DES to the 40k. Let's go DES 40k would make up for my 8BTC theft, GO DES!!!!!! I wish the best to you, When u sell, try not to crash the market Also we don't know what kind of volume we will have, if its low its going to be hard to dump 8btc...The value might even drop some at first, there's usually scare tactics before a pump I have no intention in selling just yet, this coin is just getting warmed up. Just a little reminder to all reading this, enable 2fa, i didn't and it cost me 8BTC
|
|
|
The thing is that I stupidly been keeping my coins on the exchange, I haven't downloaded a wallet for several weeks, even then because i'm a linux user, I always compile from github source.
What was the last wallet you downloaded? Which coin, I mean. Same question to the others who were hacked. Last wallet I compiled on this machine was Britcoin, I know the devs on that one plus I got the source from github. That was about a month or more ago.
|
|
|
hmm interesting how this is turning out. I have sort of known Ryan and chatted with him a bunch of times last few years. And best i could tell he seemed like an honest guy.
I last talked to him i think on Cryptsy's Freenode IRC channel. Where i do know Bittrex-Ritchie hangs out (and i believe is higher up than Ryan)
SO you *may get answers if you go on IRC and find Ritchie.
So i checked my account and it was fine and i have no 2fa either. I also have maybe $20 worth of coins LOL
But this got me thinking if a hacker is trying multiple accounts why has no one come forward saying they got alerts from failed login attempts ? Like how would you know the account has 2fa or not unless you TRIED logging in? Like i have used my email on places and i notice some attempts randomly to get into my Steam account (all failed) Point being is i get a validation email + warning etc.
So if no one is getting any alerts then how the fuck does the hacker know how to choose only accounts with no 2fa.. unless they work there LOL
I could work at an exchange then rip-off all kinds of guys and i would of course pick the guys with no 2fa then i would tell them all well you got hacked noobs.. fix your Norton + updates yur Bitcointalk !
Interesting theories, i'm leaning towards, the bittrex servers being compromised, and the hacker is picking off all the accounts without 2fa with at least 1BTC in them. I think your $20 is safe lol. On other exchanges, I get login successful or failed email notifications, not on bittrex though. How does the attacker know if the account has 2fa? Unless they try logging on to them one by one.
|
|
|
.. Did you have 2fa enabled?
no I thought so.
|
|
|
Did you use a public wifi spot? Is your wifi in your house protected? How many persons do have access in your (home)network?
I'm on my home network, cable only, wifi is disabled, I don't like to use it. Due to the security and health implications. Only I have access to the network.
|
|
|
The thing is that I stupidly been keeping my coins on the exchange, I haven't downloaded a wallet for several weeks, even then because i'm a linux user, I always compile from github source.
|
|
|
Just got this reply from bittrex:
Ryan Hentz (Bittrex)
Apr 3, 07:38
Hi,
It doesn't matter how many have lost their funds, if you all downloaded the same software it makes perfect senses.
I'll get this to someone who can send you the login history data.
Thank you,
Ryan
|
|
|
yesterday my bittrex account was also hacked 14 btc were withdrawn through transactions with YBC and XDQ ://
That sucks man, sorry for your loss. That makes 3 accounts accessed so far, there is a pattern forming. Have you been in touch with bittrex? Hmm, I'm starting to think that bittrex has been compromised. I'm going to ask for proof that my account was accessed through my machine. I suggest you do the same. This could be a bigger problem, than we think. yes, they wrote me same as others "Unfortunately, there is nothing we can do to recover your funds" and "The attacker sold the coins from the same IP you typically login" I think affected a lot more, but not all have understood it and found this thread I think it's a lot more than just us three, that would put the blame on bittrex's side, ask them for your logs. Did you have 2fa enabled?
|
|
|
The thing is, that I haven't installed any wallets in the last few weeks, i've been keeping my coins on the exchanges.
Now there's been three hacks, it's puts suspicion that problem is on bittrex's end.
|
|
|
I just mailed the following to Bittrex:
Hi,
Please could you provide me with the logs my account as I wish to check weather or not my account was accessed from my machine.
