|
Does anyone know the lowest point where bitcoin dominance was? I recall at one point it was like at 37% at the lowest?
|
|
|
|
|
I seen his videos on youtube. You agree he is legit right?
|
|
|
|
|
Hey all. I know you cannot infect a hardware wallet. Im well aware of that. I mean a laptop powerbank or powerbank infecting your computer or laptop. Thus imagine your password manager like lastpass or keepass gets compromised. Or other wallets you have on your wallet gets compromised such as electrum or similar wallets with other altcoins.
Would you say its good to be always paranoid though? I mean remember... when electrum message show update... how much percentage of ppl even think... okay this looks suspicious. Would you say that is something to be paranoid about? Like if i opened electrum and saw that update that ppl saw... i could not tell you if i would have updated it or not.... because well its a message directly from electrum. But if it goes to github... obviously i would be a bit suspicious but i wouldnt know. But always better to be careful and paranoid right? I mean, anyone that is not paranoid with electrum, well they wouldnt think much besides okay i got to an update.. you agree with me here?
Well i just want to know if an ac power bank can be compromised... Example imagine someone put something in it... then sells it. Then that person who uses it whether they have crypto or do things like online banking and online shopping... then the seller could see everything on their screen and keylog everything. I mean back then... i never had any laptop or online security at all. I didnt even use a password manager. You would not believe how foolish my passwords were for many sites that i go on. So when i hear okay someone could stick a usb flash drive in your laptop while you are away for 1 minute and you got a virus... thats when i thought well what else could hackers do? I mean let say you know someone has lot of crypto and they want to buy a mouse or keyboard and you have one. Well a scumbag hacker could put things in it... then sell it to you without you knowing anything was done to it... would you agree?
Okay powerbanks connected usb or usb-c could compromise the device. THat is what i wanted to know. So now i know this for sure but i figure it has to since if flash drive connected usb could... usb-c shoudl as well.
Well possible and probable... i get what you mean by it. Well if someone on amazon or ebay was selling keylogging flash drives, well they could say i bought from reseller or it was new etc... and not be responsible.
Because i previously a long time ago have bought a used modem before. But of course back then, i had no computer security whatsoever. So i want to know like what products you buy can possibly be compromised. I mean put it this way... if you use a computer for crypto and banking, you certainly dont feel safe buyed a used computer right? But if you wipe it fullly and use a new hard drive... that is fine? But of course there is chance of RAM having malware... i read about this. Yes its very paranoid. But i rather be that then not think of anything... and then suddenly you got keylogged or malware without you knowing...
|
|
|
|
HCP, has there been any case reported where someone downloaded electrum from the official site... did not verify the .exe... and then downloaded a fake electrum?
Not that I'm aware of... most of the "I definitely downloaded from Official site" claims turn out to be incorrect after the user actually views their browser history and sees exactly where they downloaded from. In most instances they simply see an identical site and think it's the official one, but it'll be electrum.net or electrun.org or one of the punycode URLs etc. The sneakiest one I've seen so far is a fake domain that redirects you to the official site on subsequent visits... so it lets you download the fake, then if you try and goto that URL again, it simply redirects to the official site to make you think you were on the official site all the time... very sneaky. But even though there hasn't been a hack on the official server that puts fake versions on their download server... I still verify the signature. It takes less than 30 seconds. Hey hcp... yes the first statement you say make lot of sense. Ppl could think they installed it from the actual site when they did not. But the fact that there has not been a case of downloading from legit site... means hackers havent did that yet. How does one get to the fake domain? You mean by typing electrum in google right? Also whenever i typed electrum in google, i dont think i ever seen any fake electrum wallets sites under google search on the 1st page... unless you are talking about those google ads where they list electrum wallet at the top which are most likely fakes? I think when these electrum issues and fake wallets were happening in early 2018, i dont think i seen a fake wallet site on the 1st page of google. I mean if there were, it had to been maybe 1 or max 2 right? Of course im not talking about the ones at the top with google ads. So im wondering how do ppl find these fake electrum wallet sites unless its always the one at the top? |
|
|
|
Okay i see this. So these actually charge your laptop as well? Or you use it for your phone? IM curious but what laptop do you have that works with these power banks?
