Bitcoin Forum

Somebody stole 7BTC today. No idea how my wallet was leaked. It's a windows 7 machine, not shared with anyone. It is a hot wallet and was not encrypted. Now moving to armory.



Did anyone else see such exploits?

That's lame.  Y u no encrypt?

I know :( learnt my lesson.

armory up, encrypt up = worry less :)

This is a perfectly secure setup, and I can think of absolutely no way your wallet could possibly have been compromised. </sarcasm>

I know, is there a way to track this thief? Here is the transaction
https://blockchain.info/address/149kuVmGKWUwsN8bvu4WTthc6mVwEB3A2E

Why the hell does Bitcointalk.org go down all the time. I just typed up a long response and clicked submit, and got the "cannot be displayed page" AGAIN. I then click back and it doesn't save my message, ughh  >:(


To sum it up, there's a way to track a BTC address to see where they have sent to. That's the closest you'll get to catching him. Maybe he'll have an account with a lot of info attached to one of those sites or places he's sent the BTC to though, but it'd be a long shot.

I don't think a scammer/thief is going to send the coins to something like "1TimWheat29c72fjs9 ...".

Currently coins are not touched so..

are you referring to Instawallet?

What lol? He could send it to say a gambling site "Bitzino", and then his BTC address is used with an account there with his first and last name. Then with his IP + first and last name I'm pretty sure you could find out the rest. It was just a possibility...

Your conception of "his BTC adress" sounds most interesting. Care to elaborate?

You should try pressing F5, to resubmit again, instead of clicking back ::)

@Greyhawk. I don't know, I just know there's a way to find the places a BTC address has sent to.

@Psy, I can't the page still comes up as can not be displayed.

You still say "a BTC adress". A bitcoin user can have a thousand BTC adresses or a million. Doesn't matter. Ideally you have new one for each transaction you make. With that at hand it's trivial to loop, split and merge any ill gotten gains through so many adresses that tracing is no longer realistically viable (though still theoretically possible).

If your computer was not shared with anyone, encrypting your wallet would not have saved your coins. If an attacker manages to install something at your computer, this something can simply wait until you type the password in and then your coins are gone.
Encrypting your wallet only protects against physical theft of the media containing the wallet.

Not using Windows is certainly a much strong security approach than encrypting your wallet. You should consider it. Even better: your bitcons should be in a system which never access the Internet. Of course that's not super convenient as of now, so what I normally suggest is keeping two wallets: one offline, and another, with a smaller amount you could afford to lose, in a machine (preferably not Windows) that's used for Internet access.

Can someone from outside the firewall use rpc commands on the bitcoin-qt? I think my bitcoin-qt used upnp top open some ports and was accessible outside the firewall.

whats this armory business?

Only if you run it as server and use a fail password.

am using electrum in windows 7 64-bit no problems is a great client

does not download the block chain, is local, can set very low or no fees, has word based seed function to recover

wallet, has a virtual keyboard for password security, and encryption of the wallet file

even loaded it on my kindle hd

also using eset32 antivirus

yes bitcoin-qt with rpc enabled is not good