< BACK TO NEWS
negativeSYS.SOURCE: The Hacker News2026-07-10T14:30:05+05:30

Cryptocurrency Wallets Compromised by 'Ill Bloom' Vulnerability, Resulting in $5 Million in Losses

#Cryptocurrency Security#Vulnerability#Wallet Exploitation#Cybersecurity#Blockchain Risks

A vulnerability in cryptocurrency wallet recovery phrases, termed 'Ill Bloom,' allowed attackers to drain over $5 million by exploiting weak randomness in seed phrase generation. Affected wallets include older or lesser-known software, with recommendations to check addresses via a dedicated tool and migrate funds to new wallets.

Security firm Coinspect has disclosed a crypto wallet flaw it calls Ill Bloom, and attackers are already using it. The flaw is in how some wallet software generated its recovery phrase, the words that control the money. When that phrase is made with weak randomness, an attacker can work it out and take everything it controls.

Coinspect has confirmed one coordinated sweep on May

Read original article

*** END OF TRANSMISSION ***

> RYANAIR PASSENGER INJURED AFTER MIDAIR ENGINE FAILURE LEADS TO CABIN WINDOW DAMAGE> LAYLO SEEKS HEAD OF FINANCE FOR SAAS GROWTH> LATE BRONZE AGE COLLAPSE: ARCHAEOLOGICAL INSIGHTS AND HISTORICAL ANALYSIS> UNPATCHED XRING VULNERABILITY IN XQUIC ENABLES REMOTE HTTP/3 SERVER CRASHES> LUMEN TECHNOLOGIES EXPANDS ASSET INVENTORY TO 1.1 MILLION VIA ADVANCED EXPOSURE MANAGEMENT> EXPOSED HACKER SERVER UNVEILS WP-SHELLSTORM WEBSHELL CAMPAIGN TARGETING WORDPRESS AND JOOMLA SITES> EU COMMISSION ALLEGES INSTAGRAM AND FACEBOOK VIOLATE DSA WITH ADDICTIVE DESIGN FEATURES> STUDY REVEALS SECURITY VULNERABILITIES IN 281 FREE ANDROID VPN APPLICATIONS> THE PHILOSOPHY OF INVISIBLE TOOLS IN SOFTWARE DEVELOPMENT> SOPHISTICATED PHISHING CAMPAIGN EXPLOITS MICROSOFT ENTRA PASSKEY ENROLLMENT FOR UNAUTHORIZED ACCESS> RYANAIR PASSENGER INJURED AFTER MIDAIR ENGINE FAILURE LEADS TO CABIN WINDOW DAMAGE> LAYLO SEEKS HEAD OF FINANCE FOR SAAS GROWTH> LATE BRONZE AGE COLLAPSE: ARCHAEOLOGICAL INSIGHTS AND HISTORICAL ANALYSIS> UNPATCHED XRING VULNERABILITY IN XQUIC ENABLES REMOTE HTTP/3 SERVER CRASHES> LUMEN TECHNOLOGIES EXPANDS ASSET INVENTORY TO 1.1 MILLION VIA ADVANCED EXPOSURE MANAGEMENT> EXPOSED HACKER SERVER UNVEILS WP-SHELLSTORM WEBSHELL CAMPAIGN TARGETING WORDPRESS AND JOOMLA SITES> EU COMMISSION ALLEGES INSTAGRAM AND FACEBOOK VIOLATE DSA WITH ADDICTIVE DESIGN FEATURES> STUDY REVEALS SECURITY VULNERABILITIES IN 281 FREE ANDROID VPN APPLICATIONS> THE PHILOSOPHY OF INVISIBLE TOOLS IN SOFTWARE DEVELOPMENT> SOPHISTICATED PHISHING CAMPAIGN EXPLOITS MICROSOFT ENTRA PASSKEY ENROLLMENT FOR UNAUTHORIZED ACCESS