Security Advisories

Trustwave Press Releases

« SpiderLabs Radio: February 20, 2014 | Main | SpiderLabs Radio: February 27, 2014 »

24 February 2014


Hello John,

Thanks for reading!

You are correct. We are talking about Bitcoin-QT clients and their derivatives storing the data in a file named "wallet.dat". In addition, only users that didn't encrypt their wallet lost their funds. If the wallet were encrypted, the attacker would find themselves in possession of a useless file.


Can you clarify, which wallet applications are you referring to? In other words, is this only wallet applications based on Bitcoin-QT which create a 'wallet.dat' file stored on your hard drive? And, presumably if that is the case, these are only wallets that people were stupid enough not to have encrypted?



Verify your Comment

Previewing your Comment

This is only a preview. Your comment has not yet been posted.

Your comment could not be posted. Error type:
Your comment has been posted. Post another comment

The letters and numbers you entered did not match the image. Please try again.

As a final step before posting your comment, enter the letters and numbers you see in the image below. This prevents automated programs from posting comments.

Having trouble reading this image? View an alternate.


Post a comment