Title: Hacked - lost 1.22 bitcoins Post by: osteper on September 30, 2013, 04:38:42 PM Hi, I got hacked today and lost 1.22 bitcoins(About $175).
I guess its pretty much impossible to get this back? Firstly I got an mail, where someone with the ip adress: 222.73.10.150 were trying reset my password, which they had done. Nothing stolen from there. Then, I got an email saying that there has been a withrawal from my account: Transaction reference: c3e19ab2-64df-4985-9dfd-a7753d648c13 Date: 2013-09-30 12:35:57 GMT IP: 23.106.64.2 Withdraw 1.22132480 BTC Bitcoin withdraw to 1CDjhXpqro96hSGk9QzGGm3qBMaYKxGp8f Any help is greatly appreciated! Title: Re: Hacked - lost 1.22 bitcoins Post by: cbhelp on September 30, 2013, 04:39:32 PM Where did they hack to get the btc from? What site?
Title: Re: Hacked - lost 1.22 bitcoins Post by: dragonkid on September 30, 2013, 04:40:20 PM Did you use an online wallet?
Title: Re: Hacked - lost 1.22 bitcoins Post by: osteper on September 30, 2013, 04:44:52 PM Did you use an online wallet? I had my $175 on my Mt.Gox account, they bought 1.22 bitcoins and then sent the BTC to himself.Title: Re: Hacked - lost 1.22 bitcoins Post by: cp1 on September 30, 2013, 04:50:30 PM Sorry :(
Don't leave money or btc in exchanges for any longer than you have to. Title: Re: Hacked - lost 1.22 bitcoins Post by: neordicICE on September 30, 2013, 04:54:27 PM Hmm, all the hacker needed was access to your email.
Title: Re: Hacked - lost 1.22 bitcoins Post by: GIANNAT on September 30, 2013, 04:55:58 PM It seems like you didn't have 2FA enabled. You should use (when withdrewing) it for a added level of security, consider yubikey or G.AUTH
Title: Re: Hacked - lost 1.22 bitcoins Post by: bitcoin44me on September 30, 2013, 04:56:16 PM You should always use 2FA .....
And use difficult password, secure your computer, and do not go into fishing attempts. Title: Re: Hacked - lost 1.22 bitcoins Post by: Keldel on September 30, 2013, 04:58:01 PM Unfortunately MtGox cannot be recommended until they improve their security features.
Title: Re: Hacked - lost 1.22 bitcoins Post by: Gimmelfarb on September 30, 2013, 05:49:24 PM this was an exchange account, sounds like? unfortunately, they are not particularly safe. i am sorry to hear about your loss... :-\
Title: Re: Hacked - lost 1.22 bitcoins Post by: klovishey on September 30, 2013, 06:02:24 PM Unfortunately MtGox cannot be recommended until they improve their security features. And start processing USD withdravals much faster ;) Title: Re: Hacked - lost 1.22 bitcoins Post by: theokep on September 30, 2013, 11:14:47 PM Just don't use Gox at all. Personally, I would recommend that you store your BTC in an offline wallet or in a very secure online wallet (blockchain.info, inputs.io, etc.) and then only transfer to exchanges for a short period of time when you are actually ready to exchange them.
Title: Re: Hacked - lost 1.22 bitcoins Post by: rigel on October 01, 2013, 03:35:27 AM Now you MUST:
scan your computer for viruses and malware change all of your passwods (email, Facebook , bitcointalk, whatever) stop allowing javascript, java, flash and other crap on your browser Title: Re: Hacked - lost 1.22 bitcoins Post by: yakuza699 on October 01, 2013, 10:22:35 AM You should install new windows or whatever you are using to delete that virus just to make sure that your computer is clean and no virus can acess you wallet or mtgox.
