Copay and Bitpay Wallet Apps Were Infected With Malicious Code

A developer has injected a piece of malicious code into the software used by the popular Copay and Bitpay wallets. The safety of the Bitcoin.com wallet was not compromised and the Bitpay app was not vulnerable to the attack, but Copay users need to take precautionary actions.

Also Read: Chinese Startup Gets Crypto Custodial Services License in Hong Kong

Someone Might Have Been Able to Steal Private Keys

Copay and Bitpay Wallet Apps Were Infected With Malicious Code The Bitpay team has announced that a third-party NodeJS (the open-source Java Script environment) package used by the Copay and BitPay apps had been modified to load malicious code. This could have been used to capture and steal users’ private wallet keys. The company learned about the vulnerability from a GitHub issue report about an “event-stream” dependency attack.

Bitpay has only confirmed so far that the malicious code was deployed on its Copay and Bitpay apps from version 5.0.2 to 5.1.0. However, the company has tried to reassure users by saying that the Bitpay app was not vulnerable to the malicious code. A security update (version 5.2.0) has been developed and will be made available for users in the app stores. And the team is still investigating to figure out if the malicious code was ever actually used against people.

What Copay Wallet Users Need to Do Now to Keep Safe

Copay and Bitpay Wallet Apps Were Infected With Malicious Code The Bitpay team warns that anyone using a Copay app from version 5.0.2 to 5.1.0 should not open it again. Users should first update their affected wallets and then send all funds from affected wallets to new version 5.2.0 wallets. Users should not attempt to move funds to new wallets by importing affected backup phrases, as they should assume that the corresponding private keys may have been compromised.

If you use the Bitcoin.com wallet you have not been affected by this issue at all, so you don’t need to do anything. “Our wallet doesn’t use the compromised ‘package,’ so we’re completely out of trouble for this one,” explains the Bitcoin.com wallet development team. “We’re operating as normal, we have never used that package and will never use it.”

Do you use an affected Copay wallet? Share your thoughts in the comments section below.

Images courtesy of Shutterstock.

Verify and track bitcoin cash transactions on our BCH Block Explorer, the best of its kind anywhere in the world. Also, keep up with your holdings, BCH and other coins, on our market charts at Satoshi’s Pulse, another original and free service from Bitcoin.com.

Show comments

In Case You Missed It

US Consumers Flock To the First Mastercard Branded BitPay Card

New data from BitPay shows that American consumers are flocking to load the first Mastercard branded BitPay card with top digital assets. The popular cryptocurrency payment services provider debuted the new card in June 2020 and the company’s transactions reached ... read more.

Switchere: Buy Crypto with CC, Pay with Local Banks, Swap and Sell Coins Online

Presently, the crypto market is witnessing an incredible growth and massive adoption worldwide. Digital transformation and tokenization give freedom to deployment of cryptocurrencies in everyday life. However, one thing worth careful considering is how to choose a trustworthy online crypto ... read more.

Kiss' Gene Simmons Tweets Cryptic Message About His Bitcoin Plans

Rock band Kiss' lead singer Gene Simmons has tweeted a cryptic message about bitcoin in response to a discussion on making cryptocurrency accessible to the masses. Simmons previously said he was interested in bitcoin, noting that its price goes up ... read more.

UK Mulls Over Negative Interest Rates, US to Keep Near Zero Rates for Years

The Bank of England is now seriously considering implementing negative interest rates while the U.S. Federal Reserve has pledged to keep interest rates near zero for years. Some analysts say even the Fed will soon consider negative interest rates. Meanwhile, ... read more.

East Asia Dominates World's Onchain Crypto Activity, Europe and North America Trail Behind

Crypto activity continues to flourish worldwide, according to a new cryptocurrency adoption index published by the blockchain intelligence firm Chainalysis. The researchers compile onchain digital currency retail value transferred, onchain crypto deposits, peer-to-peer exchange volume, and other types of methodology. ... read more.

NFT Digital Art That Changes With Bitcoin Price Volatility Sold for Record $101,000

Matt Kane's "Right Place & Right Time," a non-fungible token (NFT) digital artwork that changes every day with the bitcoin price volatility, claims the artist, has been sold for a record 262 ether or $101,100 on blockchain platform Async Art. ... read more.

CoinEx Lists ONES Token First and Launches Initial Trade Offering with OneSwap’s Official Launch

OneSwap is a groundbreaking new DeFi project offering a decentralized exchange protocol on a smart contract, with permission-free token listing and automated market making. It offers multiple advantages over other swaps including the ability to preform limit orders and a ... read more.

Analyst: 1,500 Bitcoins Lost Every Day, Less Than 14 Million Coins Will Ever Circulate

A cryptocurrency analyst, Timothy Peterson claims that 1,500 bitcoins are lost each day meaning only 14 million BTC will ever circulate. The figure is at odds with the estimate of many organizations including Markets.bitcoin.com which place the figure at 18.5 ... read more.

Bitcoin Skeptic Turns Bitcoin Bull: Billion Dollar Company Buys 17K BTC in 74 Hours

Nasdaq-listed company Microstrategy recently bought almost 17K bitcoins within 74 hours, costing about $175 million. The CEO of this billion-dollar company used to be a bitcoin skeptic but has recently become a bitcoin bull when his company purchased $425 million ... read more.

Report: Blockchain Patents 'Skyrocket' in 2020, Alibaba Owns the Most Crypto Patents

A study from the team at Kisspatent shows that Alibaba Group is the largest blockchain patent holder in 2020 capturing 10x the number of patents held by IBM. The report notes that blockchain patents “are skyrocketing” this year and so ... read more.

