Hacker News new | past | comments | ask | show | jobs | submit login

Can someone eli5? I couldn’t work out whether this is an attack on exchanges (modifying the client to reuse a key in a way that the exchange doesn’t check for) or something else.

The repeated use of “organization” made me initially think that this was an attack on a “foundation” (tor, eff, Mozilla, etc that kind of thing), but by the end I felt that it was meaning organization==exchange? If so I assume it would be an attack on exchanges prematurely believing a transaction succeeded? But seriously I’m curious what the actual correct interpretation is :)

An attacker could send money that the recipient would think they received but they didn't actually receive it. The attack could be used against anyone but exchanges would be an obviously profitable target.

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact