Head Topics

Crypto Wallet Firm Dfns Says ‘Magic Links’ Have Critical Vulnerability

日本 ニュース ニュース

Crypto Wallet Firm Dfns Says ‘Magic Links’ Have Critical Vulnerability
日本 最新ニュース,日本 見出し
  • 📰 CoinDesk
  • ⏱ Reading Time:
  • 54 sec. here
  • 2 min. at publisher
  • 📊 Quality Score:
  • News: 25%
  • Publisher: 63%

NEW: Crypto wallet service provider Dfns disclosed a so-called 'zero day' in 'magic link' sign-in services. Affected companies say the severity has been greatly exaggerated, and accuse Dfns of rushing to publish as a 'stunt.' skesslr reports

. They added, moreover, that Dfns has a vested interest in disparaging passwordless wallet services; Dfns’s business model involves safeguarding crypto passwords for its customers.

Using a fresh CoinDesk burner wallet as a test dummy, Faysall demonstrated how a hacker could send a magic link that appeared genuine. The link came from the wallet service’s real email address and clicking on it logged into the CoinDesk burner wallet. In both of his demonstrations, Fayssal – not CoinDesk – initiated the sign-in request that triggered a magic link email. If a user receives a log-in email without actually trying to log into a service, this is typically a phishing red flag – even if the email appears completely authentic.

CoinDesk spoke with three of the crypto companies that Dfns identified as users of magic links. All of them confirmed that Fayssal’s findings were authentic, but they all said Dfns was overplaying its hand by calling the attack a “zero day.” “We see this as a phishing attack,” Yong told CoinDesk. “It’s similar to a phishing attack on MetaMask, where there’s a dApp [decentralized app] that sends a malicious transaction, the user approves it, then the user might send their tokens to a malicious address or something.”

このニュースをすぐに読めるように要約しました。ニュースに興味がある場合は、ここで全文を読むことができます。 続きを読む:

CoinDesk /  🏆 291. in US

日本 最新ニュース, 日本 見出し

Similar News:他のニュース ソースから収集した、これに似たニュース記事を読むこともできます。

Web3 Wallet Bitski Releases New Mobile Wallet and Browser ExtensionWeb3 Wallet Bitski Releases New Mobile Wallet and Browser ExtensionEXCLUSIVE: Leading Web3 wallet Bitski debuts new iOS-compatible mobile application and browser extension to help safely and securely onboard more users to Web3. camgthompson reports:
続きを読む »

Here's How to Unlock Cardano (ADA) Web3 Support in This Popular Crypto WalletHere's How to Unlock Cardano (ADA) Web3 Support in This Popular Crypto WalletExodus, popular noncustodial private crypto wallet, has added support for Cardano's Web3 integration to its extension wallet
続きを読む »

IMF exec board endorses crypto policy framework, including no crypto as legal tenderIMF exec board endorses crypto policy framework, including no crypto as legal tenderThe executive board of the International Monetary Fund has given its support to principles of cryptocurrency regulation proposed in a paper released earlier this year.
続きを読む »



Render Time: 2025-03-06 07:28:52