Bitcoin Forum

On the 6. aug. 2011 i got 50 BTC stolen for my account on bitcoin7.com.

The transaction was:

Address: 1L1TC4HiJhwswF5FZu15HuXbGdMMu6PLNe
Transaction: f9f7f54e5c3ac762bede011904250417d5c154eeaab648d8af6aaed222c01ae3
Date: 2011-08-06 13:10:51 (CET)

The foreign ips assessing to my account was.

"77.37.156.150"   "2011-08-01 01:58:07"
"171.171.195.67"  "2011-08-01 23:19:06"
"178.177.197.228" "2011-08-03 00:28:47"
"178.177.197.228" "2011-08-03 00:30:11"
"178.177.197.228" "2011-08-03 01:04:06"
"178.177.197.228" "2011-08-03 01:40:44"
"178.177.197.228" "2011-08-03 01:41:08"
"178.140.109.184" "2011-08-06 13:09:35"

I prayed that the thieves would get an incurable headache until my bitcoins is returned.

Have anyone had similar bitcoin experience ?

How did you get the ip's?

I asked bitcoin7 support.

Ok, well, the transaction was over a week ago. Why'd you chose to come forward now and not then?

I feel I needed to clam down before I posted. 

Any luck on finding the thieves or getting anything back?

And you show remarkable restraint. I would've posted the offending IPs the moment I saw this happen to me.

Could you please enlighten a newbie, how this could happen?
Did the thieves crack your password of your bitcoin7 login?

I'm interested in hearing how they got access

Indeed, how did this happen ? Was it bitcoin7's fault or was your computer hacked or what ?

1.) Use multi-factor authentication.  If your exchange doesn't offer multi-factor (e.g., yubikey or mobile sms/text verification) then consider finding a new exchange.

2.) Contact your local police and/or #bitcoin-police
 - http://en.bitcoin.it/wiki/Bitcoin_Police

Well, I don't know exactly how it happed.
I did make the mistake to leave my bitcoins on the bitcoin7 account. (I was waiting for the client to get wallet encryption) 
Well, I am pretty sure that my computer was not hacked.

One way could be for the hacker to bribe or threaten an bitcoin7 employee to give him a database dump of the password hashes. Then run a cracking program on them to one or more was cracked.


@Stephen Gornick
Is there a list of exchange with multi-factor authentication ?

So far, those that I'm aware of:
 - Intersango (Britcoin.co.uk, Intersango.com, Intersango.us) - Google Auth with multi-factor
 - Mt. Gox - Yubikey
 - TradeHill - Duo Security (mobile)
 - Camp BX - Text/SMS
 - ExchB - motp (mobile one time password app)
 - WorldBitcoinExchange.com - Duo Security (mobile) or Google Auth with multi-factor


There are also eWallets with a type of two-factor auth:
 - WalletBit uses SecureCard, which is a paper-based credentials system

An extra tip.  Make sure your email account password is very strong!

If your email is required to manually change passwords or for password recovery, it is essential that you email password is very strong.  There's no point in having very strong password on exchanges if these strong passwords can be accessed via a hacked email account.

The same thing happened to me on August 11th. Someone withdrew ~42 BTC.
Today I have informed bitcoin7 and asked for more information.

I have absolutely no idea how this could happen. I've not used this user:pass combination anywhere on bitcoin related sites.

Damn!

You're being lied to by bitcoin7.

171.171.195.67 is a Bank of America-owned IP that is not routed or globally accessible.
It can't access the internet, nor vice versa. There is no way that IP logged into the site.

 That /24 has never hit the internet before, and as of this month (or this year or last year even) has never been online.

Or he's lying that he got the money stolen and just making up addresses. :)

Bitcoin2Cash also can use Google Auth (OpenID) with two-factor authentication.

Sorry completely off subject but I noticed Stephen has a picture of the "face" on Mars. A) that is awesome. b) how do i get a picture attached to my profile? Ive been looking around here. Am i a)retarded or b) a newbie and not authorized to customize my profile with a picture yet?

A) Im a retard.... :) lol

Interesting! So what really happened here?