Bitcoin Forum

Here is the sig ...

 BITMIXER.IO   High Volume Bitcoin MIXER   (https://bitmixer.io)

I didn't embed it. So it's either a glitch or somebody has/had control of my account.

Please look into this to see if there's an nefarious actor afoot. He'll be easy to spot because he'll be acting nefariously.  ::)

Bruno

Update. I just got this PM which I have no idea what it's about. I just replied to messe to let him know it's not me. I don't even have a Steam account.

Most likely someone has found your password.

Change it NOW!

You may also have to log out and log back in after changing the PW to ensure the hacker isn't still logged in.

Did you change your password after the DB hack in 2015?

Change your password FAST as security measure, you don't want someone getting scammed!

If they got my password, then there's more serious problems because the one I used for this account is an uber good one - many characters with symbols et al. No way they could've hacked it.

An admin needs to review my recent IP history et al. to see where the attack came from.

Maybe you got phished or something.

Either way someone is logged into your account as you, and you need to lock them out before some newbie gets scammed

I just tried something in case my password was changed. I'm on Chrome 99.9%, so I went to IE and tried to log in with my password and it wouldn't let me. I came back Chrome and was logged out. Thanks to Chrome saving the PW, I was able to relog in, but couldn't at IE.

I'm now going to look at what password is being using via Chrome advance settings.

Whatever you do, just change it to something new for now until theymos comes here.

Also make your you are on bitcointalk.org and not bitcointalk.pw or any of the other phishing sites.

Secure your account, mate.
I know he was about to scam me and i'll just play along.

Here's the story
He offered me his items in CS:GO games for $180
Here's a capture of his PM's to me.
http://imgur.com/a/LUJXL

Then i checked and contacted the steam account he sent to me.
Turns out that the steam account owner is not him.
Here's the proof.
http://imgur.com/VLpgMWU
http://imgur.com/4yQKDt1

Then he asked me to send btc equal as $180 to him.
http://imgur.com/QmbInsf

Notes: Change your bitcoin address in your profile, it's the scammer's address.

He still PM me even after you PM me lol

Hey, thanks, bud. That email address is mine. Here's a screenshot ...


As you can see (maybe) I haven't open that top email nor any others depicted. I'm going to now so to view the headers and will post it here to see if anything can be gleaned.

Looks like someone may have fell victim:


Looks like the hacker changed the Bitcoin address on your profile too:

https://i.imgur.com/VU0TYlQ.png
Same Bitcoin address used in the scam PM to messe

Okay, I didn't click your images yet, but I believe it's gonna show the same thing I'm seeing in my email.

How are my PMs being deleted?


Don't answer that. It was the nefarious actor. Password now changed.

The hacker is deleting them after he sends/reads them...

Damn, I didn't see that. I did just now delete the address but not yet the sig.

Here's a clue, theymos: https://bitcointalk.org/seclog.php

Today at 12:42:58 PM - Gleb Gamow - password changed (I'm the one who changed it)

March 27, 2017, 03:18:24 AM - Glebonator - woke up (I AM NOT Glebonator!)

https://bitcointalk.org/index.php?action=profile;u=366166


Taxing my memory, the Glebonator user account was created to fuck with me: http://web.archive.org/web/20151102134841/https://bitcointalk.org/index.php?action=profile;u=366166

HiHi,

was it you texting me or someone else trying to get a free game?

Sincerly,
Timo

https://bitcointalk.org/index.php?action=profile;u=366166;sa=showPosts


Corresponds with an attempt depicted below (any names erased were done by me for obvious reasons) ...



Seriously, it wasn't me. I'm not a gamer!

Bruno

Glad to hear you secured your account Gleb.
The Steams profile is also reporting the scam to warn users - http://steamcommunity.com/id/KingSalamander
Whomever the perpetrator was, they tried to mess with your reputation and failed.

I see that you changed your pw, bud, just to be safe. How do I really know that ...  ;D ;D ;D (TBC, kidding)

Later, bud.

Yeah, I was lurking and saw what happened.
Then thought of what we were talking about in prior days and the message your sent out last night at March 27, 2017, 10:17:39 PM.
Not a coincidence to me and ya I needed to change it up.

I was also curious if there is a way to protect against embedded sigs? Is it even possible?

Your right Gleb... I could be a cylon and I'm wearing my red dress  :D

Okay, I give! Why can't I now log in with the Gleb account but it's showing that I'm logged in?

Are the admins logged in looking at my nefarious activity?

Yes, this is Bruno.

EDIT: I see that the Gleb account is no longer online. I'll now log off Al and try to log on Gleb.

The online status lingers for a while even after going offline - that's just how it is.


True statement.

I'll accept that, with theymos was looking into it. He emailed me and let me know that my PW was randomized and to have me change it again which I did, hence now able to log in.

Thank you, theymos.

theymos replaced all the PMs that were sent from my account, the latter ones being by me personally and should be obvious which ones they are. I still don't see the ones that were sent to me in my In Box, but that may not be important I guess.

