Cryptonight News

Find out what's happening in cryptonote community

The binaries of the Monero CLI were compromised for a short time

Wednesday, November 20, 2019 | Monero

Yesterday a GitHub issue about mismatching hashes coming from this website was opened. A quick investigation found that the binaries of the CLI wallet had been compromised and a malicious version was being served.

The problem was immediately fixed, which means the compromised files were online for a very short amount of time. The binaries are now served from another, safe, source. See the reddit post by core team member binaryfate.

It's strongly recommended to anyone who downloaded the CLI wallet from Getmonero.org website between Monday 18th 2:30 AM UTC and 4:30 PM UTC, to check the hashes of their binaries. If they don't match the official ones, delete the files and download them again. Do not run the compromised binaries for any reason.

There are two guides available to help users check the authenticity of their binaries: Verify binaries on Windows (beginner) and Verify binaries on Linux, Mac, or Windows command line (advanced). Signed hashes can be found here: https://getmonero.org/downloads/hashes.txt.

The situation is being investigated and updates will be provided soon.

Source: The Monero community

CRYPTUNIT service is provided for free. Site contains opinion for informational purposes only and does not constitute investment advice.

We do not sell coins! If you want to buy some coins you can do it here. You're looking for more hashing power or You want just to try mining? You can do it here.

Calculate how profitable it is to mine all other coins on various mining algos on WhatToMine.com

Always do your own research! Try to analyse the exchanges data, and possibility that you can actually sell mined coins. Some coins might be very high in the ranks, but with zero buy orders and very small trading volume.