Bitcoin Forum

I wish I had read the post about bitmarket.eu before I started selling there. I've seen people bringing up the same problems a year ago and apparently the situation is still the same.

Incredibly annoying.

could you point out which problems?

i read this forum a lot, but seems i missed out on this

i had some problems with bitmarket. Mostly scm buyers. But today apparently i got cracked account. No answer from admin till that. Lost more than 3 btc. Cant think what to do.

can anybody know thread or admin for bitmarket here in bitcoin talk?

bitmarket admin has answered me even today, but not after this situation. I just cant understand if it was done from my pc, or someone just cracked my account.

I lost 1 BTC today from Bitmarket.eu. Somebody had changed the withdrawal address. There should be an email confirmation for the change of address, so it was something deeper than simply getting my password.

So far I have good experience from Bitmarket, they have always replied to my issues. But this does not look good.

did you lost exact 1btc? My account has been cleaned emty.

Yes, well, I only had 1 BTC there. The thief even left the withdrawal address:

1GRBm7iQMGsgWjHPSTcGBMTzQwhTWyPZMh

It looks a bit odd, because the attack was done somehow "from the inside" (because of the email confirmation that would have happened normally), but they did not manage to cancel a pending transaction. Leaving the withdrawal address is also a little amateurish, though it does not really help me.

On the plus side, this is why I only keep a minimum of BTC available on such exchanges at a time.

Did admin answered you recently? Your case seems very odd.

No, it's been several hours since my email now. I would also expect some general notice, given that there have been multiple victims on the same day.

Is there any bitmarket admin in this forum?

still no answer from admins :( Long friday night?  ;D

Hello,

I am aware of the issue, and will respond to affected people briefly. It seems that someone took one of dumped password list from recent leaks from Yahoo, LinkedIn and others and compromised several Bitmarket accounts that reused these passwords. I'll get back to you when I have more information.

Edit: Withdrawals are processed manually until we're sure that everyone's funds are safe.

I have only good experiences with Bitmarket.eu, but am getting a bit more hesitant to use it after reading this. I've completed > 5 transactions with no problems whatsoever!

So There must be some chance to get coins back? details about my transaction sent to your pm

I did not confirmed any of this transaction, nor do i have placed offer. The damn crack has even changed my country and putted away donation to get every last coin i had in that moment.
Please update us with information. Also it would be great if there was oficial bitmarket thread.

The attacker used TOR (anonymous) network, so even though I have the IPs, their not traceable. Only a few users were affected, since most people have unique passwords for their accounts.

Unfortunately there isn't a way to get the coins back, because attacker managed to withdraw them before I was notified about this. The withdrawal lock is in place to secure any further frauds, because I have no way to know if anyone's else account is compromised. I could force a password reset on everyone, but that would be highly annoying to everyone that have good password practices.

So what you are saying, that it can happen any time, and you can do nothing? How we can trust the service?

It can happen only if Bitmarket user re-uses his password on different sites, and those sites get compromised. Recently there were few big leaks - LinkedIn, Last.fm, Yahoo all got hacked and there were few million username/password pairs floating on the Internet.

You can trust the service, but you have to play secure - use a strong (random, long), unique (not used elsewhere) password. Then it's not possible for anyone to crack your account.

These rules do not apply only to BitMarket.eu. If you used this password on another site, there's a possibility that you will get hacked on other services. So please change it not only here, but everywhere you used it.

ok, i understand.

Another thing, what i noticed today. Why i cant see anything in bitmarket/funds page, it just opens emty? Is it safe to send BTC to bitmarket walet?

Just to clarify one thing: there was no email confirmation for the change of withdrawal address, because I had left it empty. This is apparently a feature -- people are expected to enter one initially, when they register. (Some exchanges force you to enter one upon registration, it might be a good policy to adopt here as well.) Anyway, if your withdrawal address is empty, do enter one now.

It is, the page was just unavailable due to my error. Already fixed that.

Is Bitmarket down right now or is it just me?

Its working now.

Good to hear. Perhaps I clicked refresh a couple times too often? lol

I have lost today 3.459 BTC again in this site. Someone has cracked it again.

I guess it is goodbye bitmarket for me.