So is it possible or not possible for someone in install malware/keylogger on this... then moment you connect laptop to it or tablet/phone to it... you get keylogged?
The only one I've used to charge a laptop is the Chargetech power bank, because it has an AC outlet whereas the others don't. The other power banks I use are mainly for my phone, my headphones, and various other electronics that need to be charged via USB. That Chargetech badboy will charge any laptop. It'll power your refrigerator for a short time, too (though I haven't tried it). And I think you got your answer from other users: there won't be any keylogger on any of these chargers. Well, maybe some of them think it's possible, but I'm sure as hell not worried about it. Okay yes i meant like a powerbank that charges your laptop... so the chargetech power bank. But do you think its possible for someone to do something do it put malware/keylogger on it... thus compromise it... then when you connect it to your laptop... you get compromised? I assume possible but no one would go to these lengths right? Also the chargetech power bank... its connects to the power port of your laptop right? Or does it go into the usb-c of your laptop? Did you bought all these items new from amazon and that chargetech site? It was from amazon directly right and not 3rd party? If so, then there would be nothing to worry about. |
|
|
|
1. What if you bought say a used modem/router? Then start using it. Is it possible to get hacked very easily with this if you use a laptop and connect to the modem/router? Yes. An attacker could replace the modem or router's firmware with a malicious version which could do a variety of things, including transmitting your data to them, allowing them access to your home network, transferring malware on to connected devices, etc. 2. What if you bought like a charger for your laptop? Or what about those powerbanks that work for laptops? Like those that connect to your laptop to give you a charge when you cannot find an outlet? Could someone do something to it where when you connect it to your laptop, you can get malware/keylogged? Provided your laptop charges from a dedicated AC power port such as this one, then there is no risk of infection:  If your device charges via a port which also accepts data connections (so all mobiles and tablets, and some laptops, notably Apple ones), then it is entirely possible. This kind of attack is known as " juice jacking". 3. What about connecting your iphone or android phone to someone's power bank? Or what about connecting them to an outlet say at starbucks or coffeeshop? Could someone set something up in those outlets etc?
Yes. This is "juice jacking" as above. As well as DIYing your own cable as HCP has said, you can buy adapters which will fit to any cable and only transfer the charging pins and not the data pins. Exmaple: https://www.amazon.com/PortaPow-3rd-Data-Blocker-Pack/dp/B00T0DW3F8/Hi there. Okay thats what i thought about with the modem/router. Thanks for confirming this. You posted the plug for a laptop charger. Yes that is what i mean. Something like that which connects to the power port of your laptop. So as long as you stick something like that to your power port to your laptop, its impossible to get anything? What if they compromise the charger itself? The big part of the laptop charger? What about a powerbank... that connects to something like that? Are you saying if it looks anything like that... that you connect to your power port on your laptop even if its a shorter one... its impossible? I seen power banks where it does not charge into the power port in the laptop... instead it charges into the usb-c port of the laptop instead. Have you seen this or know what im talking about here? So you are saying.. that is definitely possible for malware right? And that is juice jacking? Thanks. |
|
|
|
So is it possible or not possible for someone in install malware/keylogger on this... then moment you connect laptop to it or tablet/phone to it... you get keylogged?
[.. ]is it possible for someone to put malware or firmware on it where the moment you receive the powerbank... then whenever you connect it to your laptop or tablet/phone... now your device is compromised. Thus any password manage you use or email you use when you type it in your laptop, is now compromised because that powerbank is compromised. Does that make sense in what im asking?
