Bitcoin Forum

Other => Meta => Topic started by: podyx on September 14, 2017, 06:36:41 PM



Title: Account compromised?
Post by: podyx on September 14, 2017, 06:36:41 PM
Hey, I was looking through my posts and saw this

Time for more cheap coins  :-*

And I have not posted that, how is this possible?


Title: Re: Account comrpomised?
Post by: onnz423 on September 14, 2017, 07:39:20 PM
I just checked your trust page and it says "This user changed his/her password recently.", which means that most likely it is compromised.
Change your password IMMEDIATELY if you can, as well as if you do not have a staked address yet, stake one now. If somehow you get logged out of your account, make a new account, and post over at Meta (https://bitcointalk.org/index.php?board=24.0) asking that your account gets tagged, and prove your ownership with signed message so no one gets screwed over because of the stolen account.


Title: Re: Account comrpomised?
Post by: podyx on September 14, 2017, 08:02:17 PM
I just checked your trust page and it says "This user changed his/her password recently.", which means that most likely it is compromised.
Change your password IMMEDIATELY if you can, as well as if you do not have a staked address yet, stake one now. If somehow you get logged out of your account, make a new account, and post over at Meta (https://bitcointalk.org/index.php?board=24.0) asking that your account gets tagged, and prove your ownership with signed message so no one gets screwed over because of the stolen account.

I changed password before I made this topic. I don't know how somebody could post on my account though?


Title: Re: Account comrpomised?
Post by: jackg on September 14, 2017, 08:29:43 PM
I just checked your trust page and it says "This user changed his/her password recently.", which means that most likely it is compromised.
Change your password IMMEDIATELY if you can, as well as if you do not have a staked address yet, stake one now. If somehow you get logged out of your account, make a new account, and post over at Meta (https://bitcointalk.org/index.php?board=24.0) asking that your account gets tagged, and prove your ownership with signed message so no one gets screwed over because of the stolen account.

I changed password before I made this topic. I don't know how somebody could post on my account though?

Did you have to reset your account password? Or is it someone you know that has done this. Are your Cookies saved on a computer without a password, with a password that is fairly common or a password that someone else knows.


Title: Re: Account comrpomised?
Post by: aleksej996 on September 14, 2017, 08:34:39 PM
Hey, I was looking through my posts and saw this

Time for more cheap coins  :-*

And I have not posted that, how is this possible?

Do you live alone?
This is a good time to question your sanity :D

Otherwise, sure it is possible you got hacked. Your account is old and there were leaks in the past (I believe 2015, so you are one of those accounts).
There is this website as well https://haveibeenpwned.com/ but it is obvious that your account was one of them. I hope you changed your password since then.


Title: Re: Account comrpomised?
Post by: podyx on September 14, 2017, 08:35:17 PM
I just checked your trust page and it says "This user changed his/her password recently.", which means that most likely it is compromised.
Change your password IMMEDIATELY if you can, as well as if you do not have a staked address yet, stake one now. If somehow you get logged out of your account, make a new account, and post over at Meta (https://bitcointalk.org/index.php?board=24.0) asking that your account gets tagged, and prove your ownership with signed message so no one gets screwed over because of the stolen account.

I changed password before I made this topic. I don't know how somebody could post on my account though?

Did you have to reset your account password? Or is it someone you know that has done this. Are your Cookies saved on a computer without a password, with a password that is fairly common or a password that someone else knows.

No, I didn't have to reset password, just changed it because I saw that post. My computer has a strong password but I logged in on bitcointalk on my phone, maybe that is why?


Title: Re: Account comrpomised?
Post by: jackg on September 14, 2017, 08:41:48 PM
I just checked your trust page and it says "This user changed his/her password recently.", which means that most likely it is compromised.
Change your password IMMEDIATELY if you can, as well as if you do not have a staked address yet, stake one now. If somehow you get logged out of your account, make a new account, and post over at Meta (https://bitcointalk.org/index.php?board=24.0) asking that your account gets tagged, and prove your ownership with signed message so no one gets screwed over because of the stolen account.

I changed password before I made this topic. I don't know how somebody could post on my account though?

