Ex-Ripple CTO warns of BitLocker flaw, XRPL scam surge
Former Ripple CTO David Schwartz warned a Windows BitLocker flaw can bypass full-disk encryption via a USB method and flagged rising fake airdrop and impersonation scams targeting XRPL users.
On May 14, 2026, David Schwartz, former chief technology officer at Ripple, posted two warnings: a newly disclosed Windows BitLocker vulnerability that can bypass full-disk encryption and a surge in scams aimed at XRP Ledger holders.
Schwartz said the BitLocker exploit lets an attacker access a Windows device’s encrypted contents using a simple USB-based method that does not trigger normal authentication prompts. He described the flaw as one of the most serious security issues he has encountered in years. The reported access route requires little technical effort and could expose private keys, wallet recovery phrases and other sensitive files stored on Windows machines.
Security researchers note the mechanism’s apparent ease of use has prompted speculation it behaves more like a backdoor than a conventional bug. An attacker with physical access or a low-complexity infection vector could extract protected data without the expected login steps.
In a separate post the same day, Schwartz issued a scam alert: “SCAM ALERT: There has been a huge escalation lately in airdrop and giveaway scams targeting XRPL users. Anyone claiming to be me on Instagram, Telegram, or almost anywhere else is likely a scammer. Stay safe XRP fam.” He warned that impersonation accounts and cloned profiles are prompting holders to connect wallets to malicious contracts that drain funds.
The two warnings describe overlapping risks: software-level compromises of endpoints can reveal the same private keys that on-chain scams try to steal. Once funds move on a pseudonymous ledger such as the XRP Ledger, there is generally no recourse for retail holders.
Google has reported intercepting a live, AI-built zero-day exploit before it reached mass deployment; that attack bypassed two-factor authentication on a widely used open-source administration tool. Vendors are beginning to deploy defensive AI tools to detect and patch automated exploit generation, but researchers say it remains unclear how quickly endpoint encryption and consumer authentication will adapt.
Security specialists recommend that crypto holders avoid connecting wallets to unknown contracts, verify identities through official channels before responding to airdrop or giveaway prompts, keep backups offline when possible, and use hardware wallets for long-term storage.
Schwartz’s public profile in the XRP community has made his advisories widely circulated. He urged holders to ignore unsolicited airdrop messages and to verify official communications independently before connecting any wallet.








