Bitcoin's future threats: what’s real and what’s not? Audience votes after panelists release a whitepaper and overview key case studies on: remote exploitation(31), mining resources theft(17), wallet theft(10), fraud or scam(10), crime or terrorism(10), insider threat(8), DDoS(7), phishing(6), coin loss(4), software bug or human error(3), social engineering(1), 51% attack(1), government bans(1). - See more at: https://www.rsaconference.com/events/us15/agenda/sessions/1710/bitcoins-future-threats-experts-roundtable-based-on#sthash.MtLRNA1w.dpuf
11. #RSAC
Questions
Which threat vector will impact Bitcoin’s future most?
How anonymous is Bitcoin?
Will we see more of CryptoLocker clones in the future demanding
Bitcoin for encrypted file ransom?
Which threat vector is likely under-rated?
What opportunities and impact will Bitcoin bring to the security
industry?
How to boost Bitcoin’s wide adoption?
23. #RSAC
Mining resources theft
Botnets - Some also have injects for bitcoin theft, i.e this Zeus modification:
https://bigrc.biz/threads/%D0%BF%D1%80%D0%BE%D0%B4%D0%B0%D0%BC-botnet-evolution-
%D0%B1%D0%BE%D1%82%D0%BD%D0%B5%D1%82.9505/
25. #RSAC
Wallet theft
Endpoint wallet stealers
Dell: Nearly 150 Strains of Malware Are After Your Bitcoins
Bitcoin-featured banking malware
Trojaned browser plugins
26. #RSAC
Bitcoin malware trends
Malware is and will be an important tool for coin thieves against
end users
Attack wallet files or website logins
Desktop and mobile
Interest from malware authors is proportional to the Bitcoin price
and adoption in their target demographic
Dropped in 2014 along with price [Symantec]
As adoption grows, average technical savvy of user will drop
30. #RSAC
Defending Against Bitcoin Malware
For now, most Bitcoin malware will simply be standard financial
trojans. Use traditional methods of detection
Behavioral analysis: processes scanning for ‘wallet.dat’,
‘wallet.aes.json’ or Base58Check strings all potentially suspicious
Put private keys offline and into cold storage; use offline signing
Security proportional to amount of funds stored, even during
upward price swings
Multi-stage signing protocols such as P2SH multisig, Shamir’s
Secret Sharing, or threshold sigs distribute risk
31. #RSAC
Crime and terrorism
Bitcoin as gaming credits (ex: gambling)
Bitcoin as payment protocol for criminal trade
Bitcoin used to fund or to donate to terrorists
Bitcoin as means to launder money
32. #RSAC
Insider threat
Current operators or employees
Ex-employees
Fake “compromises”
US Department of Justice: US Secret
Service agent "diverted" more
than $800,000 in Bitcoins to
his personal accounts
38. #RSAC
Questions
Which threat vector will impact Bitcoin’s future most?
How anonymous is Bitcoin?
Will we see more of CryptoLocker clones in the future demanding Bitcoin
for encrypted file ransom?
Does cryptocurrency promote ransomware
Which threat vector is likely under-rated?
What opportunities does Bitcoin bring to the security industry?
How will Bitcoin impact the security industry?
How to boost Bitcoin’s wide adoption?
This question pertains to custodial services. One of the benefits of
Bitcoin is that it eliminates intermediaries and counter-party risk.
However, many users appreciate the convenience and potential security
of custodial companies, which re-introduce some of those negative
elements that Bitcoin seeks to eliminate. In some cases, this has
resulted in lost coins due to mismanagement, insider threats, or
fraud. Is custodial Bitcoin a good or bad thing? Will we see more or
less of it in the future? How can custodial companies prove that to
users that they are liquid (e.g proof of reserves)?
Keylogging, screenshot and video capture. Focused on obtaining login credentials
Usually escrow funds are in danger with these marketplaces.
Other exchanges have adopted 2 of 3 multisig escrow to prevent theft of escrow funds.
Force had abused his positions as a DEA agent and compliance officer at digital currency exchange CoinMKT to freeze a customer’s account and transfer $297,000 worth of cryptocoins to his personal account
Both Force and Bridges had set up front companies and associated bank accounts where illegally-acquired $820k were deposited
This question pertains to custodial services. One of the benefits of
Bitcoin is that it eliminates intermediaries and counter-party risk.
However, many users appreciate the convenience and potential security
of custodial companies, which re-introduce some of those negative
elements that Bitcoin seeks to eliminate. In some cases, this has
resulted in lost coins due to mismanagement, insider threats, or
fraud. Is custodial Bitcoin a good or bad thing? Will we see more or
less of it in the future? How can custodial companies prove that to
users that they are liquid (e.g proof of reserves)?