Technology that steals bit coins from safe cold storage isolated from the net "BeatCoin"

byAndre Francois

The virtual currency Bitcoin (bit coin) is generally stored in online wallet, but in the past this online wallet serviceEquivalent to 120 million yenHave been stolen, etc. It is well known that there is the danger of stealing bit coins by keeping Wallet on a computer connected to the Internet. What was born there is a method of storing wallet in a computer isolated from the Internet "Cold storage"is. However, the latest research shows that it is possible to steal bit coins from this cold storage.

Stealing Bitcoin Wallet Keys From Air - Gapped Computers (Cold Storage)
https://thehackernews.com/2018/04/bitcoin-wallet-keys.html

A security researcher team at the Negev Ben-Glion University in Israel,Air gapIt demonstrates various ways to steal data from a computer that was done. From a computer that was isolated so far from the Internet,heatYaUltrasonic wave,Electrical wireAlthough I was successful in stealing data using the "BeatCoin", I am announcing new research results called "BeatCoin". BeatCoin shows that it is possible to steal private key of wallet for virtual currency installed in airgaped computer.

The virtual currency wallet stored on a computer that is completely offline is called "cold storage" and is known as a safe way to store virtual currency because it is not connected to the Internet. However, using BeatCoin seems to make it possible to steal bit coins from cold storage.


BeatCoin's proof-of-concept demonstrates that maliciously "running a bit coin wallet application and sending a wallet key to a nearby device via a secret channel by executing each attack vector one at a time" on a computer that is air- It is working with.

As a method of infecting malware, it has been proposed that "install at the time of installing Wallet together" or "make it install via removable media such as USB memory", etc. from air-gapped computer to another terminal As a method of transmitting the secret key of the bit coin wallet, "MOSQUITO"The method of stealing data from air-gapped computers" that has been publicly announced by Negev-Ben-Glion University is used.

In the following movie you can see how stealing the secret key of bit coin wallet from the cold storage actually using BeatCoin. The first movie is a stolen secret key via electromagnetic signal from Raspberry Pi which is infected by malware but air gapped.

BeatCoin: Leaking bitcoin's private keys from air-gapped wallets - YouTube


Air gaped Raspberry Pi. Not to mention that it is not connected to the Internet, nor is it connected to Bluetooth or peripheral devices.


This is a terminal that steals Wallet's secret key stored in Raspberry Pi.


The secret key has been successfully stealed in about 15 seconds.


This movie steals the secret key using MOSQUITO from a computer in the state of being air gapped although it is infected with malware.

BeatCoin 2: Leaking bitcoin private key from air-gapped wallet - YouTube


An air gaped computer.


The secret key to steal is kore.


Success is provided if the secret key is displayed on the smartphone. In this movie, I steal the private key via ultrasound.


Here we succeeded in obtaining secret key in about 3 seconds.


In addition, BeatCoin is basically applied to steal the secret key of Bitcoin's online wallet, "How to steal data from air-gapped computer" publicized by the security researchers team of Negev Ben-Glion University so far It did not mean that a new hacking method was created.