It seems to me that someone guessed Gleb's password using the password hashes stolen in 2015, since Gleb didn't change his password since then. The Glebonator account may be due to the attacker trying a new password-cracking attack against accounts in alphabetical order, or due to specifically targeting Gleb and incorrectly believing that that account belonged to him, or because Glebonator is the attacker.


I restored those as well now.

It's resolved, awesome.

Gleb, it may be a good idea to post a signed message here from a Bitcoin address that you once posted (the address that used to be on your profile perhaps?) stating that its you and you're in control along with todays date, so that people know it's really you in the hot seat.

You should stop calling out scammers with their scam projects :D and why do you still have the sig on?

Wow I thought for sure this was another troll thread.

---

---

Maybe  Glebonator (https://bitcointalk.org/index.php?action=profile;u=366166) should be banned/locked since it is almost certain to be hacked, or is possibly the hacker.

Nice defense there Gleb I guess the hacker does have a bunch of old password hashes from 2015
Just goes to show people are still attempting to break into them

Glad you got it fixed Gleb. Almost actually thought Qtum succeeded in 'hacking' your account :D

I had my (original) account broken in to a little while after the hack in 2015 and got notified on my e-mail about PM's that I wasn't sending. That was scary. I managed to change the password but I forgot it. I wanted to restore the account by answering my secret question, which in turn locked my account.


Theymos, I have made this topic about my locked account: https://bitcointalk.org/index.php?topic=1803387.msg17966365#msg17966365

I know this isn't the place to ask, but I have staked my BTC address and signed a message, I have sent a few PM's over the last year but my account (madjules007) is still locked. Do you have any chance to unlock it for me?

Removing the sig in a couple minutes. Left it there along with the added comment for sound reasoning from a sound mind, or something like that.


I'm leaning heavily toward the Glebonator user account having something to do with this.

I was mistaken. The Gleb account password wasn't changed since its inception. I think I looked at my computer logs incorrectly via clicking a different user account that has the strong password. I guess I have to change the PWs on all my 87 accounts (running gag; really somewhere north of a dozen account, almost all declared, of which one of the non-declared immediately comes to mind, created to fuck with some nefarious actor a year or two ago - not the user account nibbknot).

It's about time you got rid of that stupid sig.

Gleb's da man!  ;D

Shame on you Gleb, for making more work for Theymos!!   >:(

Glad you got your account back.  Down with hackers!

I didn't really lose it, but did loose control. I blame the Vodonator.

hey so you didnt change your pws after the attak and you got hacked... but what about Qtum? is the hacker who try it to use your account to get extra stuff or you still blame Qtum team ?

Now how the hell did the hacker get my newly created PW that was much stronger than the first one?


I guess I have to change it again.

Bruno

PS: THIS ISN'T AN APRIL FOOLS PRANK LIKE MY OTHER THREAD IN META.

PPS: PW changed.

Here's were the attack came from:


I live in Bullhead City, AZ, outside Vegas across the Colorado River, but I don't use Firefox. 98.6% Chrome; rest IE; very seldom Tor.

Maybe theymos could make a connection with this IP address: 76.164.227.178

I'm not attacker. I can confirm my first old password and number of password changes.

And I can confirm, that this photo from my old post is mine!

-----BEGIN BITCOIN SIGNED MESSAGE-----
Glebonator is my account. I didn't hack Gleb Gamow account. The current date is July 10th, 2018.
-----BEGIN SIGNATURE-----
1EVgSc168eBe2R6LJnS4L2fKkywjPk9UZ
-----END BITCOIN SIGNED MESSAGE-----

My bitcoin address is contained in the link to non-existent site, sorry about that.

theymos, Gleb Gamow, any feedback please.

Just want to point out that, brute force password hacking is not the only way to get your password and I believe that "guessing" your password is the hardest way to do it.
In most cases passwords are leaked all over the web and then hackers try to use it in different webs.
Thus it is smart to use different passwords for different places.

Lol maybe hackers do not need to hack your password just to access your account. Reminders that this is not a blockchain where you only alone can access your account. Meaning to say that they had a tool that can bypass any account of BCT. Besides, it was also been done in those timw where all of the BTC forum being hijack by someone and compromises users and password. So it could be possible that the forum nownis being hijack again.

OMG, mazdafunsun, erikoy, it's off topic.

Much time has passed, but "grandfather" Gleb Gamow and "man with spray of paint" hilariousandco didn't answer me.

account gleb gamow doesn't exist anymore.Its an alt of suchmoon now.You would have to talk to Bruno directly

Do you have any evidence that would back up this claim? That seems like a pretty big statement to just throw out there as if it is common knowledge, but maybe I am out of the loop on this one. I remember (slightly) there being some question of ownership over the account, but never remembered anything concrete and especially nothing linking specifically suchmoon. Care to explain to an uninformed party?


Edit: Thanks bones.

https://bitcointalk.org/index.php?topic=2544574.msg40211259#msg40211259

well then, I'll go out on a limb here and say...that settles that.

(hey Bill, don't feel bad...
I'm always outta the loop too... especially  at my job of 20 plus years... and here too...it's usually better that way)