Beam team: "Critical vulnerability" found in Beam Wallet

Security • January 9, 2019, 4:21PM EST
UPDATED: January 10, 2019, 9:34AM EST
The Block

Beam, the privacy coin implementing the MimbleWimble protocol, announced via its Twitter account that its team had found a "critical vulnerability" in the Beam Wallet. Per Beam CTO, Alex Romanov, in Beam's community chat, the vulnerability does not affect "wallet data, secret keys, or passwords." The vulnerability was first discovered by the Beam development team and affects previously released Beam Wallets.

THE SCOOP

Keep up with the latest news, trends, charts and views on crypto and DeFi with a new biweekly newsletter from The Block's Frank Chaparro

By signing-up you agree to our Terms of Service and Privacy Policy
By signing-up you agree to our Terms of Service and Privacy Policy

The Beam team is recommending users to do the following:

  • Stop running their wallets.
  • Uninstall or delete their wallet application and executables from all machines.
  • Make sure the application was deleted.
  • Redownload and reinstall the updated version of Beam Wallet from Beam's website.

The Beam team will release a proper update, providing more details on the vulnerability, in the next few days. Beam officially launched on January 3, 2019, becoming the first cryptocurrency to implement the privacy protocol, MimbleWimble.

About Author

Steven Zheng is a researcher for The Block. He joined The Block in August 2018. Steven graduated from St. John’s University with a degree in economics. Previously, he covered blockchain and crypto at Radicle, a startup analytics firm. He also had brief stints at Cheddar, a media startup, and Bowery Capital, a venture capital firm. He owns bitcoin. Follow Steven on Twitter at: @Dogetoshi

More by Steven Zheng