@inproceedings{c1241c1bb19942caad54faeb77547218,
title = "Towards Understanding Crypto-Asset Risks on Ethereum Caused by Key Leakage on the Internet",
abstract = "In public blockchains, leaking secret keys can cause the permanent loss of crypto assets. It is imperative to understand the illicit activities on blockchains related to leaked keys. This paper presents the first measurement study that uncovers, quantifies, and characterizes the actual misuses of the leaked keys from top websites on the Internet to withdraw assets on Ethereum. By finding key-leaking web pages and joining them with transactions, the study reveals 7.29 ∗ 106/0.59 ∗ 106 USD worth of assets on Ethereum mainnet/Binance Smart Chain (BSC) are withdrawn from 1421/1514 leaked secret keys. Mitigations are proposed to avoid the financial loss caused by leaked keys.",
keywords = "Blockchain, Key leakage, Security",
author = "Yuxuan Zhou and Jiaqi Chen and Yibo Wang and Yuzhe Tang and Guofei Gu",
note = "Publisher Copyright: {\textcopyright} 2024 Copyright held by the owner/author(s).; 33rd ACM Web Conference, WWW 2024 ; Conference date: 13-05-2024 Through 17-05-2024",
year = "2024",
month = may,
day = "13",
doi = "10.1145/3589335.3651573",
language = "English (US)",
series = "WWW 2024 Companion - Companion Proceedings of the ACM Web Conference",
publisher = "Association for Computing Machinery, Inc",
pages = "875--878",
booktitle = "WWW 2024 Companion - Companion Proceedings of the ACM Web Conference",
}