Title: Inside the Mega-Hack of Bitcoin: the Full Story Post by: bitrebel on June 20, 2011, 01:27:25 AM http://www.dailytech.com/Inside+the+MegaHack+of+Bitcoin+the+Full+Story/article21942.htm
Title: Re: Inside the Mega-Hack of Bitcoin: the Full Story Post by: grue on June 20, 2011, 01:28:28 AM title is misleading. it's hardly a "mega-hack", nor is it about bitcoins.
Title: Re: Inside the Mega-Hack of Bitcoin: the Full Story Post by: bitrebel on June 20, 2011, 01:44:27 AM "Last Monday at around 5 p.m. 25,000 Bitcoins were transferred from 478 accounts on the currency's largest exchange".
Does someone know something we don't? I thought AllinVain had everything in one account. No? Where do the 478 accounts come into play? In the same article a few paragraphs down.... "On Monday at around 5 pm, 25,000 bitcoins were transferred into account "1KPTdMb6p7H3YCwsy FqrEmKGmsHqe1Q3jg". The coins in question came from 25,000 accounts." So is it 478 accounts or 25,000 accounts? Title: Re: Inside the Mega-Hack of Bitcoin: the Full Story Post by: BeeCee1 on June 20, 2011, 01:56:24 AM Not sure it is a "Mega-Hack" but it certainly is about bitcoin.
There is some pretty poor research in this article though. After providing a link to the password file, they go on to report that they don't know if the salt was per-user or site wide. It is pretty easy to figure that out. Here's one entry: $1$yHWqORNr$rRF7U59c9UY9utiW/ZnF.. The stuff between the second and third $ is the salt, "yHWqORNr". Here's another entry $1$eVe/yQrF$HNws4a6lsEuUCvvUHZPil/ See how the salt is different? "eVe/yQrF" so there were per account salts. |