In a recent disclosure by the security firm Coinspect, a significant flaw termed ‘Ill Bloom’ has been identified in certain cryptocurrency wallets. This vulnerability, which affects how recovery phrases are generated in some wallet software, has already been exploited by attackers. The flaw arises when recovery phrases are generated with insufficient randomness, allowing unauthorized individuals to potentially access and drain funds from affected wallets.
Massive Theft Linked to Vulnerability
Coinspect confirmed a major breach on May 27, resulting in approximately $3.1 million being siphoned from 431 wallets. Since that initial attack, an additional estimated $2 million has been moved from compromised wallets. The exact division between theft and owners proactively moving their funds remains unclear.
According to Coinspect, “If you have recently noticed unauthorized movement of funds, this vulnerability could be the reason.” The primary threat targets older or lesser-known mobile wallets, particularly those in use since 2018. Most hardware wallets and popular software wallets appear unaffected.
Understanding the Vulnerability
At the core of this issue is the recovery phrase—a sequence of 12 or 24 words that is supposed to be randomly selected from a vast pool, making it nearly impossible to guess. However, the affected wallets used a weak random-number generator, drastically reducing the number of potential phrases. This vulnerability allowed attackers to identify and exploit wallet addresses with weak recovery phrases.
Coinspect has recreated the attack, analyzing the potential phrases these weak generators could produce. Their efforts have resulted in a list of vulnerable wallets, regardless of which app initially generated them.
Preventative Measures for Users
To determine if your wallet is at risk, Coinspect offers a tool at illbloom.org. Users can check their public wallet addresses against a known list of vulnerable addresses. The service supports Bitcoin, Tron, Solana, and Ethereum-style addresses.
If a match is found, it is crucial to treat the recovery phrase as compromised. Users should create a new wallet with a new recovery phrase and transfer their funds immediately. It is important to avoid reusing the compromised phrase or importing it into other applications.
Users are cautioned against scams promising to “rescue” funds. Coinspect emphasizes that genuine services will never request your recovery phrase or private keys.
Historical Context and Future Implications
The ‘Ill Bloom’ flaw is reminiscent of past vulnerabilities, such as the 2023 ‘Milk Sad’ and ‘Randstorm’ incidents, which exposed weaknesses in wallet randomness. These issues underscore the importance of robust random-number generation in wallet security.
The next step involves identifying which wallet applications generated these weak phrases. Coinspect is gathering reports from affected users to inform developers and vendors so appropriate actions can be taken to prevent future vulnerabilities.
