|
Title: Has Twitter account of Jon Matonis been cracked? Post by: 5EC948A1 on May 26, 2013, 05:07:54 PM Jon Matonis' Twitter feed has been strange. There have been strange tweets that stay up for a few minutes and then are deleted.
For example, something like "I have an emergency situation please send Bitcoin donation to 1NmjJSDfSTRy6Ez4USyKct1mXgwteJvqfj". And then, "I am selling my personal mining rig DM me for information". Keep an eye on the feed, it's strange. I'm sure he's locked out of his own account. I suppose the Foundation can confirm whether the donation address belongs to them. https://twitter.com/jonmatonis (https://twitter.com/jonmatonis) Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: tvbcof on May 26, 2013, 06:04:26 PM Offtopic sort of but I find it neccessary to be said: Anyone having Facebook, Twitter, MySpace, Google+ or similar account or is using any of services provided by (major) corporations or other service providers who are backed by system and is involved with cryptocoins at the same time is an idiot, period. 'idiot' is a technical term which probably does not apply. Fun though. I'll agree with the statement, but with some modification. ...using, for mission critical things, any of the services... It is unwise and probably impractical to avoid many of these services in 2013. But from a system design perspective, they should be treated as resources which have less reliability than might be desired. And a failure mode which will likely be associated with other system failures. I would also point out that '(major) corporations' provide almost everyone with edge connectivity (your isp) as well as carry backbone traffic. And they have a pretty high degree of control over 'your' packets. So, if on is an 'idiot, period' for relying on '(major) corporations or other service providers', we are pretty much all idiots. Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: threeip on May 26, 2013, 06:05:11 PM Very odd Goat.
I don't see those tweets? Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: tvbcof on May 26, 2013, 06:23:24 PM I would also point out that '(major) corporations' provide almost everyone with edge connectivity (your isp) as well as carry backbone traffic. And they have a pretty high degree of control over 'your' packets. So, if on is an 'idiot, period' for relying on '(major) corporations or other service providers', we are pretty much all idiots. If you are dealing with cryptocoins but not route your traffic through TOR and use multiple levels of protection from being tracked and profiled than yes, you are idiot. Good luck! So you are running a business based on TOR? OK. Luck to ya...and to your customers... Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: Jobe7 on May 26, 2013, 06:45:40 PM Some people actually want to run legitimate businesses and NOT run their business through tor..
1NmjJSDfSTRy6Ez4USyKct1mXgwteJvqfj - is the address now on his twitter account and that he tweeted. 1BTCorgHwCg6u2YSAWKgS17qUad6kHmtQW - Is the real Bitcoin Foundation donation address (https://bitcoinfoundation.org/donate) Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: tvbcof on May 26, 2013, 06:55:15 PM Some people actually want to run legitimate businesses and NOT run their business through tor.. 1NmjJSDfSTRy6Ez4USyKct1mXgwteJvqfj - is the address now on his twitter account and that he tweeted. 1BTCorgHwCg6u2YSAWKgS17qUad6kHmtQW - Is the real Bitcoin Foundation donation address (https://bitcoinfoundation.org/donate) Well, not everyone is doing such crazy, brave, and subversive activities as ironing Bitcoin patches on to Chinese textiles. To say that I was underwhelmed by the 'mega' aspect of the 'megastore' which I just had a peek at would be a bit of an understatement. Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: 5EC948A1 on May 26, 2013, 07:05:25 PM It looks like the cracker has figured out he has been spotted and he moved his 0.5387 stash of loot to 14yMcPkqUVYrXFLwxJdSS34ae7reFmg5PJ (https://blockchain.info/address/14yMcPkqUVYrXFLwxJdSS34ae7reFmg5PJ).
I assume it's a he. Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: 5EC948A1 on May 26, 2013, 07:17:41 PM The cracker is still going:
Jon Matonis @jonmatonis Sorry about all the confusion, this is my personal address, donations are appreciated: 14yMcPkqUVYrXFLwxJdSS34ae7reFmg5PJ With the long weekend in the US this could take until Tuesday to resolve. Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: jim618 on May 26, 2013, 07:59:54 PM There was a tweet at 20.35 today from Jon's account with a fake MultiBit link that was complete garbage.