Market Outlook: Bitcoin Breaks $11K, Whales Refuse to Sell, Downside Risk Remains

The price of bitcoin jumped above the $11k threshold on Saturday morning and into the afternoon, after hovering above the $10,900 range the day prior. The entire crypto-economy of 7,600+ coins has gained 2.29% during the last 24 hours touching ... read more.

Brazen Nigerian Crypto Scam Inksnation Still Operational Three Months After Regulator Warning

One of Nigeria’s most brazen crypto scams, Inksnation remains operational and still invites new investors some three months after the country’s Securities and Exchange Commission (SEC) deemed its activities illegal. The SEC has previously warned Nigerians against investing with the ... read more.

Publicly Listed Energy Firm Equinor Exploits Gas Flaring in North Dakota to Mine Bitcoin

Just recently, the firm Arcane Research recently revealed a number of screenshots from the publicly traded energy firm, Equinor. The pictures show the multinational company leveraging natural gas flaring to power bitcoin mining operations. In recent years, using the unorthodox ... read more.

US Indicts Hackers Stealing $17M in Bitcoin and Ether From Binance, Poloniex, Gemini Users

Two people have been charged in the U.S. for allegedly using "a sophisticated market manipulation scheme" to defraud and steal $17 million in bitcoin and ether from users of three cryptocurrency exchanges worldwide. The targeted exchanges were Binance, Poloniex, and ... read more.

5 Major Banks Exposed for Moving Trillions for Mobsters, Onecoin, and Drug Cartels

According to the International Consortium of Investigative Journalists (ICIJ), five major global banks have been exposed funneling trillions of dollars in criminal funds in the recently leaked FinCEN Files. The massive leak is 2,100 documents spanning from 2000 to 2017 ... read more.

Turbulent Crypto Markets Expected - 87K Worth of Bitcoin Options Set to Expire on Friday

Markets are expected to be volatile this week, as a great number of bitcoin and ethereum options are set to expire this Friday. Data shows more than 87,000 bitcoin options will expire and 77% of the action is held on ... read more.

Iran Grants Bitcoin Miners Exclusive Access To Electricity at Three Power Plants

Iran has granted bitcoin miners exclusive access to electricity generated from three power plants for their mining activities, according to state power utility Thermal Power Plant Holding Company (TPPH). Mohsen Tarztalab, managing director of TPPH, told a local news agency ... read more.

Leaked Data Outs Bitcoin Investment Company as Scam: Founders Deny the Allegations

A South African group calling itself "Anonymous ZA" has published fresh information that seemingly supports long-standing allegations that Mirror Trading International (MTI), an ostensible bitcoin investment company, is running a multi-level marketing scam. The new information, which was reportedly obtained ... read more.

Bitcoin ATMs Surpass 10,100 Worldwide: Expert Shares Industry Outlook

The bitcoin ATM industry has reached a milestone as the number of machines installed worldwide has surpassed 10,000 after seven years since the first machine was installed. There are now 10,162 bitcoin ATM locations spread across 71 countries. Number of ... read more.

EU to Launch Comprehensive Crypto Regulation by 2024: Report

The European Union is planning to implement comprehensive cryptocurrency regulation by 2024, two EU reports have reportedly revealed. This follows five European finance ministers calling on the European Commission to put in place "very strong and very clear rules" on ... read more.

Execs Managing $78B in Assets Say Institutional Investors Plan to Allocate More Cryptocurrencies

New research from the digital currency insurance firm, Evertas, shows that a surveyed group of investors managing roughly $78 billion in collective assets believes that during the next five years, institutional investors will “dramatically” increase their crypto asset holdings. This ... read more.

Tokenized BTC Crosses $1B Notional: Ethereum Cements Role as Bitcoin's Main Sidechain

Years ago when the Bitcoin network started suffering from higher fees and congestion, a number of bitcoiners advocated the use of sidechains in order to relieve the main chain’s duties. However, they didn't realize that the Ethereum network would solidify ... read more.

SBTC Plummets by 99% as Devs Announce Dissolution of Token

The price of SBTC plunged by nearly 98% in just over an hour on September 21 as devs announced the dissolution of the token. The dissolution announcement came more than a month after the token reached an all-time high of ... read more.

News

Copay and Bitpay Wallet Apps Were Infected With Malicious Code

Someone Might Have Been Able to Steal Private Keys

What Copay Wallet Users Need to Do Now to Keep Safe

3.5 Million+ Crypto Wallets Downloaded in July, Active Users up 110% in the Year

Coinbase Wallet Adds Support for Short and 'Human-Friendly' Cryptocurrency Addresses

Kelta Cafes: Building a Robust Workplace for Blockchain Enthusiasts

Smart Advertising Token SaTT Reveals ProBit as Next Exchange Listing

Global Hashpower Exchange Launches World’s First Exchange Dedicated to Hashpower Futures...

Someone Might Have Been Able to Steal Private Keys

What Copay Wallet Users Need to Do Now to Keep Safe

3.5 Million+ Crypto Wallets Downloaded in July, Active Users up 110% in the Year

Coinbase Wallet Adds Support for Short and 'Human-Friendly' Cryptocurrency Addresses

Tags in this story

Kelta Cafes: Building a Robust Workplace for Blockchain Enthusiasts

Smart Advertising Token SaTT Reveals ProBit as Next Exchange Listing

Global Hashpower Exchange Launches World’s First Exchange Dedicated to Hashpower Futures...