Bitcoin Forum

AT Mon, May 25, 2015 at 8:42 PM I have received a mail from [Suspicious link removed]. I regret to have to inform you that
some information about your account was obtained by an attacker who
successfully compromised the bitcointalk.org server. The following
information about your account was likely leaked:
 - Email address
 - Password hash
 - Last-used IP address and registration IP address
 - Secret question and a basic (not brute-force-resistant) hash of your
 secret answer
 - Various settings

You should immediately change your forum password and delete or change
your secret question. To do this, log into the forum, click "profile",
and then go to "account related settings".

If you used the same password on bitcointalk.org as on other sites, then
you should also immediately change your password on those other sites.
Also, if you had a secret question set, then you should assume that the
attacker now knows the answer to your secret question.

Your password was salted and hashed using sha256crypt with 7500 rounds.
This will slow down anyone trying to recover your password, but it will
not completely prevent it unless your password was extremely strong.

While nothing can ever be ruled out in these sorts of situations, I do
not believe that the attacker was able to collect any forum personal
messages.

I apologize for the inconvenience and for any trouble that this may cause.
-----BEGIN PGP SIGNATURE-----

iF4EAREIAAYFAlVhiGIACgkQxlVWk9q1keeUmgEAhGi8pTghxISo1feeXkUMhW3a
uKxLeOOkTQR5Zh7aGKoBAMEvYsGEBGt3hzInIh+k43XJjGYywSiPAal1KI7Arfs0
=bvuI
-----END PGP SIGNATURE-----

I am a bit confused because the links would take me to http://www.google.com/url?q=http%3A%2F%2Fbitcointalk.org&sa=D&sntz=1&usg=AFQjCNHPB6utuCv1w0kwFLQvdDAmz60Lpg

where in bitcointalk has a link as https

Can someone please confirm whether this is genuine or not because if this is genuine then I should change my password else this is some kind of trick

hey, check https://bitcointalk.org/index.php?topic=1070136.0

it's an invalid pgp signature, probably fake.

Yes, Even I doubted that, but then I searched google and there are links to bitcointalk forum where people are saying that bitcointalk forum was again hacked

However on a safer side I just changed my details by coming directly to the page and have avoided clicking the link which came in the email

You did the right thing. Most users here recieved that kind of email. Safer way is just visit the site directly and avoid clicling links in the email

Just changed my password and security question. I also received the email few days back. I'm using my phone so I did not click on the link. When I'm back using computer today.. I just went to Bitcointalk.org as normal. Why would I log into my email and click the link? After reading this thread I feel safer as I did not click on any suspicious link.

I never reply to any such messages :) , and i hope people are smart enough to avoid these :)

Honestly I would not use the security question.  I would have a email that is secure possible 2fa access that account info is sent to.  It would be harder to steal account this way.

Also highly suggest staking a BTC account in Meta in case you ever do lose account.   Everyone after this really should stake a address if they have not.

I think bitcointalk admin should take some steps and post a news also with announcements of the same so that when people search google they get appropriate new, because when I searched for the same I get links where people are talking that the forum is compromised.

BTW- we all members are more smarter than those creepy hackers  :P - we will never click the links sent over email rather would come to the forum directly

As far as forum's nothing compares to here.  There just is not anything.

If in future you need it check out: http://www.reddit.com/r/Bitcoin/   .  I watched that during the weekend and was able to get a little info by reading, to tide me over till I got the email everyone got.  But hopefully you will never need this again because of security reasons.  But reddit bitcoin has a decent amount of people.

as long as people refuse to use common sense and not click on links, hackers will continue to have success. newbies don't know how to secure wallets properly, so if they indeed click on a bad link they are burned.

Ok guys just found this on Coin Desk
Published on May 22, 2015 at 07:21 BST

I think you all should read it

Here is the link http://www.coindesk.com/bitcointalk-server-compromised/

I suggest going over to Meta - https://bitcointalk.org/index.php?topic=1067985.0

It has a longer and more current timeline.  It goes more in depth, but I don't think we know yet for sure full extent.  Time will tell this.

I too just got one of these messages, and like others have said in this and the other thread, no link in the email to click, i just came here directly from the shortcut i have saved with my login details, and updated my password, i didn't set a security question so knew i didn''t need to do anything with that.

Seems a bit stupid if you send out a phishing email, with no phishing link in it  ::)  ???

That's because it's not a phishing email.

Could someone please confirm that the forum hasn't been hacked and that someone isn't capturing our new passwords. I don't use this password anywhere else, but I still would like to know.

And where is the valid bitcointalk.org pgp signature?

Go to meta and ask as far as new passwords.  It should not be happening.  It all should be past information whoever got.

But a guarantee I don't think there there is one.

The forum database was hacked, but it's back in safe hands now apparently. Email addresses and password hashes were apparently leaked but not the actual passwords (though they could be cracked). I'd still advise caution but I think theymos will have everything sorted. If you don;t use your password or details elsewhere I'm sure you'll be ok.

I received such email even from an email account that is not linked to any bitcointalk account ???


(haven't verified the signature, though)


something strange is happening/about to happens