Title: Funds stolen from blockchain.info Post by: lonari on November 01, 2014, 05:14:05 PM Was accessing my wallet from Tor and then suddenly, 1.84100102 BTC was transferred to 1FJxeqyAAkxjbV5ijh3CnNkbgdu8zCVsY7
2FA was always enabled. Using google auth. Do I have any recourse? Title: Re: Funds stolen from blockchain.info Post by: letyouearn on November 01, 2014, 05:54:13 PM How is it possible buddy ? How can anyone stole bitcoins from ur blockchain wallet without knowing ur identifier and password . I am totally confused about this issue. If this is really happening, then i have to stop using blockchain and have to transfer my all funds to a secure btc wallet.
Title: Re: Funds stolen from blockchain.info Post by: lonari on November 01, 2014, 06:18:06 PM i think it has something to do with malicious Tor exit nodes.
so whatever you do, don't use Tor with web wallets >:( Title: Re: Funds stolen from blockchain.info Post by: PolarPoint on November 01, 2014, 06:19:26 PM You should search the forum about blockchain.info wallets and tor. You are not the only one with funds stolen. Tor and web wallets don't mix.
Title: Re: Funds stolen from blockchain.info Post by: cma3 on November 01, 2014, 06:22:17 PM sounds familiar:
https://bitcointalk.org/index.php?topic=821829 Title: Re: Funds stolen from blockchain.info Post by: xcapator on November 01, 2014, 11:04:33 PM Do not use TOR to access your wallet / blockchain.info, I believe you were the victim of man-in-the-middle attack, there is known POODLE vulnerability in TSL/SSL that's being exploited in TOR network
similar thread : https://bitcointalk.org/index.php?topic=828238.0 Title: Re: Funds stolen from blockchain.info Post by: lonari on November 02, 2014, 06:13:38 AM i know it's not a huge amount, but do I have any recourse?
Title: Re: Funds stolen from blockchain.info Post by: TheNinja on November 02, 2014, 06:46:28 AM 1.8 BTC isn't a huge amount?...Damn I wish I had that much. It's hard to get it back...particularly due to the nature of cryptocurrency
Title: Re: Funds stolen from blockchain.info Post by: Domino on November 02, 2014, 07:59:27 AM i know it's not a huge amount, but do I have any recourse? Bitcoin transcation is irreversible and I am afraid you won't be able to get your bitcoin back. Title: Re: Funds stolen from blockchain.info Post by: pooya87 on November 02, 2014, 10:18:57 AM Was accessing my wallet from Tor and then suddenly, 1.84100102 BTC was transferred to 1FJxeqyAAkxjbV5ijh3CnNkbgdu8zCVsY7 how is this possible, i see a lot of posts about losing bitcoins while using Tor but all of them have one thing in common: they don't have 2FA.2FA was always enabled. Using google auth. Do I have any recourse? are you sure you didn't mess up like using wrong recipient address Title: Re: Funds stolen from blockchain.info Post by: HQLD on November 02, 2014, 10:54:14 AM I also know someboy who have had the same experience. If the exit node is running by a criminal you may loose all your coins.
Title: Re: Funds stolen from blockchain.info Post by: thompete on November 02, 2014, 10:57:08 AM Was accessing my wallet from Tor and then suddenly, 1.84100102 BTC was transferred to 1FJxeqyAAkxjbV5ijh3CnNkbgdu8zCVsY7 how is this possible, i see a lot of posts about losing bitcoins while using Tor but all of them have one thing in common: they don't have 2FA.2FA was always enabled. Using google auth. Do I have any recourse? are you sure you didn't mess up like using wrong recipient address It has to do something with javascript and tor running along. There are a lot of security issues doing it, and there have been several cases of this happening. Title: Re: Funds stolen from blockchain.info Post by: Spoetnik on November 02, 2014, 11:01:14 AM I also know someboy who have had the same experience. If the exit node is running by a criminal you may loose all your coins. far more likely than a man in the middle attack. Title: Re: Funds stolen from blockchain.info Post by: Gleb Goodston on November 02, 2014, 06:39:42 PM Yes Tor & any online wallet don't mix & you should expect to lose everything. Never access with Tor you will regret it. It's the same with emails and other things too.
