Text Prediction Feature In Smartphones Guesses the Seed Phrase of Crypto Wallets
The text prediction function in a smartphone is able to remember and issue your passphrase (BIP39) to restore access to a cryptocurrency wallet.
The passphrase, consisting of randomly selected words from the Bitcoin Improvement Protocol (BIP39) list of approximately 2048 words, acts as one of the main layers of protection against unauthorized access to the user’s cryptocurrency assets.
However, an IT specialist from Germany named André reported on the r/CryptoCurrency subreddit that the smartphone is “capable of predicting” the entire original recovery phrase if the first word of the passphrase is entered.
A computer specialist noted that hackers could use this to siphon off a user’s funds by simply typing the first word from the BIP 39 list:
Andre said to Cointelegraph that in several experiments, he found that Google’s GBoard was the least vulnerable to hackers because the program did not predict each word in the correct order. But Microsoft’s Swiftkey keyboard was able to completely predict the original phrase. Samsung Keyboard can also predict words if “Autocorrect” and “Suggest text corrections” are manually enabled.
According to Andre, the best defence against such a hack might be to store crypto assets in a hardware wallet. But it is also necessary to clear the predictive type cache.