|
Title: A shy guy made a MtGox Trade API client Post by: jackjack on July 08, 2011, 06:01:18 PM A new user, viper_ava (a dozen of posts (http://forum.bitcoin.org/index.php?action=profile;u=28426;sa=showPosts)) made a client for MtGox Trade API
Nice guy really! He made it in Flash, closed source, and his 11 posts are all about his super nice program One problem though: he didn't post here but only in local forums (fr, pt, es, ru and zh) and still posts in english (What? Did I just hear 'so mods can't see his scams' in the room?) No, it's surely because he's shy Anyway, as I am a nice guy, I want you all (including mods) to know about his useful tool, here are some posts you will appreciate: http://forum.bitcoin.org/index.php?topic=26798.msg336796#msg336796 (ru) http://forum.bitcoin.org/index.php?topic=27036.msg340353#msg340353 (zh) http://forum.bitcoin.org/index.php?topic=27048.msg340545#msg340545 (pt) http://forum.bitcoin.org/index.php?topic=27049.msg340547#msg340547 (fr) http://forum.bitcoin.org/index.php?topic=27050.msg340551#msg340551 (es) Title: Re: A shy guy made a MtGox Trade API client Post by: Nick on July 08, 2011, 06:12:56 PM Watch out! I haven't checked the file, but there is a known way for flash on windows to bypass the sandbox and upload local files (like Wallet.dat) to the internet!
see http://xs-sniper.com/blog/2011/01/04/bypassing-flash%E2%80%99s-local-with-filesystem-sandbox/ Title: Re: A shy guy made a MtGox Trade API client Post by: Tasty Champa on July 08, 2011, 06:13:44 PM dude, you got markers all over the place.
wtf are you trying to say? Come out with it! Title: Re: A shy guy made a MtGox Trade API client Post by: BCEmporium on July 08, 2011, 06:17:50 PM EDIT After decompile the ActionScript I couldn't find any malicious code. I'll not publish the source because the guy is selling the software (it has key registering functions), but if anyone else with reverse engineer skills can look it over... my say is just, for what I can see, it's safe. |