More wallet stories in the press today! This time it is Copay, the wallet from BitPay, the US-based bitcoin payments processor that has been compromised.
Versions 5.0.2 through 5.1.0 of the Copay and BitPay wallet apps are the ones affected by the malware that could capture private keys to steal bitcoin and bitcoin cash. But, BitPay also said: “However, the BitPay app was not vulnerable to the malicious code. We are still investigating whether this code vulnerability was ever exploited against Copay users.” BitPay stressed: “Users should assume that private keys on affected wallets may have been compromised, so they should move funds to new wallets (v5.2.0) immediately.”
If you are a BitPay app user, the company advises everyone not to move funds to a new wallet by importing their 12-word backup phrases, since they correspond to “potentially compromised private keys,” adding, “Users should first update their affected wallets (5.0.2–5.1.0) and then send all funds from affected wallets to a brand new wallet on version 5.2.0, using the Send Max feature to initiate transactions of all funds.”
Identity of hacker revealed