Title: Re: Funds stolen from blockchain.info Post by: hamza171 on November 03, 2014, 12:03:49 AM So how is TOR safe if someone can do this?
Title: Re: Funds stolen from blockchain.info Post by: MystPhysX on November 04, 2014, 05:58:33 AM So how is TOR safe if someone can do this? This is using the POODLE exploit, it's genius. Only way to stop it is to disable SSL 3.0 on both ends. So using TOR only makes the MITM part easier, it's not that TOR is the only way to accomplish this.Title: Re: Funds stolen from blockchain.info Post by: kruhft on November 04, 2014, 06:20:56 AM Was accessing my wallet from Tor and then suddenly, 1.84100102 BTC was transferred to 1FJxeqyAAkxjbV5ijh3CnNkbgdu8zCVsY7 2FA was always enabled. Using google auth. Do I have any recourse? Looks like whoever it is has been pretty active: https://blockchain.info/address/1FJxeqyAAkxjbV5ijh3CnNkbgdu8zCVsY7 Title: Re: Funds stolen from blockchain.info Post by: sionsandman on November 04, 2014, 12:05:55 PM Was accessing my wallet from Tor and then suddenly, 1.84100102 BTC was transferred to 1FJxeqyAAkxjbV5ijh3CnNkbgdu8zCVsY7 2FA was always enabled. Using google auth. Do I have any recourse? Looks like whoever it is has been pretty active: https://blockchain.info/address/1FJxeqyAAkxjbV5ijh3CnNkbgdu8zCVsY7 WOW :o Title: Re: Funds stolen from blockchain.info Post by: ranochigo on November 04, 2014, 12:09:28 PM So how is TOR safe if someone can do this? Tor is pretty safe as long as you download all the updates. The latest Tor update disabled SSL3 and it is not possible to MITM attack with the newest version. Title: Re: Funds stolen from blockchain.info Post by: marcelus on November 05, 2014, 06:32:26 PM So how is TOR safe if someone can do this? Tor is pretty safe as long as you download all the updates. The latest Tor update disabled SSL3 and it is not possible to MITM attack with the newest version. It's exit nodes that are the problem. Title: Re: Funds stolen from blockchain.info Post by: PolarPoint on November 05, 2014, 07:11:02 PM Tor is pretty safe as long as you download all the updates. The latest Tor update disabled SSL3 and it is not possible to MITM attack with the newest version. I don't know Tor enough to be criticising it, but the whole idea seems rather unsafe. I don't feel comfortable with typing any passwords in it. Title: Re: Funds stolen from blockchain.info Post by: Tstar on November 06, 2014, 07:37:55 AM people who using TOR to access blockchain faced this problem
it was an issue with exit node on tor network Title: Re: Funds stolen from blockchain.info Post by: ranochigo on November 06, 2014, 07:48:21 AM Tor is pretty safe as long as you download all the updates. The latest Tor update disabled SSL3 and it is not possible to MITM attack with the newest version. I don't know Tor enough to be criticising it, but the whole idea seems rather unsafe. I don't feel comfortable with typing any passwords in it. Title: Re: Funds stolen from blockchain.info Post by: P4man on November 06, 2014, 08:40:06 AM blockchain uses https (obviously). If there is a problem with that, a man in the middle attack wouldnt be confined to tor at all. Anyone who could snoop your traffic would be able to steal your coins, and that would be problematic to put it mildly.
Title: Re: Funds stolen from blockchain.info Post by: dooglus on November 06, 2014, 07:45:22 PM blockchain uses https (obviously). If there is a problem with that, a man in the middle attack wouldnt be confined to tor at all. Anyone who could snoop your traffic would be able to steal your coins, and that would be problematic to put it mildly. That's not true. In order to use the POODLE exploit you need to be able to modify the stream, not just read it. The problem is only with webservers which allow SSL3. Everyone should disable SSL3 to prevent the attack. blockchain.info uses cloudflare, which seems to mean they don't use SSL3 - which leaves me wonder how this attack is being successful. |