MIST Bug Discovered, Thousands Of Ether Owners At Risk

MIST Bug Discovered

Ethereum’s blog was updated today with a post warning its users of a bug in their Mist Browser Beta that could allow user’s private keys to be stolen. This particular bug affects the Mist Browser Beta v0.9.3 and under and leaves thousands vulnerable to potential attacks.

Users of the Ethereum wallet desktop app are not included in this group.

Developers have been very adamant in expressing their alertness on the issues and state they are working diligently to resolve this issue. There have been a few high related security issues in the past on the Ethereum network, more notably the Parity hack a few months ago.

Mist, Electron, and Chromium are composed of a three-tier system and it presents various hurdles in security. In the alerting blog post, the Mist team explains said complexities:

“A core problem with the current architecture is that any 0-day Chromium vulnerability is several patch-steps away from Mist: first Chromium needs to be patched, then Electron needs to update the Chromium version, and finally, Mist needs to update to the new Electron version.”

Mist browser users have been advised of a specific 7 step checklist to ensure top safety.

  1. Do not keep large quantities of Ether or other cryptocurrencies on an online computer.
  2. Back up your private key to a cold storage unit.
  3. Do not visit untrusted sites with the Mist software.
  4. Do not use Mist on untrusted “Wifi” networks, more specifically public ones.
  5. Keep your day-to-day browser on your computer updated to the latest model.
  6. Keep up with all anti-virus software and operating systems.
  7. Educate yourself on how to verify file checksums.

Mist browser users are advised to follow a seven-step checklist to ensure maximum safety:

  • Avoid keeping large quantities of Ether or tokens in private keys on an online computer.
  • Back up your private keys.
  • Do not visit untrusted websites with Mist.
  • Do not use Mist on untrusted networks.
  • Keep your day-to-day browser updated.
  • Keep track of your Operating System and anti-virus updates.
  • Learn how to verify file checksums.

Featured Image: twitter

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.