Ripple Ex-CTO Sounds Alarm Over ‘One of the Worst Security Flaws’ He’s Ever Seen

Ripple’s former chief know-how officer, David Schwartz, issued a pointy public warning this week over a newly surfaced Windows BitLocker vulnerability, describing it as one of the most critical safety flaws he has encountered in years.

His remarks landed alongside a separate alert a couple of wave of scams concentrating on XRP Ledger customers, signaling rising strain on each client machine safety and on-chain belief.

Schwartz Issues Stark Security Warning Over BitLocker Flaw

Schwartz stated the exploit permits attackers to bypass Microsoft’s full-disk encryption utilizing a primary USB-based technique. The lack of authentication prompts has fueled hypothesis that the mechanism resembles a backdoor greater than a standard bug, given how little technical effort the reported entry path requires.

The flaw issues for anybody storing delicate materials on a Windows machine, together with personal keys, restoration phrases, or work paperwork. Schwartz’s prior commentary on protocol-level security and incentive design has drawn extensive business consideration, lending weight to his evaluation of the BitLocker concern.

The disclosure provides to broader concern about software-level assaults transferring into crypto-adjacent territory, the place personal key publicity can set off direct, irreversible loss for retail holders counting on disk encryption to guard chilly storage backups.

Ripple CTO Extends Alert Over XRPL Scam Surge

In a separate submit, Schwartz flagged a pointy rise in rip-off reviews concentrating on XRPL customers. Fake airdrops and impersonation accounts are the commonest patterns. Impersonators typically clone verified profiles and immediate holders to attach wallets to drainer contracts.

The development mirrors a broader rise in scams flagged by monetary regulators in latest months. For XRP holders, the danger is amplified by the ledger’s pseudonymous nature and the absence of recourse as soon as funds transfer.

Schwartz, whose public profile within the XRP ecosystem makes his advisories extensively circulated, urged customers to disregard unsolicited airdrop prompts and confirm official communications independently earlier than connecting any pockets.

AI-Built Exploits Add to Security Warning

The warnings arrive as Google stated it had intercepted a dwell AI-built zero-day exploit earlier than mass deployment. The Python-based assault reportedly bypassed two-factor authentication on a extensively used open-source admin device.

Defensive AI techniques reminiscent of Big Sleep and CodeMender are actually being rolled out in response. Whether endpoint encryption and client authentication can preserve tempo with that shift is the open query.

The submit Ripple Ex-CTO Sounds Alarm Over ‘One of the Worst Security Flaws’ He’s Ever Seen appeared first on BeInCrypto.