Title: Vircurex has been compromised Post by: drlukacs on May 10, 2013, 06:24:30 PM Vicurex seems to be down, and it displays the following message:
Quote The systems Vircurex.com and Cryptostocks.com have been taken offline over the weekend Please do not deposit any further coins to your Vircurex accounts. We must assume that the wallet has been compromised. Title: Re: Vircurex has been compromised Post by: ForceField on May 10, 2013, 06:42:29 PM Vicurex seems to be down, and it displays the following message: Quote The systems Vircurex.com and Cryptostocks.com have been taken offline over the weekend Please do not deposit any further coins to your Vircurex accounts. We must assume that the wallet has been compromised. Confirmed, I am getting the same message for http://vircurex.com. However, https://vircurex.com is just down. Anyone know what is going on? Title: Re: Vircurex has been compromised Post by: rme on May 10, 2013, 06:44:44 PM Anyone can check if the IP matchs the Vircurex IP address.
Their SSL certificate is not working, maybe someone has stolen the domain. Title: Re: Vircurex has been compromised Post by: sal002 on May 10, 2013, 06:53:28 PM Probably the same people who attack anyone that supports Novacoin.
Title: Re: Vircurex has been compromised Post by: joesmoe2012 on May 10, 2013, 07:01:52 PM Damn I have some money there.
Title: Re: Vircurex has been compromised Post by: Nemo1024 on May 10, 2013, 07:02:56 PM PING vircurex.com (80.241.221.39): 56 data bytes
64 bytes from 80.241.221.39: icmp_seq=0 ttl=54 time=38 ms 64 bytes from 80.241.221.39: icmp_seq=1 ttl=54 time=38 ms 64 bytes from 80.241.221.39: icmp_seq=2 ttl=54 time=38 ms $ whois 80.241.221.39 % This is the RIPE Database query service. % The objects are in RPSL format. % % The RIPE Database is subject to Terms and Conditions. % See http://www.ripe.net/db/support/db-terms-conditions.pdf % Note: this output has been filtered. % To receive output for a database update, use the "-B" flag. % Information related to '80.241.216.0 - 80.241.223.255' % Abuse contact for '80.241.216.0 - 80.241.223.255' is 'abuse@contabo.de' inetnum: 80.241.216.0 - 80.241.223.255 netname: CONTABO descr: Contabo GmbH country: DE admin-c: MH7476-RIPE tech-c: MH7476-RIPE status: ASSIGNED PA mnt-by: MNT-CONTABO mnt-lower: MNT-CONTABO mnt-routes: MNT-CONTABO source: RIPE # Filtered person: Michael Herpich address: Contabo GmbH address: Aschauer Str. 32a address: 81549 Muenchen phone: +49 89 21268372 fax-no: +49 89 21665862 nic-hdl: MH7476-RIPE mnt-by: MNT-CONTABO source: RIPE # Filtered % Information related to '80.241.216.0/21AS51167' route: 80.241.216.0/21 descr: CONTABO origin: AS51167 mnt-by: MNT-CONTABO source: RIPE # Filtered % This query was served by the RIPE Database Query Service version 1.60.2 (WHOIS2) PS: Damn indeed, just converted 10LTC to BTC and was about to withdraw :( Title: Re: Vircurex has been compromised Post by: SgtSpike on May 10, 2013, 07:15:26 PM Why, exactly, does ANY exchange still run with a hot wallet?
Title: Re: Vircurex has been compromised Post by: bradmurmz on May 10, 2013, 07:21:15 PM Every exchange has been hacked repeatedly... This is starting to get ridiculous. I wish there was a good exchange in the US which had a solid dev team, but everyone here is afraid of regulation uncertainty and the red tape associated with the fincen requirements.
Why cant all the current exchanges just generate deposit addresses and immediately encrypt the bitcoin addresses private key with a PGP or SSL public key generated offline somewhere. Then if the site got hacked there is no way they could withdraw any money. When a withdraw request was submitted it could be placed in a queue to be picked up by an unknown secure payment processing server which has access to the withdraw requests and could verify via email before actually sending the funds. I have some PHP code for all of this I might release... but it really is a secure and simple process! I just cant figure out why current exchanges still don't do this and keep wallets on the same servers that host the website. ??? Title: Re: Vircurex has been compromised Post by: bennett616 on May 10, 2013, 07:26:14 PM :( I had 30 DEV coins there......... Lost my alt coin life savings :(
Feel sorry for the ones who have lost a lot! Andy B Title: Re: Vircurex has been compromised Post by: sal002 on May 10, 2013, 07:46:07 PM :( I had 30 DEV coins there......... Lost my alt coin life savings :( Feel sorry for the ones who have lost a lot! Andy B You poor soul, I had 21 Dev coins there. Title: Re: Vircurex has been compromised Post by: Nemo1024 on May 10, 2013, 08:42:37 PM If you lost just 0.30 BTC ....you are lucky :-* You could put it like that. However that was the result of my dabbling with LTC and 2 minor GPUs running for half a month. Talking about unlucky timing...Title: Re: Vircurex has been compromised Post by: Bitcoin! on May 10, 2013, 09:09:31 PM Lets just wait for results!
had 1 milion plus devcoin there! Title: Re: Vircurex has been compromised Post by: bennett616 on May 10, 2013, 09:23:05 PM :( I had 30 DEV coins there......... Lost my alt coin life savings :( Feel sorry for the ones who have lost a lot! Andy B You poor soul, I had 21 Dev coins there. I feel for you bro :( Andy B Title: Re: Vircurex has been compromised Post by: bitcoinperson on May 10, 2013, 10:21:13 PM I had around .000001 BTC there!
Title: Re: Vircurex has been compromised Post by: joesmoe2012 on May 10, 2013, 11:58:27 PM I contacted vicurex via mail and skype. Here the answers received: Mail: We had to take the service offline due to a security breach. We are analyzing the situation and hope to have the service up and running again by tomorrow evening ------------------ Best regards Your Vircurex Team Skype: We are in the process of analyzing the damage. But ofcourse we will fund the losses out of our pockets. Most of the coins (>80%) are stored in cold wallets. So, there is hope. Stay cool. Good to hear, thanks or contacting them. Title: Re: Vircurex has been compromised Post by: Jakewell on May 13, 2013, 05:51:34 PM vircurex is fine now but i think they should add another coin.
|