I'm not too sure if this belongs on security.SE, so feel free to close or migrate to a different SE.
It seems that many ransomwares use Bitcoin as currency (for good reason), and tell you to send X BTC to address A. In order to verify that you have made a payment, I believe they will ask for your transaction ID.
However, as far as I know, all transaction IDs are publicly available. Thus, is it possible that I could just stay on blockchain.info and look at payments to address A, wait until a new one pops up, and immediately type that into my own instance of the ransomware? The malware should not have any way of linking who owns what wallet, so is it possible that someone else might make a payment and I enter the transaction ID first, effectively "stealing" their transaction, using it to pay for my own infection?
I could be completely wrong about this, I don't know much about bitcoin. I also understand that ransomware writers would not be bothered by this, since either way, they're receiving the money.
EDIT: I thought of a way ransomware writers might use to get around this: make a separate bitcoin address for each victim. However, this seems like extra work on the ransomware writer's side, so I'm not sure if many ransomwares do this.