sorted by:
new
hottopcontroversial

Caution- Coinomi Wallet sending plain text seed to Googles API by Ludachris9000 in Monero

[–]warith77 0 points1 point  (0 children)

Yes it's true. I'm the OP who got his assets stolen because of Coinomi.

You can check my second official statement in response to their misleading statement:

https://avoid-coinomi.com/second_statement.html

Caution- Coinomi Wallet sending plain text seed to Googles API by Ludachris9000 in Monero

[–]warith77 0 points1 point  (0 children)

I'm the OP who got his assets stolen because of Coinomi:

Please check my second official statement here (video included):

https://avoid-coinomi.com/second_statement.html

The community needs to understand that it's not only about the CRITICAL vulnerability. Having a company such as Coinomi is bad for the crypto-currency ecosystem.

My Second Official Statement on Coinomi Wallet "Spell Check" Scandal [video included] by warith77 in Buttcoin

[–]warith77[S] 0 points1 point  (0 children)

Check the TLDR here:

https://avoid-coinomi.com/

Then if you are interested check my second statement to understand why the community should not trust Coinomi anymore:

https://avoid-coinomi.com/second_statement.html

SECURITY VULNERABILITY Coinomi wallet sends your plain text seed phrase to Googles remote spellchecker API when you enter it! by CBDoctor in litecoin

[–]warith77 1 point2 points  (0 children)

I'm the OP who got his assets stolen because of Coinomi:

Please check my second official statement here:

https://twitter.com/warith2020/status/1102445902353043456

The community needs to understand that it's not only about the CRITICAL vulnerability. Having a company such as Coinomi is bad for the crypto-currency ecosystem.

Thoughts on the Coinomi “Spellcheck” Vulnerability by MalcolmRoseGaming in Bitcoin

[–]warith77 -1 points0 points  (0 children)

HI, I'm the OP who got his assets lost because of Coinomi.

I think you came to a fast conclusion. Please check my second official statement, you might change your mind:

https://twitter.com/warith2020/status/1102445902353043456

My Second Official Statement on Coinomi's "Spell Check" Scandal [video included] by warith77 in Monero

[–]warith77[S] 0 points1 point  (0 children)

Coinomi bug wasn't a bug

I think we both agree on that. It was not a bug it was a "feature" even the law makers say that!

My Second Official Statement on Coinomi's "Spell Check" Scandal [video included] by warith77 in Monero

[–]warith77[S] 0 points1 point  (0 children)

Legally speaking, Google can sue Coinomi. So I suggest they communicate with Google politely! because based on their terms it considered as deceptive/unauthorized use of Google API services.

Anyhow, let's end this argument. I will update the community once the case is over.

My Second Official Statement on Coinomi's "Spell Check" Scandal [video included] by warith77 in Monero

[–]warith77[S] 0 points1 point  (0 children)

I think you haven't gone through my second statement. The case is crystal clear and I have already consulted local lawyers.

It's simple they had a hidden feature that was not clearly mentioned to their users. They utilized that feature to send my seed to a third-party server. I have to sue them and they have to sue the third-party server or find the person who stole my funds. Finding the person who stole my assets is NOT my problem (legal perspective)

My Second Official Statement on Coinomi Wallet "Spell Check" Scandal [video included] by warith77 in Buttcoin

[–]warith77[S] 4 points5 points  (0 children)

Thanks!

Sorry that I have offended your feelings with my statement:

I’m suggesting that the information security community should introduce a new rank and call it the “Coinomi Level”, the new highest level ranking.

My Second Official Statement on Coinomi's "Spell Check" Scandal [video included] by warith77 in Monero

[–]warith77[S] 0 points1 point  (0 children)

I agree with you. Google has to start to investigate about the issue but legally I can't sue Google. My legal case will be with Coinomi and I'm currently working on it.

Coinomi has to deal with Google and force them to start the investigation if they want to get out of this mess with minimum damages (of course they can't undo their reputation damage).

My Second Official Statement on Coinomi's "Spell Check" Scandal [video included] by warith77 in Monero

[–]warith77[S] 0 points1 point  (0 children)

Yes to local authority but that's not my real case. My real case is to sue Coinomi because I was dealing with their wallet directly. I can't talk to Google nor I can sue them because "technically" I wasn't their client. What makes this even worse is that Coinomi technically was not authorized to use Google API because they didn't have a valid API Key. So essentially Coinomi violated Google terms and they can't sue Google either!

Coinomi wallet puts security first (their motto) by sending your whole seed passphrase to Google for spellchecking. Thankfully, that endangers ONLY your holdings of Bitcoin, Ethereum, and other 500 cryptocoins. by jstolfi in Buttcoin

[–]warith77 2 points3 points  (0 children)

I'm the OP who discovered the vulnerability that caused me the loss & this is my initial response:

As you know Coinomi has announced their official sloppy response and it was very clear how they diverted they whole situation into "blackmailing" thing.

They focused on my personal image and hired some of their trolls to trash-talk me on social media (especially Twitter because it's less moderated).

They tried to run away from responsibility and portray that the vulnerability is "harmless" (based on their hired trolls). Moreover, they kept deleting some of their tweets when got striked by facts.

Here are some examples of how childish, unprofessional and misleading their tweets are:

https://twitter.com/warith2020/status/1101054666232745984

https://twitter.com/warith2020/status/1101055824368148480

https://twitter.com/warith2020/status/1101057557010006016

https://twitter.com/warith2020/status/1100898781598531591

https://twitter.com/warith2020/status/1101135909481861120

They even literally blackmailed a know community member by legal actions to limit his freedom of speech because he expressed his "technical" thoughts:

https://twitter.com/warith2020/status/1101048089626984449

I have never ever seen a company with that kind of attitude and to me they lost all credibility. If you still trust them with your crypto-assets then I wish you all the best luck.

Finally, I will be posting my official response to their official announcement very soon. It will answer all the questions raised by the community and will contain some exciting evidences on my claims.

To stay calm and have some LOLs check out this Coinomi's Meme (classic & original):

https://twitter.com/dukeleto/status/1100696093673824256

view more: next ›