22480    09.10.2012, 12:47:58    CoonBreakair    3.459 BTC    10 EUR    34.59 EUR    Confirmed

today bitmarket.eu is at 18 EUR/BTC, seems strange


Transaction log (last 100)
Date   Amount   Currency   Price per 1 BTC   Total
09.10.2012, 13:18:08   18.5373431 BTC   EUR   18 EUR   333.67 EUR
09.10.2012, 13:12:52   19.79897394 BTC   EUR   15 EUR   296.98 EUR
09.10.2012, 13:12:37   11.270253 BTC   EUR   15 EUR   169.05 EUR
09.10.2012, 13:11:47   10 BTC   EUR   10 EUR   100 EUR
09.10.2012, 13:08:15   1.01974 BTC   EUR   15 EUR   15.29 EUR
09.10.2012, 13:04:32   10 BTC   EUR   10 EUR   100 EUR
09.10.2012, 12:58:47   7.710007 BTC   EUR   11 EUR   84.81 EUR
09.10.2012, 12:58:27   2.439993 BTC   EUR   12 EUR   29.27 EUR
09.10.2012, 12:55:58   3.601007 BTC   EUR   12 EUR   43.21 EUR
09.10.2012, 12:55:58   2.6 BTC   EUR   13 EUR   33.8 EUR
09.10.2012, 12:52:38   2.4 BTC   EUR   12 EUR   28.8 EUR
09.10.2012, 12:48:08   10.5 BTC   EUR   12 EUR   126 EUR
09.10.2012, 12:47:58   3.459 BTC   EUR   10 EUR   34.59 EUR
09.10.2012, 12:43:29   10 BTC   EUR   10 EUR   100 EUR
09.10.2012, 12:32:35   25.215 BTC   EUR   10 EUR   252.15 EUR
09.10.2012, 12:28:53   8 BTC   EUR   10 EUR   80 EUR
09.10.2012, 12:28:26   7 BTC   EUR   9.8 EUR   68.6 EUR

Hi.

My account was hacked today for 18.5373431 btc.

Somebody have change selling price in my order from 11€ to 18€ then sold and confirm transaction!!!

Please stop transaction number: 22492

Yes, it is very strange activity and i presume that it is hacker who did this, my account has been cracked, but i did all i could to from las time to prevent this, changed passwords everywere, scanned all afected PC's.

So this time it Must be Bitmarkets fault, so i would like to know official thoughts of admin. Interesting that he is not answering just like the last time it happened, admin answered after a day.

So will bitmarket take some responsability on themselves, or it is just "your fault" coments from their side again. What you think people?

I guess they cant, it is instant transaction, my account has been cracked today, someone placed order and sold all my coins aswell.

Sorry for your loss, it is even bigger than mine. Please tell, was your account been cracked recently in bitmarket, did you use safe passwords? Thanks.

If the answer is no on this question, than it is really big security issue in bitmarket, or they do it by themselves.

first time since 1 year i was hacked. My password is not very strong.

So you were hacked erlier?

no no, this is a first time in my life)))

Strange activity is continuing:

09.10.2012, 13:52:58    15.04706641 BTC    EUR    9.9 EUR    148.96 EUR
09.10.2012, 13:47:16    10 BTC    EUR    10.2 EUR    102 EUR
09.10.2012, 13:45:22    45.47485628 BTC    EUR    13 EUR    591.17 EUR
09.10.2012, 13:45:04    2 BTC    EUR    13 EUR    26 EUR
09.10.2012, 13:45:04    7.87514372 BTC    EUR    18 EUR    141.75 EUR
09.10.2012, 13:45:02    2 BTC    EUR    10 EUR    20 EUR
09.10.2012, 13:37:44    1 BTC    EUR    18 EUR    18 EUR
09.10.2012, 13:30:15    1.73943924 BTC    EUR    18 EUR    31.3 EUR
09.10.2012, 13:29:48    17 BTC    EUR    11.1 EUR    188.7 EUR
09.10.2012, 13:24:19    1.0491 BTC    EUR    18 EUR    18.88 EUR
09.10.2012, 13:18:08    18.5373431 BTC    EUR    18 EUR    333.67 EUR
09.10.2012, 13:12:52    19.79897394 BTC    EUR    15 EUR    296.98 EUR
09.10.2012, 13:12:37    11.270253 BTC    EUR    15 EUR    169.05 EUR
09.10.2012, 13:11:47    10 BTC    EUR    10 EUR    100 EUR
09.10.2012, 13:08:15    1.01974 BTC    EUR    15 EUR    15.29 EUR
09.10.2012, 13:04:32    10 BTC    EUR    10 EUR    100 EUR
09.10.2012, 12:58:47    7.710007 BTC    EUR    11 EUR    84.81 EUR
09.10.2012, 12:58:27    2.439993 BTC    EUR    12 EUR    29.27 EUR
09.10.2012, 12:55:58    3.601007 BTC    EUR    12 EUR    43.21 EUR
09.10.2012, 12:55:58    2.6 BTC    EUR    13 EUR    33.8 EUR
09.10.2012, 12:52:38    2.4 BTC    EUR    12 EUR    28.8 EUR
09.10.2012, 12:48:08    10.5 BTC    EUR    12 EUR    126 EUR
09.10.2012, 12:47:58    3.459 BTC    EUR    10 EUR    34.59 EUR

