Ralf SThu 6:46pm
more_vert
Hi @team,
Today we have released a security update for our wallet (v6.6).
The login and transactions are rewritten to safe offline requests. So your keys will never leave your computer.
Attention to all delegates (mainnet + testnet), please update your wallets asap too, using the following command:
./shift_manager.bash update_wallet
If you are using a public wallet and have doubts whether somebody got access to your private keys: to be 100% sure move your funds to a brand new address.
We lowered our fees to 0.01 Shift for sending, and 0.1 for creating a second signature. So that shouldn't stop you.
This had to be fixed with priority, we hope you'll understand, more updates to follow soon. Stay tuned!
DAMAGED GOODS
Uhhh huhhhhhh
So they only fixed the bug AFTER it was exposed to the public?!?! And they've known about it the entire time.....
Really makes you think
https://www.shiftnrg.org/newsletter-may/ it was public the whole time, even in this newsletter from may
>>2893837
>https://www.shiftnrg.org/newsletter-may
Nowhere does it say that the devs have access to everyone's private keys you dunce!
Your right, but working on client side signing, means that it's server side signing, and the any wallet had access to a key put in it. Not devs in particular.
Way, way too many other promising alts out there rn for me to waste any more time on this one. I sold all my SHIFT back when /biz/ told me about the key leak and haven't regretted it.
Biz does poor research, and key leak?
wasn't this not even a problem in the first place?