Title: Re: Hacked - lost 1.22 bitcoins Post by: Wipeout2097 on October 01, 2013, 10:44:41 AM The 2nd IP resolves to 23.106.64.2.rdns.ubiquity.io
13 109 ms 107 ms 115 ms xe-5-2-0.cr1.dca2.us.above.net [64.125.26.21] 14 145 ms 147 ms 145 ms xe-0-2-0.cr1.iah1.us.above.net [64.125.25.114] 15 147 ms 181 ms 176 ms xe-5-1-0.cr1.dfw2.us.above.net [64.125.21.129] 16 147 ms 153 ms 147 ms xe-0-1-0.er1.dfw2.us.above.net [64.125.27.74] 17 142 ms 148 ms 149 ms 209.66.115.54.t01344-01.above.net [209.66.115.54] 18 155 ms 153 ms 162 ms 23.106.64.2.rdns.ubiquity.io [23.106.64.2] Go to the http://ubiquity.io website. There's a contact phone number there. Title: Re: Hacked - lost 1.22 bitcoins Post by: Samir_H on October 01, 2013, 10:51:50 AM Use as much security options as you can when you have money on internet and don't keep it online for a long time.
Title: Re: Hacked - lost 1.22 bitcoins Post by: b!z on October 02, 2013, 02:10:22 PM Use 2FA if you absolutely must use an online wallet.
Title: Re: Hacked - lost 1.22 bitcoins Post by: kuusj98 on October 02, 2013, 02:25:28 PM Just don't use Gox at all. Personally, I would recommend that you store your BTC in an offline wallet or in a very secure online wallet (blockchain.info, inputs.io, etc.) and then only transfer to exchanges for a short period of time when you are actually ready to exchange them. Online wallets are not safe, period.Offline wallets on a USB with armory and other shit also ain't safe, nothing is safe, this is the internet. Title: Re: Hacked - lost 1.22 bitcoins Post by: RaTTuS on October 02, 2013, 02:51:50 PM to the OP
you have a trojan or logger on your machine 1) clean your machine of all virus and learn how to do safe surfing. 2) never ever ever use the same username and password on any site 3) having cleaned your machine go and change your email address passowrd 4) go to lastpass.com and generate a good password and associate it with your newly cleaned email 5) change all your forum username | passwords to something different for each one. Title: Re: Hacked - lost 1.22 bitcoins Post by: Buffer Overflow on October 02, 2013, 02:55:23 PM Just don't use Gox at all. Personally, I would recommend that you store your BTC in an offline wallet or in a very secure online wallet (blockchain.info, inputs.io, etc.) and then only transfer to exchanges for a short period of time when you are actually ready to exchange them. Online wallets are not safe, period.Offline wallets on a USB with armory and other shit also ain't safe, nothing is safe, this is the internet. Offline wallets are very very safe, if done correctly. Title: Re: Hacked - lost 1.22 bitcoins Post by: jaycee1974 on October 02, 2013, 09:33:59 PM lost 34,35 btc on instawallet, filled out a claim, and ..... nothing!