Apparently it is some Visual Basic malware. Almost certainly Jon's twitter account has been hacked. edit: This tweet has now been deleted. Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: threeip on May 26, 2013, 09:18:37 PM Quote Jon Matonis @jonmatonis 2 bad Jon's wallet was encrypted :/ Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: anticapt on May 26, 2013, 09:21:46 PM Jon Matonis @jonmatonis 55m
2 bad Jon's wallet was encrypted :/ Jon Matonis @jonmatonis 1h Donate bitches <3: 14yMcPkqUVYrXFLwxJdSS34ae7reFmg5PJ Jon Matonis @jonmatonis 1h Jon, why are you ignoring me? </3 Recent posts.. Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: Vycid on May 27, 2013, 01:56:04 AM The cracker is still going: Almost certainly Jon's twitter account has been hacked. Sure, it can't be Twitter staff is doing it on command, for fun or something else. Why would they do it? They are just cool company offerring "make your stalker's life easier" services, heavily backed by anti-cryptocoin kind of people, no? The tinfoil is reaching critical mass. Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: tvbcof on May 27, 2013, 02:06:48 AM ==========
Jon Matonis @jonmatonis Board advisor to startups in bitcoin, gaming, mobile & prepaid. Previously CEO of Hushmail. ========== --- latest tweet --- Jon Matonis @jonmatonis 38m If you donate ill suck your dick, or eat you out (ladies): 14yMcPkqUVYrXFLwxJdSS34ae7reFmg5PJ ---------------------- Ouch! That can't help is 'advisory' credentials much. At least in terms of advising about security... Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: tvbcof on May 27, 2013, 02:35:59 AM Just a heads-up that the guy's twitter account looks cleaned up, but the last post downloads a binary:
Code: file ~/Bitcoin.exe Caution is advised for those on Windows. Put more clearly, it would likely be a bad idea to execute it. Edit: Aaaand it's gone! If anyone wishes to take a crack at de-compiling it, PM me. Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: QuestionAuthority on May 27, 2013, 02:44:20 AM ========== Jon Matonis @jonmatonis Board advisor to startups in bitcoin, gaming, mobile & prepaid. Previously CEO of Hushmail. ========== --- latest tweet --- Jon Matonis @jonmatonis 38m If you donate ill suck your dick, or eat you out (ladies): 14yMcPkqUVYrXFLwxJdSS34ae7reFmg5PJ ---------------------- Ouch! That can't help is 'advisory' credentials much. At least in terms of advising about security... LOL - that's too funny! Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: Benson Samuel on May 27, 2013, 02:52:34 AM Offtopic sort of but I find it neccessary to be said: Anyone having Facebook, Twitter, MySpace, Google+ or similar account or is using any of services provided by (major) corporations or other service providers who are heavily backed by the system and is involved with cryptocoins at the same time is an idiot, period. Jon has done a lot for the progression of Bitcoin over the past years. Not a nice thing to say mate! Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: threeip on May 27, 2013, 02:56:20 AM Offtopic sort of but I find it neccessary to be said: Anyone having Facebook, Twitter, MySpace, Google+ or similar account or is using any of services provided by (major) corporations or other service providers who are heavily backed by the system and is involved with cryptocoins at the same time is an idiot, period. Jon has done a lot for the progression of Bitcoin over the past years. Not a nice thing to say mate! Yes but how the f- does the man who ceo'd Hushmail get his Twitter 'hacked'? Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: Benson Samuel on May 27, 2013, 03:02:12 AM Offtopic sort of but I find it neccessary to be said: Anyone having Facebook, Twitter, MySpace, Google+ or similar account or is using any of services provided by (major) corporations or other service providers who are heavily backed by the system and is involved with cryptocoins at the same time is an idiot, period. Jon has done a lot for the progression of Bitcoin over the past years. Not a nice thing to say mate! Yes but how the f- does the man who ceo'd Hushmail get his Twitter 'hacked'? That might have been the problem. Not Quote Anyone having Facebook, Twitter, MySpace, Google+ or similar account or is using any of services provided by (major) corporations or other service providers who are heavily backed by the system and is involved with cryptocoins at the same time Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: tvbcof on May 27, 2013, 03:15:48 AM Sure, it can't be Twitter staff is doing it on command, for fun or something else. Why would they do it? They are just cool company offerring "make your stalker's life easier" services, heavily backed by anti-cryptocoin kind of people, no? The tinfoil is reaching critical mass. Maybe, maybe not (and probably not for BM's hypothesis though I would not rule it out.) My Android phone was hacked some months ago with what seems to perhaps have been a zero-day and my mail seems to have been broken into in that attack. It was dumb luck that the phone had connectivity only briefly or I may not have ever known. The attacker seemed to be clumsy though (or very very good...sometimes it's hard to tell.) I now no longer allow my phone or Windows machine access to my real mail which is awfully inconvenient, but what can ya do? Hopefully for Jon, he was similarly careful. Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: tvbcof on May 27, 2013, 03:37:36 AM ----- Jon Matonis @jonmatonis 5m His email was plastered everywhere, I got into his Yahoo (Not bruteforce), took his Twitter, forbes account, etc. @octal Expand ----- I'll be looking forward to the new Jon's blog post of Forbes :) Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: ihsotas on May 27, 2013, 04:37:36 AM Funny. @octal is a friend of mine, was at BTC2013.
