He's implying an Electrum vulnerability...? Exactly... What's going on? Any other reports of this??
|
|
|
Trust me. I'm on a boat, with a personal crappy old laptop. No one has been near this. My internet is 150kb/s tops and I hate it!
Additionally, think about anyone else that has access or come in contact with your computer or any usb drive in the past. Additionally, since you are on a boat with a 150 kb/s connection that also brings 2 concerns to my mind : 1) you aren't keeping your windows box patched because of your extremely limited bandwidth. 2) You are using a wifi hotspot that is compromised. The fact that you are so incredulous that you have been compromised is a security concern in itself as their are so many ways to be compromised with the way you store bitcoins. At most you should be upset and slightly shocked that you were compromised but aware that you made some security shortcuts and need to do better in the future. Windows is up to date, I don't think the hotspot is conpromised. It's a very good system, I know the owner of this place and I've talking with the IT to try and get me some more speed! and I use VPN anyway (which I had to pay for.
|
|
|
But 0-days? I only have a few new usb drives that I use... all that for 0.9 btc?
The attacker is unlikely to know what your balance until it is taken or attacking many people at the same time. There are many 0day exploits in the wild and your computer if not properly patched with the latest flash/browser/OS patches can be vulnerable to older exploits as well. Even if you use WPA2 on your local router , if you live in an apartment building and a hacker lives next door and can see your hotspot they can perform a dictionary attack or bruteforce attack on your wifi password and than serve you up a malicious page with a 0 day exploit. Yeah I am actually pretty hot on security and pentesting. Which is why I'm so confused! Again, I'm going to go with the point of failure wasn't you, I would press that there is a failure point with the VPN. If someone has your info, they could just wait for you to confirm signing the transaction then send it immediately thereafter. I've read cases of botched tor exit nodes that pass fake blockchain.info credentials to users to log the credentials. was the btc cold for a while beforehand? why were you moving it to this address? No it was fresh from localbitcoins. My VPN is iPedator which I trust
|
|
|
Yeah I am actually pretty hot on security and pentesting. Which is why I'm so confused!
If you have any IT job or a job as a network administrator you are a much higher target for hackers and the NSA/FBI(remember many of them are corrupt as well) You should always assume that whatever you have in your primary computer that you install software on and browse the internet with can be instantly compromised. I find that this is a good thing to expose myself to with small amounts of bitcoin as it is a cheap way of telling me my computer is compromised(never happened yet) If you do not use cold storage than you need to at least use a hardware wallet. It doesn't matter that you are security conscientious as security is difficult to do right and all it takes is one mistake or one unlucky encounter. Trust me. I'm on a boat, with a personal crappy old laptop. No one has been near this. My internet is 150kb/s tops and I hate it!
|
|
|
But 0-days? I only have a few new usb drives that I use... all that for 0.9 btc?
The attacker is unlikely to know what your balance until it is taken or attacking many people at the same time. There are many 0day exploits in the wild and your computer if not properly patched with the latest flash/browser/OS patches can be vulnerable to older exploits as well. Even if you use WPA2 on your local router , if you live in an apartment building and a hacker lives next door and can see your hotspot they can perform a dictionary attack or bruteforce attack on your wifi password and than serve you up a malicious page with a 0 day exploit. Yeah I am actually pretty hot on security and pentesting. Which is why I'm so confused!
|
|
|
No one has access to my pc at all. I honestly can believe I've been hacked... all that trouble for 0.9btc? I've run scans with every tool out there... Nothing. This pc is hardly ever online, I don't ue it for browsing or anything. I'm stumped... and really pissed off.
Anti- virus software isn't foolproof and cannot catch many types of infections. All it takes is one click on a link in a phishing email, one infected jump drive or external plugged in for a brief moment, visiting one page that has a 0 day exploit, 1 piece of infected pirated software or crack, or an insecure wireless AP. This is why you should never store what you cannot lose on a windows machine connected to a network or at least use a hardware wallet. But 0-days? I only have a few new usb drives that I use... all that for 0.9 btc?
|
|
|
No one has access to my pc at all. I honestly can believe I've been hacked... all that trouble for 0.9btc? I've run scans with every tool out there... Nothing. This pc is hardly ever online, I don't ue it for browsing or anything. I'm stumped... and really pissed off.
|
|
|
can you send us a screenshot of your transaction log
Which one? From electrum? Or to electrum - because that came from an exchange. Thanks
|
|
|
I don't get it. This PC isn't used much and is always running a VPN. Is there any way there is something wrong with electrum?
|
|
|
Windows 7 and VMware from ecypted container running Ubuntu
|
|
|
I would suggest you to change your password for Bitcointalk and Email now. They may have been leaked.
Done and done. still can't find evidence of an infection. I use pretty good security and scan my computer twice a week at least. And my IP is never public. Damn. Anyone in the BTC lendng business? I really need that BTC!
|
|
|
I was running linux. Ubuntu 14
|
|
|
No I don't download anything suspicious. The last thing I downloaded was a new driver for my soundcard - from the official website
|
|
|
Sorry to ask but I only use Bitcoin Core.
Is Electrum like Brainwallet?
Because if it is then you should know that there is people constantly running brute force apps and waiting for a transaction to take place, then snatch the coins to their own wallet.
There was a post about this someweher in the forums.
Search for Brainwalet hacking and you will find it.
No, electrum is really different from the Brainwallet. The first one uses a seed of 12 words so it is really impossible to bruteforce it, instead the second one use only a password. I am still thinking that it was a computer problem. OP can you explain again if you have stored the seed in some .txt file on the pc? I store the seed in a truecrypt vault. In the past I haven't even bothered saving the seed for security reason. I jut backup my Private keys - which are encrypted And the password on the wallet is not used anywhere else.
|
|
|
.... yes that is very strange to see this kind of transaction, sorry to see this one, how this hacker was quick in this transaction just delay of 1 minute ? I do not know, it is really strange. Have you downloaded something of strange in the past days/weeks? No I download a lot of software and I know a scam/trojan link when I see one Can't find any evidence of an infection. I use VPN on my VM, can't figure this out What AV software are you using if I may ask? Have you used this specific Electrum wallet before (or any other addresses from the same seed)? Did you access the wallet before the funds were stolen - or were they just taken immediately after an initial deposit? A VPN wouldn't really help you in terms of security for this kind of thing - more useful for privacy and anonymity. Yes I've used the same electrum wallet before but not much. Oh and I use Avira, MS essential and Malwarebytes. I keep my Computers in order don't you worry
|
|
|
I've had much more btc in that wallet in the past. And I only fire up my VM to check my electrum which isn't that often. WHY ME AND why now. This is bullshit!
|
|
|
Can't find any evidence of an infection. I use VPN on my VM, can't figure this out
|
|
|
|