that hurts! Title: Re: Hacked - lost 1.22 bitcoins Post by: cp1 on October 02, 2013, 10:08:46 PM Offline wallets on a USB with armory and other shit also ain't safe, nothing is safe, this is the internet. Offline wallets aren't connected to the internet. That's what offline means. Title: Re: Hacked - lost 1.22 bitcoins Post by: poewerden on October 02, 2013, 10:56:48 PM Offline wallets on a USB with armory and other shit also ain't safe, nothing is safe, this is the internet. Offline wallets aren't connected to the internet. That's what offline means. USB stick is the achilles heel. But more secure than online computer, i agree Title: Re: Hacked - lost 1.22 bitcoins Post by: osteper on October 08, 2013, 10:57:11 PM The 2nd IP resolves to 23.106.64.2.rdns.ubiquity.io Thanks, I'll give them a call! Maybe they can give me the name of the owner of that IP adress.13 109 ms 107 ms 115 ms xe-5-2-0.cr1.dca2.us.above.net [64.125.26.21] 14 145 ms 147 ms 145 ms xe-0-2-0.cr1.iah1.us.above.net [64.125.25.114] 15 147 ms 181 ms 176 ms xe-5-1-0.cr1.dfw2.us.above.net [64.125.21.129] 16 147 ms 153 ms 147 ms xe-0-1-0.er1.dfw2.us.above.net [64.125.27.74] 17 142 ms 148 ms 149 ms 209.66.115.54.t01344-01.above.net [209.66.115.54] 18 155 ms 153 ms 162 ms 23.106.64.2.rdns.ubiquity.io [23.106.64.2] Go to the http://ubiquity.io website. There's a contact phone number there. If they won't agree on giving it to me private, I guess I gotta file a police report. If the police asks them to hand out his name/adress etc, they are required to do so, right? Title: Re: Hacked - lost 1.22 bitcoins Post by: saif92 on October 09, 2013, 12:15:50 AM The 2nd IP resolves to 23.106.64.2.rdns.ubiquity.io Thanks, I'll give them a call! Maybe they can give me the name of the owner of that IP adress.13 109 ms 107 ms 115 ms xe-5-2-0.cr1.dca2.us.above.net [64.125.26.21] 14 145 ms 147 ms 145 ms xe-0-2-0.cr1.iah1.us.above.net [64.125.25.114] 15 147 ms 181 ms 176 ms xe-5-1-0.cr1.dfw2.us.above.net [64.125.21.129] 16 147 ms 153 ms 147 ms xe-0-1-0.er1.dfw2.us.above.net [64.125.27.74] 17 142 ms 148 ms 149 ms 209.66.115.54.t01344-01.above.net [209.66.115.54] 18 155 ms 153 ms 162 ms 23.106.64.2.rdns.ubiquity.io [23.106.64.2] Go to the http://ubiquity.io website. There's a contact phone number there. If they won't agree on giving it to me private, I guess I gotta file a police report. If the police asks them to hand out his name/adress etc, they are required to do so, right? its good you must do this its very important for all to catch these hackers and bring them into public Title: Re: Hacked - lost 1.22 bitcoins Post by: Samir_H on October 09, 2013, 10:12:35 AM Thanks, I'll give them a call! Maybe they can give me the name of the owner of that IP adress. If they won't agree on giving it to me private, I guess I gotta file a police report. If the police asks them to hand out his name/adress etc, they are required to do so, right? Did you call them? Title: Re: Hacked - lost 1.22 bitcoins Post by: nbphuoc on October 09, 2013, 10:21:09 AM You should have enabled the OTP
Title: Re: Hacked - lost 1.22 bitcoins Post by: osteper on October 09, 2013, 12:47:44 PM Thanks, I'll give them a call! Maybe they can give me the name of the owner of that IP adress. If they won't agree on giving it to me private, I guess I gotta file a police report. If the police asks them to hand out his name/adress etc, they are required to do so, right? Did you call them? Got this reply: "We have forwarded your complaint to our customer. Thank you! Ticket Details --------------------------------- Ticket ID: ***-***-***** Department: Abuse Type: Issue Status: Closed Priority: Medium Support Center: https://support.ubiquityhosting.com/index.php?" It seems like a company called "Nobistech" is using Ubiquity as their hosting-service. Hence they have forwarded the complaint directly to Nobistech. Title: Re: Hacked - lost 1.22 bitcoins Post by: OnkelPaul on October 09, 2013, 12:53:29 PM It's quite likely that the computer from which the connection was made was itself hacked.
Using hacked servers to cover their tracks is pretty standard behavior of internet criminals - much easier than installing TOR and using it correctly :-) Onkel Paul Title: Re: Hacked - lost 1.22 bitcoins Post by: eskaer on October 09, 2013, 03:55:56 PM Maybe it's time to use VM and linux for your wallet?
Title: Re: Hacked - lost 1.22 bitcoins Post by: MargaretsDream on October 09, 2013, 03:57:53 PM Maybe it's time to use VM and linux for your wallet? Or learn to use paper wallets. It is complicated, but worth the troubles Title: Re: Hacked - lost 1.22 bitcoins Post by: dianemajor on October 09, 2013, 04:59:06 PM Looks like you lost out..Sorry for your loss!
