Compartilhe este artigo
Broken Privacy? The Allegations Against Monero Are Old News
Monero devs think a re-released paper is causing unnecessary stir, but also believe it will help move the crypto's privacy tech forward.
Nothing spreads faster than FUD.
Case in point, a new research paper has sparked panic across the monero community in that it alleges the privacy-oriented cryptocurrency is not so private. Yet, while the findings are genuine, the media aftermath ignores that much of the research in question was originally published in 2017, and the vulnerability it highlights was resolved with monero's September 2017 hard fork upgrade.
STORY CONTINUES BELOW
Não perca outra história.Inscreva-se na Newsletter Crypto Daybook Americas hoje. Ver Todas as Newsletters
Titled "An Empirical Analysis of Linkability in the Monero Blockchain," the 2017 paper, written by Andrew Miller, Malte Moser, Kevin Lee and Arvind Narayanan, highlighted how ring signatures could cause types of linkability that could, in turn, cause users to be identified. According to the paper, up to 62% of transactions up until February 2017 were linkable.
Accompanied by a website that allowed users to check whether their transactions could be linked, the release of the original paper sent shock waves throughout the community.
The paper was heavily scrutinized by the monero team, who wrote that the study came with some significant oversights, including a failure to mention that many of the exploits had already been documented.
But the damage had been done, and so monero developers moved to make RingCT, a confidential signatures technology, mandatory (where they were optional before) through the September hard fork.
Now, in the newly released version of the paper – which at least speaks to monero's work to secure its systems – authored by a larger team, the findings related to the loss of privacy remain unchanged, even though the vulnerability has since been resolved.
“The monero project would like to remind everyone that the largest vulnerability in this paper was noted over two years before, was mitigated over a year before and was nearly completely resolved before the first version of the paper was published,”Justin Ehrenhofer, a developer that goes by the name SamsungGalaxyPlayer, wrote in a statement.
Yet, the news has spread like wild fire across social media and mainstream media outlets, this week, leading to bitter in-fighting on many privacy-focussed channels.
A post on a dedicated forum on social media site Hacker News called the team “irresponsible and reckless,” citing the failure of monero to educate its users on the privacy threats to the cryptocurrency. Articles in Wired, Naked Security, Slashdot and on security researcher Bruce Schneier's blog echoed similar sentiments, warning users that monero comes with dangerous security risks, a traceability that could extend into future transactions as well.
Sarang Noether, a pseudonymous cryptographer at Monero Research Lab, told CoinDesk:
“They don't seem to acknowledge that there was an earlier version of this at all.”
Misplaced timelines
What is particularly frustrating to monero developers about the update to the paper is that while it depicts the cryptocurrency in a more positive light, the timelines its using to prove the past linkability problem don't explain the full story.
For instance, because the most recent analysis only takes into account monero since April of last year, it doesn't take into consideration the full effectiveness of RingCT, which monero developers said almost completely reduced the instance of linked transactions. And it's upcoming hard fork is likely to eliminate those instances altogether.
Plus, in a statement, monero developers emphasized that the algorithm deployed by the paper's research team was outdated, an oversight that could have falsified certain results.
Speaking to the misleading nature of the paper, monero core developer Gingeropolous wrote:
”[Article] Should read: Cryptonote is less untraceable than it seems, so monero has been altruistically making improvements.’”
Yet, even with less technical members of the cryptocurrency community worried, several members of the Monero Research Lab said the paper was better than the original in that it mentioned the adoption of RingCT.
“It's a much better paper now than it was, it actually mentions RingCT, our confidential transaction scheme. The graphs tell a pretty fair story, and it's obvious that monero's privacy is improving just by eyeballing the paper,” Surae Noether, monero mathematician, said.
New mitigations
And on top of that, the paper comes with some fresh insights, namely an analysis of monero's public mining pools.
In response to last year's paper, the monero team recommended that more research be done into the identification of transactions originating from public mining pools. And in this update of the paper, the authors moved to provide that research.
“This is the first time I am aware of that the proportion of pool transactions have been estimated,” Ehrenhofer said.
The paper also includes a discussion on monero’s usage in crime, particularly its use for payments on darknet market Alphabay. A source told CoinDesk this research was intended to emphasize the importance of privacy robustness for sensitive transactions.
As such, the paper concludes with a number of recommendations for improving monero going forward.
For one, a new algorithm is suggested that could reinforce the cryptocurrency’s ring signature scheme. There’s also a new “mixin” method for sampling random inputs in ring signatures. Further methods of instilling the utmost privacy include avoiding payouts from public pools and more carefully informing users that transactions prior to early 2017 are vulnerable to tracing analysis.
Indeed, the new research is useful for the cryptocurrency.
"It's important to keep in mind that this isn't some issue on which we're throwing up our hands and saying 'oh well, this is life from now on,'" Sarang Noether wrote on reddit. "I personally look forward to the day when we have the math to move past ring signatures altogether to a more complete sender anonymity set."
Echoing this, Ehrenhofer wrote in a statement:
"The monero project is thankful to have many of the world's top researchers evaluating the effectiveness of monero's ring signatures."
Newspapers image via Shutterstock
Mais para você
O que saber:
- As of October 2025, GoPlus has generated $4.7M in total revenue across its product lines. The GoPlus App is the primary revenue driver, contributing $2.5M (approx. 53%), followed by the SafeToken Protocol at $1.7M.
- GoPlus Intelligence's Token Security API averaged 717 million monthly calls year-to-date in 2025 , with a peak of nearly 1 billion calls in February 2025. Total blockchain-level requests, including transaction simulations, averaged an additional 350 million per month.
- Since its January 2025 launch , the $GPS token has registered over $5B in total spot volume and $10B in derivatives volume in 2025. Monthly spot volume peaked in March 2025 at over $1.1B , while derivatives volume peaked the same month at over $4B.
Mais para você
XRP Faces Downside Risk as Social Sentiment Turns Wildly Negative
The turn in crowd mood comes after a two-month slide of roughly 31%, leaving the token vulnerable to further downside if risk appetite weakens across majors.
O que saber:
- XRP's price approached the $2 mark as social sentiment around the token turned sharply negative, according to Santiment data.
- The token has experienced a 31% decline over two months, making it vulnerable to further losses if market risk appetite weakens.
- Santiment's sentiment model indicates XRP is in a 'fear zone,' where negative commentary significantly outweighs positive talk, potentially influencing market positioning.
Top Stories
