Bitcoin Forum

http://www.deepdotweb.com/2014/02/13/silk-road-2-hacked-bitcoins-stolen-unknown-amount/

http://www.forbes.com/sites/andygreenberg/2014/02/13/silk-road-2-0-hacked-using-bitcoin-bug-all-its-funds-stolen/

 Yeah, it's true. Can't post the link from tor since most won't be able to view it. But this hack really happended.....

Ummm. Good? WTF, are we supposed to feel sorry for criminals having their bitcoins stolen or are we supposed to worry about the bad security of a criminal enterprise? Good, steal them all....

Transaction malleability (by itself) can't be exploited to steal, that's just the nature of the problem. So silk road 2.0 are either not competent or not being truthful, or both. There's more to this story.

Here comes the mass exodus...

of course, bye bye. its dead.

Forget "according to the article", how about according to the actual bug in the protocol? You can exploit the bug by tricking humans into re-sending after mutating, but it doesn't steal money on it's own, the protocol isn't tricked. Anyone who believes it can deserves to sell coins at the bottom of a panic.

This is causing me to double check current site policy were my coins are.  If SilkRoad 2 was duped then any site will be at risk.

This is why the whole explanation in this case to me doesn't add up.  I could see this happening in the situation Mt Gox is in but a bunch of escrowed funds meant to be applied to sellers accounts after settlement.  So was this just a case were admins don't want to be hands on to minimize legal liability so it wasn't even in their control while the sites bank was emptied out?

I'm sure they're just pulling a gox and using this as an excuse.


They're only criminals by stupid laws. What about all the cancer and other patients that get their meds from there?

They are absolutely incompetent for keeping all of the funds in "hot storage" knowing fully well of the malleability issue.

Yeah of course, all the drug dealers selling drugs and all the addicts buying drugs on "Silk Road 2" are cancer patients  ;D

That's a very opinion and geographical specific idea, there are countries that allow drugs, and, on top of that, they don't just sell drugs.

I could go onto the whole debate about how I don't even feel that drugs should be illegal, but, then we're going onto a larger topic past the point of bitcoins.

What happened last time, after the original SR got shut down and there was a mass sell off? I remember price recovered pretty quickly, and then... damn it was so long ago, anyone else remember?

FTFY

Pretty sure it was a honeypot to begin with. Just the bad guys stealing more coins.

I never said they was, but they should have a right to buy whatever they want from wherever they want.

Feels to me like someone at Silk Road 2 spotted the opportunity with all the negative press surrounding the relativly harmless maleability issue as way to pretend they have been robbed and blame it on hackers and the maleability 'bug'!!

As I understand it, the maleability issue can only delay transactions not allow out and out theft of bitcoin.

Personally at this stage of Bitcoins development/regulation or lack there of, I wouldnt trust ANY third party with my hard earned BTC, not the exchanges, and certainly not drug running websites :-\

The news media have been all over it linking to the maleability bug! Bloomberg in particular. Makes you wonder if any news channel checks its facts before broadcasting these days.

It's very suspicious. I'm sure more info will come out shortly. It's far too risky to trust these sites at the moment. They need to chnage their practices or escrows.

How sad.  To have such severe sociopathy that one relies exclusively on law for a moral compass.  Even Pinocchio fared better and he was made of wood and had a cricket for a conscience.

To me, feeling sorry for others is a question of compassion, not policital correctness.  For example, I feel sorry for you.

SR2 Address is
silkroad6ownowfk.onion

You can use a tor to web proxy to view for sites via a normal browser, simply replace .onion with .tor2web.org

https://silkroad6ownowfk.tor2web.org (https://silkroad6ownowfk.tor2web.org)

I understand the claim now, it's basically another crap bespoke wallet implementation (like mt.gox's). So one customer was able to repeat withdrawal requests on the same balance. It's a wakeup call for anyone not using reference implementation wallets to check their vulnerability.

You seem like an indecent person.

meanwhile in bitcoin dev.
https://bitcointalk.org/index.php?topic=418071.0

Quote from: genjix on January 16, 2014, 12:37:12 PM
Quote from: waxwing on January 16, 2014, 12:35:42 PM
Nice work, Amir Smiley

You seem to have an expired ssl cert on *.unsystem.net, by the way.

This whole system is very reminiscent of ssl, since I'm on the subject.. Initial handshake with shared secret. But of course the purpose is different in various ways. If we think of a scenario where a customer wants to pay to a Silk Road merchant, I guess you'd say that this part (stealth addresses) is a kind of substitute for the encryption part of ssl (well, not a complete substitute but part) (because obviously you can't encrypt the blockchain but this serves to seriously obfuscate the meaning of txs), while the authentication part of ssl would have to be dealt with separately through some pgp stuff or x509 or whatever?

I've changed the link now in the OP.

Original link: https://wiki.unsystem.net/index.php/Sx/Stealth

Alternative link: https://en.bitcoin.it/wiki/Sx/Stealth

All these new innovations are great. Especially when you start thinking about systems like Twister and their implications. Writing functions like initiate_stealth() is probably the coolest thing I've ever written.

 Cheesy

Imagine it; stealth + coinjoin - no one can trace the transactions. multisig - website can never steal funds. SR website code - open sourced with multiple servers for decentralization (maybe Twister too I don't even know anything about it yet).

Soon we'll reach a point where it doesn't even matter if the FBI run SR from their headquarters - it'll still be safe Cheesy
   

with multple sig support , and coinjoin no need for trusted party's so no way to steal someone's bitcoins.
people can't handle control and power  very well so its better we outsource and decentralize it.

Its a shame really. The original silk road seemed to have a good thing going. I actually discovered Bitcoin when someone told me about that article (was it Gawker?) Naturally I was curious, I checked out their forums and it seemed like a pretty nice vibe. I stayed away from the main site, because I wanted to err on the side of caution...  Then I came here, to find out more about this Bitcoin thing. I quickly realised that there was a lot more to this story than a bunch of freedom loving libertarians trading 'illicit' chemicals over the tor network. The rabbit hole turned out to be much deeper than that... So far, the journey has been an incredibly enlightening experience, I feel I've really learned a lot over the last year or so. I just hope that I'm following the right course, it feels to me that things have been playing out more or less as intended. I guess the rollercoaster could get a lot more intense before we reach the endgame, whatever that may be. But I'm sure that everything will work out just fine in the end - There are powers at work within or perhaps beyond this universe which I couldn't even begin to comprehend.

Its now a just a matter of faith.

A quote, which is sampled in a beautiful set that I like to listen to:


Change is the only certainty in life. Eventually, everything turns to dust. And so what is there to worry about? Live your life and enjoy yourself. Follow your path. Have faith that all will work out. Maybe things will get worse before they get better, but remember it probably won't even matter in the end.

'This too shall pass' (The bad times, and the good)

Heavy shit for a Friday evening  :o :D  EDIT: Saturday morning LOL

Peace.

Well played sir. Well played.

I also heard about Bitcoin via the media coverage of Silk Road. A lot of people did.


So what drugs did you buy?  :D

Drugs? No I didn't buy any drugs  :P

he bought herbs....

So was this actually a hack or a heist or an inside job? I'm not sure I buy the hack excuse.

Inside job. DPR2 took it.