Did you have to reset your account password? Or is it someone you know that has done this. Are your Cookies saved on a computer without a password, with a password that is fairly common or a password that someone else knows.

No, I didn't have to reset password, just changed it because I saw that post. My computer has a strong password but I logged in on bitcointalk on my phone, maybe that is why?

That couldbe it. If your phone was left unattended anywhere then someone could have posted something (especially if the app was already opened).

Else, if it's an Android phone and your google has a fairly week password then that can also be fairly easily hacked (or if a backup of your phone is stored online somewhere with a weak password).


Title: Re: Account comrpomised?
Post by: podyx on September 14, 2017, 09:02:21 PM
How would they get access to bitcointalk account from google hack though if that was the case?


Title: Re: Account comrpomised?
Post by: onnz423 on September 14, 2017, 09:11:38 PM
That couldbe it. If your phone was left unattended anywhere then someone could have posted something (especially if the app was already opened).
Else, if it's an Android phone and your google has a fairly week password then that can also be fairly easily hacked (or if a backup of your phone is stored online somewhere with a weak password).

What? How does phone being unattended for few moments relate to someone posting as him? Im pretty sure he did not leave the phone unattended on public place, so that comment makes no sense at all ::)
Also he just said that he has a strong password, and google do not really get any public data breaches at least so what do you mean by "hacking"? Also only nandroid backups store such information, as far as i know, so how is a backup online related to this?

How would they get access to bitcointalk account from google hack though if that was the case?

Google has not had a single public data breach recently, so there's no way that the bitcoin password has leaked via that way. However there was a Spambot leak (https://www.theguardian.com/technology/2017/aug/30/spambot-leaks-700m-email-addresses-huge-data-breach-passwords) recently, which might have caused your password to leak, if you used same password on any of the leaks.


Title: Re: Account comrpomised?
Post by: jackg on September 14, 2017, 10:56:16 PM
That couldbe it. If your phone was left unattended anywhere then someone could have posted something (especially if the app was already opened).
Else, if it's an Android phone and your google has a fairly week password then that can also be fairly easily hacked (or if a backup of your phone is stored online somewhere with a weak password).

What? How does phone being unattended for few moments relate to someone posting as him? Im pretty sure he did not leave the phone unattended on public place, so that comment makes no sense at all ::)
Also he just said that he has a strong password, and google do not really get any public data breaches at least so what do you mean by "hacking"? Also only nandroid backups store such information, as far as i know, so how is a backup online related to this?
Nope, I have full android (jellybean) and that stores EVERYTHING the apps produces on command. It can store the app along with the associated data.
Also, there are many ways that someone could have gone on his phone and posted something, who said anythng about a public place? Maybe it was a friend or someone living in his house just posting something random when they got bored?

By "hacking" I mean more a a brute force attempt, there are parts of the phone that can be taken over from the web client of play.google.com. If these were ammended by a little programming then a pasword for a bitcointalk account can be gathered, obviously this is unlikely as they'd change the email address and password after logging in.


Title: Re: Account comrpomised?
Post by: onnz423 on September 14, 2017, 11:47:52 PM
Nope, I have full android (jellybean) and that stores EVERYTHING the apps produces on command. It can store the app along with the associated data.

Yeah but this requires root, and a root user would know the risks of producing such backups. What app are you talking about right now?


Also, there are many ways that someone could have gone on his phone and posted something, who said anythng about a public place? Maybe it was a friend or someone living in his house just posting something random when they got bored?

What kind of "friend" would go to your phone, and start using it? Also i doubt that he had his screen on without a screen lock. Also it does not really matter, since i think that the point of this thread was to discuss technical details rather than  discussing people who could possibly access the phone.

By "hacking" I mean more a a brute force attempt, there are parts of the phone that can be taken over from the web client of play.google.com. If these were ammended by a little programming then a pasword for a bitcointalk account can be gathered, obviously this is unlikely as they'd change the email address and password after logging in.

You cannot bruteforce a google account, because after few invalid tries it does ask you for captcha, so that makes no sense. Would you care to actually define the technical details of the attack  you are meaning, and there are no any tools that actually can solve recaptchas as far as i know.