Twitter has 2FA now -- really unforgivable for a visible frontman of the BTC world. Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: tvbcof on May 27, 2013, 04:44:47 AM Funny. @octal is a friend of mine, was at BTC2013. Twitter has 2FA now -- really unforgivable for a visible frontman of the BTC world. I should be more clear that the attacker who had control of Jon's account was communicating with @octal. Hey attacker? Tell us if Jon's Yahoo! password was some permutation of 'liberty', 'rand', 'atlas', etc and I'll send you a few bucks. Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: ihsotas on May 27, 2013, 04:48:31 AM Funny. @octal is a friend of mine, was at BTC2013. Twitter has 2FA now -- really unforgivable for a visible frontman of the BTC world. I should be more clear that the attacker who had control of Jon's account was communicating with @octal. Hey attacker? Tell us if Jon's Yahoo! password was some permutation of 'liberty', 'rand', 'atlas', etc and I'll send you a few bucks. Right. @octal was just asking the hacker a bunch of questions through twitter, and that was one of the responses. You can still see the questions on @octal's account, but @jonmatonis has been purged to 0 tweets and just a handful of followers. It's surprising how much schadenfreude there's been around this. I don't know much about Matonis, but is seems like a lot of people had very little respect for him. Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: tvbcof on May 27, 2013, 05:04:12 AM ... It's surprising how much schadenfreude there's been around this. I don't know much about Matonis, but is seems like a lot of people had very little respect for him. I'd derive amusement about something like this no matter who it happened to. Even if it were myself! No harm, no foul. OTOH, it becomes a bit criminal depending on what that binary does. I assume that the attacker would stay out of the kitchen if he (most likely 'he') cannot stand the heat, and I'll enjoy it even more if he get's caught. --- FWIW, this is IMO yet another somewhat valuable illustration of just how difficult it can be to maintain control of one's data these days, and that really needs to be a factor in being realistic about crypto-currency design. Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: Arto on May 27, 2013, 05:10:08 AM Yes but how the f- does the man who ceo'd Hushmail get his Twitter 'hacked'? Twitter doesn't exactly have a stellar track record on system security: http://mashable.com/2013/02/01/twitter-security-breach/ Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: Stunna on May 27, 2013, 06:13:35 AM Well.. this certainly must be a very embarrassing situation for him, poor guy. Most people are smart enough to immediately realize he has been hacked though.
EDIT: They appeared to have deleted his account.. Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: ihsotas on May 27, 2013, 06:31:01 AM Well.. this certainly must be a very embarrassing situation for him, poor guy. Most people are smart enough to immediately realize he has been hacked though. EDIT: They appeared to have deleted his account.. Twitter usually deactivates or locks out compromised accounts if the victim can prove their identity; that doesn't seem to be the case here. The hacker is still tweeting under @jonmatonis. As I write this, there are two tweets: Jon Matonis @jonmatonis 1h Good luck getting your Twitter back now Jon. Shouldn't have ignored me, GG. Jon Matonis @jonmatonis 1h @octal He got his other stuff back... Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: Stunna on May 27, 2013, 06:33:11 AM Well.. this certainly must be a very embarrassing situation for him, poor guy. Most people are smart enough to immediately realize he has been hacked though. EDIT: They appeared to have deleted his account.. Twitter usually deactivates or locks out compromised accounts if the victim can prove their identity; that doesn't seem to be the case here. The hacker is still tweeting under @jonmatonis. As I write this, there are two tweets: Jon Matonis @jonmatonis 1h Good luck getting your Twitter back now Jon. Shouldn't have ignored me, GG. Jon Matonis @jonmatonis 1h @octal He got his other stuff back... Ah, very true my mistake. It seems they managed to steal his twitter handle though. At least they no longer have access to his followers. Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: dave111223 on May 27, 2013, 07:29:11 AM http://www.forbes.com/sites/jonmatonis/2013/05/27/donations/
