Head Topics

Crypto Wallet Firm Dfns Says ‘Magic Links’ Have Critical Vulnerability

Deutschland Nachrichten Nachrichten

Crypto Wallet Firm Dfns Says ‘Magic Links’ Have Critical Vulnerability
Deutschland Neuesten Nachrichten,Deutschland Schlagzeilen
  • 📰 CoinDesk
  • ⏱ Reading Time:
  • 54 sec. here
  • 2 min. at publisher
  • 📊 Quality Score:
  • News: 25%
  • Publisher: 63%

NEW: Crypto wallet service provider Dfns disclosed a so-called 'zero day' in 'magic link' sign-in services. Affected companies say the severity has been greatly exaggerated, and accuse Dfns of rushing to publish as a 'stunt.' skesslr reports

. They added, moreover, that Dfns has a vested interest in disparaging passwordless wallet services; Dfns’s business model involves safeguarding crypto passwords for its customers.

Using a fresh CoinDesk burner wallet as a test dummy, Faysall demonstrated how a hacker could send a magic link that appeared genuine. The link came from the wallet service’s real email address and clicking on it logged into the CoinDesk burner wallet. In both of his demonstrations, Fayssal – not CoinDesk – initiated the sign-in request that triggered a magic link email. If a user receives a log-in email without actually trying to log into a service, this is typically a phishing red flag – even if the email appears completely authentic.

CoinDesk spoke with three of the crypto companies that Dfns identified as users of magic links. All of them confirmed that Fayssal’s findings were authentic, but they all said Dfns was overplaying its hand by calling the attack a “zero day.” “We see this as a phishing attack,” Yong told CoinDesk. “It’s similar to a phishing attack on MetaMask, where there’s a dApp [decentralized app] that sends a malicious transaction, the user approves it, then the user might send their tokens to a malicious address or something.”

Wir haben diese Nachrichten zusammengefasst, damit Sie sie schnell lesen können. Wenn Sie sich für die Nachrichten interessieren, können Sie den vollständigen Text hier lesen. Weiterlesen:

CoinDesk /  🏆 291. in US

Deutschland Neuesten Nachrichten, Deutschland Schlagzeilen

Similar News:Sie können auch ähnliche Nachrichten wie diese lesen, die wir aus anderen Nachrichtenquellen gesammelt haben.

Web3 Wallet Bitski Releases New Mobile Wallet and Browser ExtensionWeb3 Wallet Bitski Releases New Mobile Wallet and Browser ExtensionEXCLUSIVE: Leading Web3 wallet Bitski debuts new iOS-compatible mobile application and browser extension to help safely and securely onboard more users to Web3. camgthompson reports:
Weiterlesen »

Here's How to Unlock Cardano (ADA) Web3 Support in This Popular Crypto WalletHere's How to Unlock Cardano (ADA) Web3 Support in This Popular Crypto WalletExodus, popular noncustodial private crypto wallet, has added support for Cardano's Web3 integration to its extension wallet
Weiterlesen »

IMF exec board endorses crypto policy framework, including no crypto as legal tenderIMF exec board endorses crypto policy framework, including no crypto as legal tenderThe executive board of the International Monetary Fund has given its support to principles of cryptocurrency regulation proposed in a paper released earlier this year.
Weiterlesen »



Render Time: 2025-03-01 08:28:58