看的av免费网站| 少妇的丰满3中文字幕| 亚洲成a人片在线观看久| 女女同性女同区二区| 国产精品亚洲专区无码唯爱网| 国产AV综合第一页一个的一区免费影院黑人| 中国无码人妻丰满熟妇啪啪软件| 精品九九人人做人人爱| 人妻无码一区二区三区av| 成人免费一区二区无码视频|