Title: Re: Hacked - lost 1.22 bitcoins Post by: easynote on October 09, 2013, 05:05:00 PM Huge loss... Be careful on next time dude, and save your btc's offline
Title: Re: Hacked - lost 1.22 bitcoins Post by: jeffhuys on October 09, 2013, 05:39:14 PM ALWAYS 2-factor. Always.
Title: Re: Hacked - lost 1.22 bitcoins Post by: osteper on December 04, 2013, 02:20:50 PM I havent heard anything from the company I sent the email to. Been allmost 2 months now.
Is there anything at all I can do or do I just have to deal with the loss? :-\ Title: Re: Hacked - lost 1.22 bitcoins Post by: saif92 on December 04, 2013, 03:59:16 PM I havent heard anything from the company I sent the email to. Been allmost 2 months now. Is there anything at all I can do or do I just have to deal with the loss? :-\ no body covering you loss just you have to manage this and carful about future and change passwords and never use one password on different sites good luck for future :) Title: Re: Hacked - lost 1.22 bitcoins Post by: RaTTuS on December 04, 2013, 04:17:12 PM https://bitcointalk.org/index.php?topic=305166.msg3285211#msg3285211
+ file a police report Title: Re: Hacked - lost 1.22 bitcoins Post by: Jeremy1977 on December 04, 2013, 04:38:25 PM 2FA should be enabled, and you should keep your fund in your own wallet (offline wallet is even better).
Title: Re: Hacked - lost 1.22 bitcoins Post by: Samir_H on December 05, 2013, 12:13:34 PM + file a police report I doubt police will do anything. @OP deal with the loss and make your cryptocoins safer. Title: Re: Hacked - lost 1.22 bitcoins Post by: TrailingComet on December 05, 2013, 12:22:48 PM Great information, thanks! I am trying to figure the online/offline wallet thing out right now so this helps a lot!
Title: Re: Hacked - lost 1.22 bitcoins Post by: lindatess on December 05, 2013, 12:26:48 PM It's probably some person in China. Looks like they thought they wouldn't be tracked. They probably used a stolen credit card to create a VPS at Nobistech, chained a proxy and moved your bitcoins.
http://www.nobistech.net/companies Or it could be someone else using a proxy in China, but usually those proxies are slow. There would be better alternatives. It doesn't add up. Why not choose Transnistria? Title: Re: Hacked - lost 1.22 bitcoins Post by: TookDk on December 05, 2013, 12:40:02 PM I am sorry for your loss, I know how you fell right now.
I know this might not bring much comfort, but there are positive and negative in every action, try see the positive and then will you feel better. Use this incident as a learning experience: Start making it a custom to have a strong password policy (Most people are sometimes too sloppy with this). And all the other good safety stuff: Use different password for different sites. Use 2-3 way authentication (when available) Use special email account for you bitcoin business. This might save you much more money in the future than you have lost today, if you learn your self to be "paranoid" on the internet. Again, sorry for your loss, I hope the best for you and I am sure you will recover. Title: Re: Hacked - lost 1.22 bitcoins Post by: osteper on December 05, 2013, 03:31:38 PM I am sorry for your loss, I know how you fell right now. Thanks mate! That really helped. You learn best from your mistakes!I know this might not bring much comfort, but there are positive and negative in every action, try see the positive and then will you feel better. Use this incident as a learning experience: Start making it a custom to have a strong password policy (Most people are sometimes too sloppy with this). And all the other good safety stuff: Use different password for different sites. Use 2-3 way authentication (when available) Use special email account for you bitcoin business. This might save you much more money in the future than you have lost today, if you learn your self to be "paranoid" on the internet. Again, sorry for your loss, I hope the best for you and I am sure you will recover. Luckily he didn't steal my Litecoins, probably because they weren't worth much at that time. Now its worth like 10 times more. I've got it set up with 2-way authentication with Google authenticator. |