Title: Re: Account comrpomised?
Post by: jackg on September 16, 2017, 05:25:37 PM
Nope, I have full android (jellybean) and that stores EVERYTHING the apps produces on command. It can store the app along with the associated data.

Yeah but this requires root, and a root user would know the risks of producing such backups. What app are you talking about right now?


Also, there are many ways that someone could have gone on his phone and posted something, who said anythng about a public place? Maybe it was a friend or someone living in his house just posting something random when they got bored?

What kind of "friend" would go to your phone, and start using it? Also i doubt that he had his screen on without a screen lock. Also it does not really matter, since i think that the point of this thread was to discuss technical details rather than  discussing people who could possibly access the phone.

By "hacking" I mean more a a brute force attempt, there are parts of the phone that can be taken over from the web client of play.google.com. If these were ammended by a little programming then a pasword for a bitcointalk account can be gathered, obviously this is unlikely as they'd change the email address and password after logging in.

You cannot bruteforce a google account, because after few invalid tries it does ask you for captcha, so that makes no sense. Would you care to actually define the technical details of the attack  you are meaning, and there are no any tools that actually can solve recaptchas as far as i know.

1. I'm talking about the regular utility that comes with the factory install.
3. You can easily get past recaptcha many bots do it.


Title: Re: Account comrpomised?
Post by: onnz423 on September 16, 2017, 05:31:55 PM
1. I'm talking about the regular utility that comes with the factory install.
3. You can easily get past recaptcha many bots do it.

AOSP android does not have such a thing included, for privacy reasons, and you cannot access / with non-rooted device, so to me it seems like you don't really know what you are talking about.

Also you once again, just FUD around without sourcing. Talk is jusy talk, so unless you got a source, please do not talk about it. So far google has made a captcha software that is near impossible to break through, because it gets updated so often and bots are not smart enough to recognize different kind of signs, cars etc.


Title: Re: Account comrpomised?
Post by: aleksej996 on September 16, 2017, 05:45:50 PM
1. I'm talking about the regular utility that comes with the factory install.
3. You can easily get past recaptcha many bots do it.

AOSP android does not have such a thing included, for privacy reasons, and you cannot access / with non-rooted device, so to me it seems like you don't really know what you are talking about.

Also you once again, just FUD around without sourcing. Talk is jusy talk, so unless you got a source, please do not talk about it. So far google has made a captcha software that is near impossible to break through, because it gets updated so often and bots are not smart enough to recognize different kind of signs, cars etc.

Well there are about 50 million unemployed Chinese, so I think captchas should be considered effectively broken.  ;D


Title: Re: Account comrpomised?
Post by: onnz423 on September 16, 2017, 05:50:36 PM
Well there are about 50 million unemployed Chinese, so I think captchas should be considered effectively broken.  ;D

However humans do not count as bots, so what are you referring to? Jackg said "bots"


Title: Re: Account comrpomised?
Post by: jackg on September 16, 2017, 07:27:22 PM
1. I'm talking about the regular utility that comes with the factory install.
3. You can easily get past recaptcha many bots do it.

AOSP android does not have such a thing included, for privacy reasons, and you cannot access / with non-rooted device, so to me it seems like you don't really know what you are talking about.

Also you once again, just FUD around without sourcing. Talk is jusy talk, so unless you got a source, please do not talk about it. So far google has made a captcha software that is near impossible to break through, because it gets updated so often and bots are not smart enough to recognize different kind of signs, cars etc.

1. I will show you the option in my app at some point if you really want me to. Its not rooted/jailbroken and the option existed from the start. So you're the one talking random FUD (the Seagate app also allows you to backup data from apps as well).

Also, a session between the server and Google that has to exist for the captcha to fully work can be interrupted and interfered with remotely. Along with the fact you can test a few passwords and change IP if yours is dynamic. You could also hack an account where the same password can probably be used. Sites like Yahoo give you 12 attempts before you have to retry and get locked out of your account (I had someone manage to crack mine with a password i felt was fairly safe (8 alphanumerics).