So far there has been three people that have lost all their funds, that doesn't sound like a local machine that’s been compromised.
Leigh.
|
|
|
Here is the answer I've got Bittrex:
Ryan Hentz (Bittrex)
Apr 2, 19:08
Hi,
Our records show that all orders placed on your account were done so from your typical login ip. This means the attacker somehow has access to your machine. Have you installed any new software recently? This includes things like browser plugins.
The attacker also immediately withdrew the coins from his account via the api. There is no way to recover the funds.
Please make sure to enable 2fa to protect your account from being breached in this way.
Thank you,
Ryan The whole day I'm trying to find any traces in my local machines. Nothing so far Any findings, leigh2k14? I haven't found a thing yet mate, ask bittrex for proof that your account was accessed from your machine If they are lying to us then the problem is on their end.
|
|
|
yesterday my bittrex account was also hacked 14 btc were withdrawn through transactions with YBC and XDQ ://
That sucks man, sorry for your loss. That makes 3 accounts accessed so far, there is a pattern forming. Have you been in touch with bittrex? Hmm, I'm starting to think that bittrex has been compromised. I'm going to ask for proof that my account was accessed through my machine. I suggest you do the same. This could be a bigger problem, than we think.
|
|
|
DES to the 40k. Let's go DES 40k would make up for my 8BTC theft, GO DES!!!!!!
|
|
|
Just got this reply from bittrex:
Ryan Hentz (Bittrex)
Apr 2, 19:51
Hi,
We have looked into multiple accounts that were hacked in the same way as yours. All of the orders placed on these hacked accounts were done so from the users own machines as we have login data that shows this. The attacker also immediately withdrew the stolen funds via the api. The attacker seems to also be using a VPN as their account has lots of different ip's for the login
Have you installed any wallet software within the past couple of days? Another one of the users said they had installed some items and even saw that the attacked cleared their log files (they were on linux), it could even be something like a browser extension. Any changes to the system....
Thank you,
Ryan
Interesting that they mention multiple accounts - that means that more than two were hacked... It looks like they must have used some sort of bot. Too many to manually bruteforce. Multiple!
|
|
|
It's really early here in the UK, i'm gonna get some sleep.
I have a possibility of what might of happened. It's obvious I was targeted.
Is there anyone here with hacking skills willing to help? i'll have to speak through PM.
Leigh.
|
|
|
Just got this reply from bittrex:
Ryan Hentz (Bittrex)
Apr 2, 19:51
Hi,
We have looked into multiple accounts that were hacked in the same way as yours. All of the orders placed on these hacked accounts were done so from the users own machines as we have login data that shows this. The attacker also immediately withdrew the stolen funds via the api. The attacker seems to also be using a VPN as their account has lots of different ip's for the login
Have you installed any wallet software within the past couple of days? Another one of the users said they had installed some items and even saw that the attacked cleared their log files (they were on linux), it could even be something like a browser extension. Any changes to the system....
Thank you,
Ryan
|
|
|
hello. im sorry about your coins. id like to ask. do you have teamviewer, vnc or skype installed in your computers? it sounds like the attacks may have been local?
also have you installed https everywhere from eff? it is possible a browser or spoof attack
I have skype installed. Do you know any hacks that can be used on skype? No I don't have https everywhere, I used to.
|
|
|
Someone might have got your email and he might be bruteforcing manually. I don't know if there is any tool which can be used to bruteforce forms with captcha.
There are email lists for bitcoiners - when Cryptsy was dying, I got a phishing email, but it was to an old email address that I'd had at Mintpal not the email address I actually used at Cryptsy. So i knew they hadn't been hacked. I'm pretty sure that people with accounts at mtgox are on a list somewhere too. If the password you are using is similar, then they probably tried a variation of that. I forgot about craptsy, my passwords are very similar.
|
|
|
My copy pre dates Feb 20th.
|
|
|
Someone might have got your email and he might be bruteforcing manually. I don't know if there is any tool which can be used to bruteforce forms with captcha.
I changed my password on my email just for good measure.
|
|
|
|