seems the admin is sleeping ... normally i expect that they now shut down systems and stop processing until the things a clarified.

this is my offer which was confirmed without me:
09.10.2012, 13:18:08    18.5373431 BTC    EUR    18 EUR    333.67 EUR

I wonder if the admin is involved with this?
It is not normal that he is not answering almost a day last time. We'll see how long will it take this time. Can bitmarket can take responsability for thei security issue and refund the lost coins?

100% admin sleep now!!!! That is "all" for bitmarket.  f****ck!!!

Another thing, what i noticed.

The hacker seems to hack those, who put selling offers using moneybookers. No more offers from moneybookers, but there was before this attack. Why would not bitmarket just use bitcoin confirmation e-mail? so no one could send bitcoins withot notification in e-mail? In that way atleast we would not lost coins if only bitmarket would be hacked.

strange activity is continuing....

this user hacked my offer: CoonBreakair

He  canceled my offer for 11€, then placed sell offer for 12€, but in trnasaction log i see that bitcoins was sold for 18€

I dont understand how it was maked.

Thats the same account where my coins was sent. Hacker canceled all my orders and placed offer for 10 Eur for all 3.459 BTC.

This all could not happen, if bitmarket would use email confirmations about every deal placed and confiramtions.

I'm investigating this. Something's definately not right, and I'll get back to you as soon as I sort this up. Withdrawals are halted, so there is no way to get funds out of bitmarket now.

yes, i agree. Bitmarket need email confirmation, and i need my bitcoins back.

somebody know another way to contact admin of bitmarket?

super to hear this. Hope you sort this soon)))

I am glad that account is frozen for that hacker.

It's good to know that admin is avare of this. I hope that we get our coins back soon.

To everyone involved: please notify me if your BitMarket password was used on any other site. If yes, please post which one (after changing it naturally). Also, if you have had any other similiar incidents in the last days/weeks, please tell me this too.

I had unique password only for bitmarket, before that i had week password.

Any new updates will be posted here (https://bitcointalk.org/index.php?topic=5441.msg1259168#msg1259168).

On Friday, October 5th at 0:53 am my offer of sale of 10 btc was accepted by a buyer and at night the confirmation of purchase was confirmed without my authorization. I had made the day before  on Thursday, October 04th the offer of sale. I do not know which and how this transaction was validated !

My password was unique and I have no account on mtgox.

welcome in club...

So, since coins are blocked in Bitmarket and there is a withdrawal lock, does this mean I will get my 15.047xxxx BTC back?

I was logged in Bitmarket today and my coins were there (I had canceled my offers yesterday). I was just about to place a new offer but I decided to withdraw the bitcoins from Slush's pool. Logged on to Slush and this is when I got an email (I receive all e-mails on my smart phone as soon as they arrive - thank God and Google for push functionality). By the time I go back to BitMarket's account, coins were gone and transaction confirmed and even my country of residence was changed from Bulgaria to Bahamas. The same user who stole your coins stole mine! I e-mailed the Bitmarket Admin right away and he responded within 30 minutes. I have been using the same password for Deepbit, Slush pool, Paypal and my Gmail - had no issues with any of them, even though it would have been even more painful! Of course, all of them are now changed.