Quote Donate Bitcoins Comment Now Follow Comments If you would like to donate Bitcoins my address is: 14yMcPkqUVYrXFLwxJdSS34ae7reFmg5PJ Thanks. Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: Vycid on May 27, 2013, 12:04:12 PM Offtopic sort of but I find it neccessary to be said: Anyone having Facebook, Twitter, MySpace, Google+ or similar account or is using any of services provided by (major) corporations or other service providers who are heavily backed by the system and is involved with cryptocoins at the same time is an idiot, period. Jon has done a lot for the progression of Bitcoin over the past years. Not a nice thing to say mate! He is working on disruptive technology threatening established (monetary) systems and uses Twitter. Oh, please. Bitcoin is not currently a threat to any established monetary system. Don't be delusional. He's a guy who didn't take appropriate steps to secure his accounts, they got hacked, and now someone else has control of them. This happens to celebrities all the time. Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: bg002h on May 27, 2013, 03:44:13 PM Offtopic sort of but I find it neccessary to be said: You really think so? What sets crypto apart? Is it just the ease of fraud?Anyone having Facebook, Twitter, MySpace, Google+ or similar account or is using any of services provided by (major) corporations or other service providers who are heavily backed by the system and is involved with cryptocoins at the same time is an idiot, period. Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: tvbcof on May 27, 2013, 06:54:17 PM The fun continues into Monday. For posterity: ----- Jon Matonis @jonmatonis 33m Exploit I used to compromise Mr. Matonis's Yahoo, leading to all his accounts being jacked: http://goo.gl/TAfzA Enjoy. ----- Now all of Jon's tweets are back, but he is down to zero followers and followings. I'm kinda wondering if Jon either has control, or is leaving control in the hands of the attacker to gain information. But I have no idea how Twitter and it's support structures work. As always, it would likely be monumentally stupid to simply execute the downloaded program (which, like the one yesterday, I have a copy of if anyone wants it.) Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: charleshoskinson on May 27, 2013, 06:57:15 PM This is very sad. Jon Matonis is a wonderful guy and I really hope that this incident can be resolved soon.
Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: ihsotas on May 27, 2013, 09:07:00 PM Offtopic sort of but I find it neccessary to be said: Anyone having Facebook, Twitter, MySpace, Google+ or similar account or is using any of services provided by (major) corporations or other service providers who are heavily backed by the system and is involved with cryptocoins at the same time is an idiot, period. Jon has done a lot for the progression of Bitcoin over the past years. Not a nice thing to say mate! He is working on disruptive technology threatening established (monetary) systems and uses Twitter. Oh, please. Bitcoin is not currently a threat to any established monetary system. Don't be delusional. He's a guy who didn't take appropriate steps to secure his accounts, they got hacked, and now someone else has control of them. This happens to celebrities all the time. Well said. Anyone who uses Twitter and doesn't even bother to active two factor auth deserves to get hacked, hard. If you're a columnist, you should be especially cautious. Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: octal on May 30, 2013, 03:43:04 AM I don't think Twitter's new 2FA is actually all that beneficial.
Long random-string passwords, either with a password manager or in a secure client, and your twitter email address being a secret/unpublished "secure" email address, rather than something like your main yahoo (mm, XSS) and itself with 2FA or equivalent security, is probably twitter account best practice. Email accounts are the skeleton key to the Internet. Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: nimda on May 30, 2013, 03:53:10 AM I also have a copy of Yahoo Exploit.exe if someone wants it. It's a 1,030,693 byte file.
Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: Kluge on May 30, 2013, 04:06:26 AM I also have a copy of Yahoo Exploit.exe if someone wants it. It's a 1,030,693 byte file. Should probably be sent to Yahoo if not already.Title: Re: Has Twitter account of Jon Matonis been cracked? Post by: maco on May 30, 2013, 06:47:41 AM As of right now: his twitter account does not exist.
So I went to researching stages, and I couldn't find much history of his previous tweets with the site: allmytweets.net which displays all tweets. Here is a cached version of his twitter account (This cache was last collected on May 21, 2013) so.. we are a few days behind, and now the account is gone. http://webcache.googleusercontent.com/search?q=cache:o_2Nke32zr0J:https://twitter.com/jonmatonis+%40jonmatonis&cd=1&hl=en&ct=clnk&gl=us |