Contact us
Contact us

News

About

Home Crypto News Ex-Ripple CTO Warns of BitLocker Bug, Spike in XRPL Scams

Ex-Ripple CTO Warns of BitLocker Bug, Spike in XRPL Scams

Author Whitewallet Research
Posted: 14 May 2026, 07:45 CET 2 min read

Former Ripple CTO David Schwartz warned May 14 that a Windows BitLocker flaw can bypass full-disk encryption via USB and that fake airdrops and impersonation scams targeting XRPL users have surged.

On May 14, 2026, David Schwartz, former chief technology officer at Ripple, posted warnings about a Windows BitLocker vulnerability and a rise in scams targeting users of the XRP Ledger.

Schwartz posted that the BitLocker issue allows an attacker to bypass Microsoft’s full-disk encryption using a simple USB-based method that avoids normal authentication prompts. He described the flaw as one of the most serious security issues he has seen in years. Independent reviewers who examined the disclosure said the attack path requires little technical effort and resembles a covert access channel more than a standard programming bug.

The vulnerability affects Windows devices protected by BitLocker and applies to anyone who stores private keys, recovery phrases or sensitive files on those machines. Files kept on encrypted consumer devices can be exposed if the exploit is executed, while private keys stored in hardware wallets remain isolated from the operating system.

In a separate post the same day, Schwartz flagged a global increase in fake airdrops and impersonation accounts aimed at XRP Ledger holders. He wrote that scammers often clone verified profiles and prompt users to connect wallets to so-called drainer contracts that immediately sweep funds. ‘Any such posts you see are likely scams,’ he wrote, adding that anyone claiming to be him on Instagram, Telegram or most other platforms is probably an impersonator.

The XRP Ledger’s pseudonymous design and the irreversible nature of on-chain transfers mean funds moved after a connection are not recoverable. Regulators and industry observers have reported more social-engineering campaigns across multiple blockchains in recent months.

Google reported it had intercepted a live AI-built zero-day exploit before it reached wide use; that Python-based attack reportedly bypassed two-factor authentication on a widely used open-source administrative tool. Vendors and security teams are deploying defensive tools, including automated systems designed to detect and mitigate AI-assisted exploit development.

Schwartz urged holders to ignore unsolicited airdrop prompts and to verify official communications independently before connecting any wallet. His public profile in the XRP community, where he uses the handle JoelKatz, has led to wide circulation of his advisories.

BitLocker is Microsoft’s full-disk encryption feature for Windows devices. The XRP Ledger is a public, permissionless ledger for transferring digital assets; transactions on the ledger are irreversible once executed.

Whitewallet Research
Author

Articles by this author

Malware in Pirated PC Games Steals Passwords and Crypto
Malware in Pirated PC Games Steals Passwords and Crypto
jun 8
Armstrong: Energy and Compute, Not Models, Will Cap AI Growth
Armstrong: Energy and Compute, Not Models, Will Cap AI Growth
jun 8
Custodial vs non-custodial wallet
Custodial vs non-custodial wallet
may 30
What is a crypto seed phrase
What is a crypto seed phrase
may 25
Seed phrase vs private key
Seed phrase vs private key
may 21

Latest News

MORE
Adam Back: Bitcoin won’t fire miners; Dashjr readies fork

Adam Back: Bitcoin won’t fire miners; Dashjr readies fork

jun 12 2 min read
Coinbase Lets AI Agents Trade Inside User-Controlled Limits

Coinbase Lets AI Agents Trade Inside User-Controlled Limits

jun 12 2 min read
Hackers Impersonate ChatGPT, Claude and DeepSeek

Hackers Impersonate ChatGPT, Claude and DeepSeek

jun 11 2 min read
Delaware advances bill to ban crypto ATMs after scam surge

Delaware advances bill to ban crypto ATMs after scam surge

jun 11 2 min read
MORE