Title: Re: Account compromised?
Post by: konco_kenthel on September 17, 2017, 09:38:30 AM
There may be people who do not like your opinion. But do not make the problem bigger and always give a better opinion to prove to them that we can still compete with the safe atmosphere to keep in touch.


Title: Re: Account comrpomised?
Post by: onnz423 on September 17, 2017, 10:13:26 AM
1. I will show you the option in my app at some point if you really want me to. Its not rooted/jailbroken and the option existed from the start. So you're the one talking random FUD (the Seagate app also allows you to backup data from apps as well).

I just checked the  Seagate backup (https://play.google.com/store/apps/details?id=com.seagate.android.dashboard&hl=fi), and there is no option for backupping any kind of application data. Only Photos, Videos, Music, Contacts, Call log and Messages. So care to repeat what you said?

Also, a session between the server and Google that has to exist for the captcha to fully work can be interrupted and interfered with remotely.

Exactly. Not really possible to bypass it or cheat it.

You could also hack an account where the same password can probably be used. Sites like Yahoo give you 12 attempts before you have to retry and get locked out of your account (I had someone manage to crack mine with a password i felt was fairly safe (8 alphanumerics).

I personally use unique 65-100char passwords, so data breaches cannot touch me any more. Also a possiblity of keylogger is possible as well, or some kind of data leak.
you would be the luckiest person in the world to get 8 alphanumerics done in 12 rights.


Title: Re: Account comrpomised?
Post by: jackg on September 17, 2017, 11:01:37 AM
1. I will show you the option in my app at some point if you really want me to. Its not rooted/jailbroken and the option existed from the start. So you're the one talking random FUD (the Seagate app also allows you to backup data from apps as well).

I just checked the  Seagate backup (https://play.google.com/store/apps/details?id=com.seagate.android.dashboard&hl=fi), and there is no option for backupping any kind of application data. Only Photos, Videos, Music, Contacts, Call log and Messages. So care to repeat what you said?

Also, a session between the server and Google that has to exist for the captcha to fully work can be interrupted and interfered with remotely.

Exactly. Not really possible to bypass it or cheat it.

You could also hack an account where the same password can probably be used. Sites like Yahoo give you 12 attempts before you have to retry and get locked out of your account (I had someone manage to crack mine with a password i felt was fairly safe (8 alphanumerics).

I personally use unique 65-100char passwords, so data breaches cannot touch me any more. Also a possiblity of keylogger is possible as well, or some kind of data leak.
you would be the luckiest person in the world to get 8 alphanumerics done in 12 rights.


Correct me if I'm wrong but a password that length would probably require copy and pasting. So it'll face any viruses that exist with access to the dashboard. Or any key loggers (if you type the 65 characters).
Also, passwords to websites are sent over Internet and while unlikely it's possible a potential hacker can gain access to the connection (by piggybacking) on it.


Title: Re: Account comrpomised?
Post by: onnz423 on September 17, 2017, 11:24:55 AM
Correct me if I'm wrong but a password that length would probably require copy and pasting. So it'll face any viruses that exist with access to the dashboard. Or any key loggers (if you type the 65 characters).
Also, passwords to websites are sent over Internet and while unlikely it's possible a potential hacker can gain access to the connection (by piggybacking) on it.

Keepass, lastpass etc. are great solutions, for password managing, since you can use 2FA and OTP solutions. On these solutions all of the passwords are encrypted with master password, and lastpass has support for yubikey at least. Atleast lastpass supports autofilling. However if we assume that the computer has malware, it does not matter really. However if you have a great security overall, and careful about what you download etc, those tools can be really useful.


Title: Re: Account comrpomised?
Post by: aleksej996 on September 17, 2017, 12:53:37 PM

-snip-

I personally use unique 65-100char passwords, so data breaches cannot touch me any more. Also a possiblity of keylogger is possible as well, or some kind of data leak.
you would be the luckiest person in the world to get 8 alphanumerics done in 12 rights.


You need help dude :D
100 char password, wow...That is more then 512 bits of data. Servers don't even use hashes larger that 512 bits.
It would be more profitable for someone to just try to get a collision, then to actually guess a password.
Especially since they are unique, they would have no use of the password, just a random number that gives that hash.