Crypto investor Claims He Got Stolen with $70K In Coinomi [Solved]

Crypto investor Claims He Got Stolen with $70K In Coinomi [Solved]

Ready to join our tribe?

We respect your email privacy

Subscribe now to recieve exclusive updates and offers!

Cryptocurrency investor Warith Al Mawali claimed that he was the victim of a theft as he lost $70K in life savings due to a Coinomi security flaw, according to a Reddit post that he himself published.

As always, there are two sides to every story, and it would appear that the side of the Coinomi company is the truthful one. One party says that Al Mawali’s funds disappeared as the Coinomi’s desktop wallet had a backdoor that sent passphrase information to Google; on the other side, the company affirmed it found an issue, but it was solved quickly, and there is no evidence that anything was stolen. George Kimionis, the CEO of Coinomi, tweeted that the whole situation was planned by the extortionist in order to try and scam the company out of $70K.

Coinomi - Update

The story went public when Al Mawali published blog posts in Reddit and Bitcointalk saying that he was disclosing all information because the crypto wallet allegedly refused to take responsibility.

Warith claimed to have lost funds due to a Coinomi bug, however, this was proved to be completely untrue by a reputable chainalysis firm, the results of which were published a month after the event. The firm, CipherBlade, is a trusted Blockchain investigation company that conducts thorough investigations in order to make sure their clients remain secure on the web.

Coinomi did pay CipherBlade to carry out their investigations regarding this allegation. However, CipherBlade did state in their report that had they found evidence that Coinomi handled the situation unprofessionally, or that they were actually responsible, CipherBlade would have had no qualms in publishing their findings stating such facts. Furthermore, Coinomi offered to make use of their own resources to help Al Maawali with blockchain forensics which is a process that requires a lot of time, and a lot of money.

Al Malawi claimed that the platform contains a backdoor, his “passphrase was compromised, and $60K-$70K worth of cryptocurrency was stolen because of Coinomi wallet and how the wallet handled my passphrase.”
The problem with the passphrase is that once an investor enters his passphrase to the textbox, it is automatically inspected remotely by spellcheck through googleapis.com. It is “basically an HTML file ran by a Chromium browser component,” Al Malawi said.

He affirmed that the person who got access to the leaked private key used it to steal around 17 Bitcoins units.

However, in a press release published later, the company said the seed phrase was not being transmitted in plain text but encapsulated inside an SSL HTTPS protocol with Google as the unique recipient.

In Coinomi’s official reply, they also stated that the spell-check requests were not processed, cached or stored as it returned an error as they were flagged as “Bad Request” by Google “as they were badly formed (did not contain a valid Google API key) and never actually processed them.”

Al Malawi also built a dedicated website called Avoid-Coinomi.com where he also published videos explaining the flaws and the whole story.
One of the videos posted on AvoidCoinomi tries to demonstrate the vulnerability, and it looks that the option to decrypt HTTPS is selected in the software.

Finally, Coinomi affirmed that Al Malawi was blackmailing them. Coinomi’s COO Angelos Leoussis commented on the exchange’s official Telegram group that Al Malawi kept “threatening, swearing, and blackmailing us for insane amounts.” The amount claimed by Al Malawi was a ransom of 17BTC.

This allegation has now been solved, and Coinomi holds that no further action is required from any of its users, besides the requirement to update to the last version. Coinomi states that apart from Al Malawi’s false allegation, the company has seen zero reports of hacked desktop wallets.

Recently Similar News

Latest Guides

Latest News

Cryptocurrency,Exchange Platforms

Cryptimi Announces Launch of Additional Platform for German Speaking Users

 At Cryptimi, we have announced the launch of our newest news platform in one of the largest languages globally, German. We are very pleased to announce the release of our world class Cryptimi platform in German! Now, all german speakers will be able to access all of the traditional media and features they would receive […]

27 October, 2020
Binance,Blockchain,CoinMarketCap,Cryptocurrency

CoinMarketCap Launches Latest Earn Campaign With Helium

CoinMarketCap, the largest online market cap aggregator, has launched their latest Learn and Earn campaign with Helium. CoinMarketCap has launched their latest iteration of their Learn and Earn program in partnership with Helium. Learn and Earn is a program launched by CoinMarketCap that allows cryptocurrency users to learn about new cryptocurrencies and earn some of […]

25 October, 2020
Binance,Bitcoin,Cryptocurrency,Exchange Platforms

You Can Now Spend BNB and BUSD With All Shopify Merchants

Shopify, the all-in-one online commerce website, now allows all of its merchants to accept Binance’s tokens BNB and BUSD via Alchemy Pay. Alchemy Pay, a worldwide cryptocurrency payment solution provider has worked with Binance and Shopify to integrate BNB and BUSD for payments to all Shopify merchants. Shopify is the worlds largest e-commerce platform with […]

23 October, 2020
Cryptocurrency,Gaming,Kraken,Trading

Users Can Now Claim and Stake FLOW Token on Kraken

Kraken, the online cryptocurrency exchange, has implemented the ability for their users to claim and stake their FLOW tokens on the Kraken platform. Kraken, one of the largest online cryptocurrency trading platforms, has implemented the option for users to claim their FLOW tokens, as well as stake them on the Kraken platform. To claim your FLOW, […]

23 October, 2020
Bitcoin,Casino,Cryptocurrency,Gambling

Bao Casino Offers a Variety of Halloween Specials

Bao Casino, the online cryptocurrency based casino, has created a variety of giveaways and programs to celebrate Holloween. Bao Casino, the online cryptocurrency gambling site and casino, is hosting a variety of Halloween themed giveaways and events to celebrate the fast approaching holiday. One of the giveaways is the Trick or Treat from Spinomenal event, […]

23 October, 2020
Bitcoin,Cryptocurrency,Ethereum,Litecoin

Bitcoin Price Continues to Rise as PayPal Integrates Cryptocurrencies

PayPal, one of the largest payment processing companies in the world, has recently decided to integrate Bitcoin. PayPal, the online payment processing company co-founded by Elon Musk, has decided to allow their users to buy and sell cryptocurrencies. PayPal will be launching their own cryptocurrency application and service. After many years of seemingly rejecting the […]

23 October, 2020
Cryptocurrency

Cryptimi Announces Launch of German Language Platform

Here at Cryptimi, we are launching our newest news site in another language, in German. At Cryptimi, we work towards providing our users with the most up to date news and the highest qualify guides and exchanges. Due to the continued growth of our platform, we are happy to announce our newest Cryptimi offering, the […]

21 October, 2020
Changelly,Cryptocurrency,Trading

Changelly Helps Users Discover Where They Can Store Polkadot (DOT) Tokens

The Changelly blog has written an article helping their users determine the best places for them to store their DOT tokens. Changelly, the online cryptocurrency exchange, has created a new blog post to help users figure out where the best place to store their Polkadot (DOT) tokens. Polkadot (DOT) was created  by one of Ethereum’s […]

19 October, 2020