M4v3R, please tell me our coins are safe and have not left Bitmarket and will be returned to us, otherwise this would be a huge disappointment not only for me and would lead to loss of trust and customers. Everyone needs to feel safe and secure where he trades and spend/receive money.

+1, whant to know too

You were able to get in touch with your buyer of bitcoin? I was able to get in touch with my buyer. He told me not to have understood why transfers it had so quickly been validated. I explained him the validation of the transaction without my authorization.
In his e-mail he announced me to have proceeded to the sending of the payment under 3 days.
The pirate did not make the offer of sale for me. The offer of sale was mine, the pirate has or bought and validated the transaction or he is just made the validation of the transaction.

This is buyer of good time either does he play with me?
Do I have to deal with the pirate either with the fair buyer?
In my case it is not about the buyer CoonBreakair but of jlcducky.

Thank you

I believe having the same password for more than one money related website is more than careless. Therefore, as a user, honestly I don't think you would have a right to claim your money back really. You were not careful with the one most important thing concerning bitcoins: password security.

However, in the other thread I have made a plead for Bitmarket to open a donation account and ask every user (have some info on this on the webpage as well) to voluntarily send some bitcents or bitcoins to it in order to at least partly compensate those users affected. If someone stole from me, I would be super glad to receive whatever tiny fraction of the loss I could get back. Actually, I know how it feels since I lost a lot of coins at Bitcoinicascamgo.

And I believe that having the same password is not the issue (I had a strong password), since none of my other accounts were cracked (if they were, this guy would have had a lot more to take than my 15 BTC). No, the only account hacked was the one on Bitmarket.eu.

I also believe that the measures taken by the admin were too late - there have been breaches on the 6th of this month and not only hasn't he taken the measures he took now - confirming transactions from your e-mail, not just the marketplace, resetting the passwords and so on, but he also never put a warning on the website, like they did on MtGox last year, when they got hacked. If he had put a message just after the first hack attacks, many people's coins would not have been stolen!

I also believe that resetting all passwords right after the first stolen coins would have been a lot smaller inconvenience to anyone than losing their hard-earned bitcoins!

I also believe that this makes it his fault too and he needs to reply to those concerned what is going on with their coins, otherwise people will lose trust in BitMarket.eu, which is irreversible!

I believe the world is a bad, bad place and if you have your password stolen, not due to security breaches of Bitmarket.eu, you should consider your online password strategy instead of demanding payback for a site that costs you nothing to use.

http://rlv.zcache.com/put_your_big_girl_panties_on_and_quit_your_whining_mousepad-p144956535336887784envq7_400.jpg

If you don't want to lose it, keep it save. This is Bitcoin, remember?

I believe that if there has been a halt, like the admin said, my coins should not have left the Bitmarket.eu, therefore I should at least get a note when will I receive them. If my coins have been halted and are not returned to me, then who has them...? Doesn't this lead to conclusions, that are not in favour of the site and administration...? If coins have been stolen 3 days earlier and no measures have been taken to prevent those future thefts, doesn't this again lead you to conclusions that are not in favour of the site and its administration? Not only that, but it also implies, that they MIGHT be involved too... Don't get me wrong - I am not saying they are, but if they haven't taken the measures necessary, or if they are not returning coins that they know that have been stolen and they claim they have been halted, this is just what it looks like...  :(


P.S. I just hope it all turns out for the best and we can all gain our trust in the site back again and go back to normal! I have been trading only on Bitmarket.eu eversince I stirted mining and I don't want to shift to another place :(

The deciding factor for blaming an admin is: facts

It is not ruled out that security has been breached but until such has not been established, it makes no sense to blame the admin. Even if security was breached, it is still a free website. I use it occassionally and at my own risk. It is basically the same premise as with Bitcoin: you are on your own.

For those not affected, it is a great moment to reconsider your password strategy.

We have put our trust into the website and the administration, running this site. As it turns out, there are people, having unique, strong, cryptographically generated passwords, that have not been used anywhere else and still got ripped off. This is a significant indication that the breach occurred on Bitmarket.eu and not elswhere! And talks like this, that it's a free site and you are on your own would only make those who lost coins more paranoid and also cause other users of the service to start thinking if this is not an inside job and if their money is safe! Does this mean that if I open a service like this, which is free, I can rip you off of your coins, because my service was free? Does it mean that the people running the site can just close it down with everybody's coins in there and split...? ('cause withdrawals have been halted, remember?)

