Bitcoin 
Ethereum 
Tether 
BNB 
USDC 
XRP 
Solana 
TRON 
Lido Staked Ether 
Figure Heloc 
Hyperliquid 
Dogecoin 
Rain 
USDS 
LEO Token 
Wrapped stETH 
Zcash 
LAB 
Wrapped Bitcoin 
Stellar 
Binance Bridged USDT (BNB Smart Chain) 
Monero 
Wrapped Beacon ETH 
Canton 
WhiteBIT Coin 
Cardano 
Wrapped eETH 
Chainlink 
USD1 
Dai 
sUSDS 
Ethena USDe 
Gram (prev. Toncoin) 
Coinbase Wrapped BTC 
Bitcoin Cash 
Litecoin 
Circle USYC 
WETH 
Hedera 
Global Dollar 
Avalanche 
USDT0 
Sui 
PayPal USD 
Cronos 
Shiba Inu 
Tether Gold 
NEAR Protocol 
BlackRock USD Institutional Digital Liquidity Fund 
Ethena Staked USDe 
Ondo US Dollar Yield 
Bittensor 
PAX Gold 
Uniswap 
World Liberty Financial 
Aster 
Worldcoin 
OKB 
Ripple USD 
Ondo 
Little Pepe 
HTX DAO 
syrupUSDC 
Mantle 
Polkadot 
Aave 
Falcon USD 
Pi Network 
USDD 
BFUSD 
Internet Computer 
Sky 
Bitget Token 
Morpho 
Ethereum Classic 
United Stables 
MemeCore 
DeXe 
Jupiter Perpetuals Liquidity Provider Token 
Pepe 
Quant 
Blockchain Capital 
Spiko EU T-Bills Money Market Fund 
KuCoin 
Jito Staked SOL 
Stable 
Janus Henderson Anemoy Treasury Fund 
Kelp DAO Restaked ETH 
USDGO 
Cosmos Hub 
Binance-Peg WETH 
Render 
Rocket Pool ETH 
Invesco Short Duration US Government Securities Fund 
Kaspa 
Binance Bridged USDC (BNB Smart Chain) 
Jupiter 
POL (ex-MATIC) 
Wrapped BNB 
Audiera 
Function FBTC 
Algorand 
Ethena 
USDtb 
NEXO 
币安人生 (BinanceLife) 
syrupUSDT 
Beldex 
JUST 
Gate 
Binance Staked SOL 
Janus Henderson Anemoy AAA CLO Fund 
Venice Token 
Spiko Amundi Overnight Swap Fund (EUR) 
GHO 
ADI 
Flare 
NEW X CEO IS BACK 
Polygon Bridged USDC (Polygon PoS) 
Filecoin 
Solv Protocol BTC 
YLDS 
Lombard Staked BTC 
XDC Network 
Usual USD 
Pump.fun 
clBTC 
Provenance Blockchain 
Midnight 
USX 
Aptos 
TrueUSD 
Injective 
StakeWise Staked ETH 
A7A5 
Arbitrum 
Kinetiq Staked HYPE 
Aerodrome Finance 
tBTC 
Lighter 
Dash 
PancakeSwap 
EURC 
Ondo Short-Term U.S. Government Bond Fund 
Official Trump 
PRIME 
c8ntinuum 
Jito 
Mantle Staked Ether 
Artificial Superintelligence Alliance 
Pudgy Penguins 
Polygon PoS Bridged DAI (Polygon POS) 
VeChain 
Resolv wstUSR 
SkyAI 
COCA 
Bonk 
Sei 
Celestia 
Doge Strategy 
Liquid Staked ETH 
Terra Luna Classic 
Arbitrum Bridged WBTC (Arbitrum One) 
First Digital USD 
Virtuals Protocol 
Ether.fi 
The9bit 
Kite 
Wrapped Flare 
Sun Token 
Stacks 
L2 Standard Bridged WETH (Base) 
Kinesis Gold 
Steakhouse USDC Morpho Vault 
SPX6900 
Grass 
Curve DAO 
apxUSD 
Velvet 
Binance-Peg XRP 
Gnosis 
Ether.Fi Liquid ETH 
ETHGas 
Renzo Restaked ETH 
Plasma 
Pyth Network 
Noon 
Royal Dollar 
sBTC 
BitTorrent 
AINFT 
Legacy Frax Dollar 
Jupiter Staked SOL 
BUILDon 
Savings USDD 
Olympus 
Tezos 
Zebec Network 
Marinade Staked SOL 
MegaUSD 
A Bitcoin user lost funds after sending cryptocurrency to a compromised wallet that used a transaction identifier from a coinbase block reward as its private key.
- A Bitcoin user sent 0.84 BTC to a compromised wallet whose private key was derived from a block 924,982 coinbase transaction identifier, exposing it to theft.
- Automated programs monitoring the mempool detected the deposit and competed via replace-by-fee transactions, sometimes paying nearly 100% of the value in fees to claim the funds.
- Using predictable or publicly available data—like transaction IDs or common word patterns—for private keys enables immediate exploitation, highlighting the critical importance of true entropy in key generation.
The transaction identifier of the Coinbase from block 924,982 served as the private key for the wallet, creating a security vulnerability that triggered automated bot activity, according to cryptocurrency publication Protos.
The incident prompted automated computer programs connected to Bitcoin’s memory pool, or mempool, of pending transactions to compete for the funds. These bots automatically detect deposits into compromised wallets and broadcast replace-by-fee transactions to outbid competing programs’ fees to miners for withdrawal transactions.
In the reported instance, 0.84 BTC was sent and lost to an address with a non-random private key derived from a block’s coinbase identifier, according to blockchain data.
The automated systems employ replace-by-fee mechanisms to incrementally increase transaction fees in competition with other bots. In some cases, child transactions pay up to 99.9% of the transaction value in fees, according to observers monitoring such activity.
Private keys represent the most critical security element for protecting bitcoin holdings. When a private key is exposed or derived from common data patterns, theft typically occurs immediately, according to cryptocurrency security experts.
Many compromised wallets with non-random private keys utilize seed phrases with predictable patterns, including repeated words such as “password,” “bitcoin,” or “abandon,” according to security researchers. Any non-random pattern lacking true entropy can expose a private key and enable automated systems to drain deposits to the corresponding public key.
The incident demonstrates that non-randomness can extend beyond simple word patterns to include public information recorded on the Bitcoin ledger, such as transaction identifiers of block rewards. Failure to introduce mechanical entropy when generating private keys can enable brute-force attacks and compromise fund security, according to cryptography experts.
Hashing a private key via a transaction identifier does not provide sufficient entropy for secure private key storage, the incident illustrates. Miners and other mempool observers can monitor transaction identifiers for non-randomness and attempt to broadcast theft transactions using exposed private keys, according to blockchain security analysts.
