TLTR: Was tooling when found One of the most used Bitcoin Wallet put a key logger, in a key recovery tool

Was tooling on Bitcoin fundamental Elliptic Curve Digital Signature Algorithm (ECDSA) when I made this find : One of the most used Bitcoin Wallet put a key logger, in a key recovery tool, hosted in their website. I was working on this test: "it get correct signing address from wallet public key" when I found the wolf in the cantor's house ! The Cantor is just one of the most trusted Bitcoin Wallet : the Samourai Wallet.

"Samourai is the most private and anonymous bitcoin wallet". Houston we have got an ethical problem, I've found a spyware !

The wallet which call itself of being "Military Grade". The wallet sometimes post judgements, pretends to maintain the good practices. (Won't link)

Disclaimer: I use I and like a lot this Wallet Software, it's one's of the best





Bitcoins transactions

Bitcoin transactions are published on the blockchain. So might be possible to find who spend how much and when. It's fixed like this: recommended to use different addresses for each transactions, making, almost impossible to find your figures.

That's why you (will) use a new address for each transaction.

Addresses starts from your secret recovery seed. Keys are derived from your wallet secret passphrase. Derivation standards exists.

I was working on framework aimed at deriving public key from a given public seed and seeking how standards are implemented acrosss wallet.

So you have a master key, it's human readable , it have to be absolutly secret, from this seed you can derive keys following a scheme - BIP32, BIP44 , 49or BIP89 are known common ECDSA derivation schemes standard in Bitcoin.

I'll try, as I understand it, to bring you to my discloser. I won't talk to you here about mining, it's another depraved subject. But about what should interrested BTC end-user like us (yes you will): the keys, because you know the meme:

if you don't have the keys, you don't have the coins.

Keys works with an elliptic curve. It calls complex mathematic of discret algorithm in an Abelian group, so you have the seed, it have to be very secret, and you can generate tons of valid addresses. Bitcoin wallet software manage this and hide you the complexity, give you each time a new address, and watch theses frees (or recents) acdresses.

The way wallets are implemented brings you to check your train of wallet addresses.

It's interesting to know, and seek, and check how they are derived: what happened to my n-1 address ? what was it again ?

Tools exists.

Here is a screenshot of the page where the useful tool hosting the useful keylogger inside :

The tool is just a copy of the Ian Coleman original BIP39 Converter tool, with ... spyware included. The spyware is New Relic if you like to know, the best spy tool available in the whole word wild web, clap, clap clap.

I know what they thought: "we know zero-knowledge and can use Mike Hearn works so we gonna put a spyware know because we have told you shouldn't have typed your seed": Bullshit.

Where is the ethic of hacking you customer saying you shouldn't have do this ?

"Science without conscience is only ruin of the soul"

That's nice if you understand ECDSA and Zero-Knowledge proof but what the hell is going to happen if you don't have the right soul ? Didn't they realize that it was against the principle of all their works, hours thinking about zero-trust system doesn't permit to make a try! That means that there are again a lot of work to do. In the Bitcoin sphere and we need leaders, we need more Gregory Maxwell, we need more Ian Coleman and many others working together.

Epilogue

Contacted Samourai Wallets. Got a lot of negative feedbacks : "we won't tolerate". Kept cool ask them for evidences,

-they said:

you should not type your keys in such a tool

was not them was the original tool (Ian Coleman's fault)

I said (Telegram @samourai) it's not Ian Coleman can see this on Github, it's under revision controls, that's hosting problem on you website. They removed it ASAP. Where to put Bitcoin's key but in a software ?

Conclusion

They thought that they have zero-knowledge (stronger) based security, but CS security is something asymptotic:

Science sans conscience n'est que ruine de l'âme.

Quote from François Rabelais

Samourai is the most private and anonymous bitcoin wallet.

Yeah ! Here is a screenshot of the spy with it's New Relic License key placed on a Bitcoin Master Key recovery tool found on the Samourai Wallet website.





Spyware have been removed silently without security incident analysis, of course.