@Auris: I did my best to explain the situation in the official Bitmarket thread. If you want more details:

- First hack happened on 5th october. Two accounts were involved then. While it didn't alarm me much (from time to time these kind of things happened because people were careless with their passwords), I did set up a withdrawal hold feature. It worked like this: when you withdrawed more than 5 BTC from your account, it would hold it until I accepted it manually.
- Yesterday (9th october), presumably same hacker struck for the second time. This time, he accessed a bunch more accounts (around 15). Everytime he got something in his fraudulent account (CoonBreakair, jlcducky and probably hellonona) he would withdraw it immediately to his private BTC address. First, he tried to withdraw larger sums of BTC, which were held by the mechanism described above. These were returned to their respective owners. Then he probably noticed what's wrong and began to withdraw smaller sums, like 1-5 BTCs at time, which ultimately allowed him to drain ~182 BTC, until I was alarmed by users and stopped him. I immediately put all withdrawals on hold, even small ones, banned him and then disabled the site. So after that he couldn't do any more damage, but he still managed to withdraw aforementioned 182 BTC to his private BTC address.

I hope this explains it all.

Edit:


Few members affected had not-reused passwords, majority acknowledged that they reused their login details elsewere (Mt. Gox, Intersango, among others). So while it's puzzling how passwords of these two members were cracked, it could be just about anything. One of these members has changed his password and few hours later attacker accessed his account again! It looks like a classic trojan/keylogger attack if you ask me.

OK, so since I notified you less than 10 minutes from the sale, does this mean that you have been able to stop him from withdrawing my 15 BTC? As far as I know it takes at least an hour to get a few confirmations and be able to get the coins... Would you please care to explain if I can hope to get my coins back or no? I was really counting on this money - for most of the users here 150 euro is probably not a whole lot, but in my country this is more than a minimum wage and a little over half of my monthly income. :(

No. The minute your Bitcoin client announces a trade, you can't revert it. Just a minute after this it has already propagated throughout the network and other Bitcoin nodes acknowledge it. The "one hour" thing is a Bitcoin security measure for other Bitcoin clients to ensure that your "announcement" wasn't forged, i.e. that the coins you claim that you're spending really belong to you.

15 BTC is not a lot, but it's not a small amount either, I understand you. I've spent around 15 BTC (in my currency though) to buy my first SSD drive few weeks ago. Believe me, if there was anything I could do to stop or revert this, I would have done it.

OK, thanks... ;( At least I know now there is no hope... ;(

I donated 0,25 BTC for the cause. Maybe will add to that later. If you did so too, how about announcing it here? I know it isn't much, but if one hundred people donated 0,91 BTC half of the lost money could be refunded!

I think it would be fair that neither side blames the other, until we know what happened. I don't like the way the admin blames people's password policies, while we know that even those with good passwords were attacked.

BTW, if I am being keylogged, why do I have any money left on my local machines?

I am disappointed in the Bitmarket service. Service does not give us any guarantees for our deposity. Why do you require a deposit of our bitcoins to you if you do not have the normal protection of our resources and you do not have a guarantee fund?
I think you service have no future . it's not serious.

P.S. you should collect a 0.5% fee from each confirmed sell order to prevent future losses. And build guarantee fund, or do not ask for BTC deposits from customers.

Taking a 0.5% fee would be my next suggestion. I wouldn't prefer it though. A trust fund cannot be big enough to protect against all the potential losses. No use attacking bitmarket now, if you haven't been victim of a hack-attack yet, you just haven't been targeted. Bitmarket was probably lucky for so many months because it wasn't as big as other services. And if they took 0.5% why would I still prefer it over bitcoin.de? Anyway, I'm certain I will trust it again. Will just let a little time pass now.

 I transfered some BTC to Bitmarket.EU 3 h ago but nothing is there on my account yet... Is this normal ?

Normally... no - it would be available to use on the site from the 3rd confirmation.

Today... yes - this topic has reports from other people who've not had their accounts credited and/or who are unable to withdraw coins: https://bitcointalk.org/index.php?topic=5441.660