Altcoin Bitcoin Private Confirms Additional 2 Million Coins Secretly Premined

Published at: Dec. 25, 2018

The development team behind altcoin Bitcoin Private (BTCP) has confirmed the creation of 2.04 million units of BTCP “that were never intended to exist on the blockchain,” according to an official statement published Dec. 24.

On Dec. 23, digital assets analytics website Coin Metrics published a report revealing that during the import of Bitcoin (BTC) chain data, an additional 2.04 million units of altcoin BTCP — about $3.9 million at press time — were secretly minted. Per the project’s white paper, the total supply of BTCP is equal to around 20.4 million coins, while the secretly premined BTCP brought “the initial supply to 22.6 million.”

The BTCP core team says in today’s statement that upon receiving the reports, they “immediately launched an investigation to ascertain whether or not the alleged findings of an additional amount of BTCP coins were true.” After performing an internal audit, the team officially says that Coin Metrics’ findings were “mathematically accurate.” The team added:

“However, at this time, the source, purpose, and recipient of this exploit is currently unknown to the Bitcoin Private Contribution Team.”

The statement further cites the timeline of events regarding the issue, unveiling that ultimately there was a bounty posted for a specific issue, which was subsequently accepted by a developer, who then became a BTCP developer and was “promoted to a contributor on GitHub, allowing him to merge pull requests.”

That developer reportedly then completed the issue, merged their own code, and received their reward. The BTCP team further discovered that one line missing in the code “allow[ed] the fork mine to be exploited due to the nodes not properly verifying the falsified fork blocks.” Once the bounty was collected, the developer left the BTCP project.

After that, the threat actor reportedly exploited the bug, creating over 2 million coins during the publicly announced fork mine. The statement reads:

“As the code was open source, and the fork-mine was announced on Twitter, anyone with sufficient blockchain development knowledge could have exploited it.”

The BTCP team further notes it is not clear whether those coins were transferred to an exchange or used or stored elsewhere. However, the team’s statement concludes:

“this particular exploit could only be taken advantage of during the fork mine, which already occurred earlier this year. Therefore, it is impossible for this particular bug exploit to occur again, nor can it be further exploited.”

The BTCP team also stated in the announcement that they had “no prior knowledge” of the incident before Coin Metrics’ report was released to the public.

At the end of the statement, the BTCP team writes that they have contacted major crypto exchange HitBTC about the situation. HitBTC has not responded to Cointelegraph’s request for comments by press time.

At press time, BTCP is trading at around $1.97, down close to 7 percent over the last 24 hours, according to CoinMarketCap.

In September, Bitcoin Core released an update following the recent detection of a vulnerability in the software. The vulnerability could reportedly have caused a crash of older versions of Bitcoin Core if they attempted processing a block transaction that tries to spend the same amount twice.

Tags
Bitcoin
Cryptocurrencies
Mining
Fraud
Zcash
Related Posts
How to Remain Profitable Through the Halving of Zcash
Reward halvings are a common element of many different forms of cryptocurrency, known to typically impact a coin’s supply, difficulty and price. For many cryptocurrencies, these halving mechanisms are embedded into the code in order to lower the generation rates and inflation, which can help extend the life of the coin even amid increased demand. This is what happened with the Bitcoin network back in May when its block reward halved for the third time and was reduced to 6.25 Bitcoin (BTC). Now, it is Zcash’s turn, as the digital asset’s network is set to undergo its first halving sometime …
Blockchain / Aug. 11, 2020
Privacy Coins in 2019: True Financial Freedom or a Criminal's Delight?
The right to privacy is a fundamental prerequisite for peace of mind and security. The idea that only criminals have something to hide is strange. Contrarily, privacy is sought by almost everyone. Yet, it still gets stigmatized as suspicious — reserved solely for criminals or deviants. Similarly sharing this unjust scrutiny are cryptocurrencies, which are — rather ironically — branded as a tool for felons, based largely on their anonymous hallmarks. However, no cryptocurrency is as disparaged for this discreet quality more than the privacy coin. But just what are privacy coins used for? How has crypto criminality changed in …
Bitcoin / Jan. 2, 2020
Texas Regulator Spots Crypto Firm at Fraudulent COVID-19 Charity Claims
The Texas securities regulator has continued its crackdown on cryptocurrency scams, spotting an alleged fraudulent crypto firm that made fake claims about COVID-19 donations. On April 8, the Texas State Securities Board (TSSB) issued an emergency cease and desist order against Ultra Mining, alleging that the crypto mining firm is involved in diverse illicit activities including purportedly fraudulent claims to double investors’ money. As specified in an official TSSB notice, the Texas action was brought jointly with the Alabama Securities Commission to stop the ongoing illegal offering. According to the order, Ultra Mining is promising some “eye-opening returns.” As such, …
Bitcoin / April 8, 2020
New Malware Campaign Spreads Trojans Through Clone Crypto Trading Website
Twitter user and malware researcher Fumik0_ has discovered a new website that spreads cryptocurrency malware, according to a report by Bleeping Computer on June 5. According to the report, the host for transmitting these viruses is a website that imitates the website for Cryptohopper, a website where users can program tools to perform automatic cryptocurrency trading. When the scam site is visited, it reportedly automatically downloads a setup.exe installer, which will infect the computer once it runs. The setup panel will also display the logo of Cryptohopper in another attempt to trick the user. Running the installer is said to …
Bitcoin / June 5, 2019
State Senator Reports to Jail Pending Verdict in Cryptocurrency Fraud Case
A Georgia state senator has reported to jail over allegedly lying about the theft of cryptocurrency mining equipment worth $300,000, The Guardian reported Dec. 27. Republican Michael Williams, who originally reported the alleged theft in May, made a false police report and gave a false statement, court documents claim. Williams had said servers with a value of $300,000, which had been used to mine unnamed cryptocurrencies, had disappeared from his office premises, local daily news outlet Atlanta Journal-Constitution reported Dec. 20. Prosecutors are considering the possibility that the theft never took place, and last month Williams was indicted by grand …
Bitcoin / Jan. 1, 2019