Yes. Anything which has a micro controller can be tampered with, either by reprogramming (doesn't work with all micro controller) or replacing it. That's by the way one reason (if you have sensitive data on your computer) why i would discourage from plugging in USB sticks from other people. They don't necessarily want to intentionally damage you.. but who knows how they are handling their ITsec.. USB sticks are the most prominent and most probable example of getting infected. Real micro controller tampering happens rarely, but is very well possible. But if you start to believe everyone wants to infect you (e.g. official powerbank seller, amazon, etc..), you might start getting a bit too paranoid. Bob thanks for the response. Well for poker banks whether its for laptop or phones/tablets... if its from the official site, well that is safe. I mean say from amazon 3rd party on ebay... would you say there is risk with this? Also with amazon... assuming it comes directly from amazon.com and not 3rd party, there is no risk right? Now if you buy a powerbank from dell or apple site... pretty much zero risk since it comes from them directly right? How much money and time would it take for someone to install keylogger/malware into something like a powerbank? Whether its a powerbank for laptop or powerbank that is used for portable devices? Woudl it be even worth the time and money though? But if they knew the buyers had crypto on their computer for example, then wouldn't some scum do that? Yes i know usb flash drives can easily have malware. Even i know this. Yes if someone connects usb stick to your laptop, that is not good because like you said most likely they are not trying to put malware on your computer, its you dont know where their usb has been. But the real micro controller tampering you are talking about, what devices would this include? I assume 1. Modems 2. Routers 3. Printers 4. Powerbanks 5. Mouse 6. Keyboard Wouldn't mouse and keyboard be the easiest and least detectable thing because most ppl wouldnt even think about it? Example imagine someone knows a certain someone has crypto in their computer and does not have nano ledger etc. Someone could lend or give someone a mouse or keyboard...they connect to their computer, they are now screwed right? But where would you rank powerbanks? What about powerbanks that only connect to the power outlet in your laptop? I mean it does not connect to your laptop usb. But still that doesn't matter? What about say powerbanks that connect to usb-c? Now that is much more different right? What if someone lends you say their asus or dell laptop charger? Is it possible for them to lend or sell you an asus or dell laptop ac adapter charger where connecting it gives you malware/keylogger? Of course it connects to the power plug in your laptop only... not the usb-c port in your laptop. |
|
|
|
...but if they never seen that message ever and it looks legit since its from the client, most ppl wouldnt think much of it unless they are very cautious about it right?
One could also argue that if a piece of software they've been using for a long time suddenly does something they've never seen before (ie. Suddenly pops up an 'Update' message), would that not make you suspicious that something might not be right?  Still, I agree with pooya87... verifying the digital signature is an absolute must... even when I've manually typed in electrum.org and downloaded the .exe from the official site... I'll still grab the .asc and verifying the .exe is legit BEFORE I run it. EVERY. SINGLE. TIME. HCP, has there been any case reported where someone downloaded electrum from the official site... did not verify the .exe... and then downloaded a fake electrum? |
|
|
|
|
Im confuse why you say
powerbank to laptop to nano ledger s?
Do you mean if you wanted to use the nano ledger s but the issue is your laptop is low battery so you connect the power bank to it to it can charge it? That way it has enough battery on the laptop so you can connect your nano ledger?
If so, i didn't mean that. I just mean like if you ever connect a power bank to your laptop... is it possible for someone to put malware or firmware on it where the moment you receive the powerbank... then whenever you connect it to your laptop or tablet/phone... now your device is compromised. Thus any password manage you use or email you use when you type it in your laptop, is now compromised because that powerbank is compromised. Does that make sense in what im asking?
I know that even if your laptop is compromised... even if you connect your nano ledger s to it, there is no issue because when you send btc... it will show the actual address you are sending to if its to a different btc address, then you wont send the btc.
|
|
|
|
Okay i see this. So these actually charge your laptop as well? Or you use it for your phone? IM curious but what laptop do you have that works with these power banks? So is it possible or not possible for someone in install malware/keylogger on this... then moment you connect laptop to it or tablet/phone to it... you get keylogged? |
|
|
|
2. What if you bought like a charger for your laptop? Or what about those powerbanks that work for laptops? Like those that connect to your laptop to give you a charge when you cannot find an outlet? Could someone do something to it where when you connect it to your laptop, you can get malware/keylogged?
3. What about connecting your iphone or android phone to someone's power bank? Or what about connecting them to an outlet say at starbucks or coffeeshop? Could someone set something up in those outlets etc?
OK, so I'm no expert here, but I own several power banks (I find them incredibly useful when I'm out on my bicycle). I'm almost certain that connecting your Ledger to a power bank would not be an issue. I'm assuming you mean the connection would be power bank-->laptop-->Ledger, because it would make no sense to just connect the power bank to the Ledger. If anyone can show I've given some bad advice, I'm all ears. I did hook up my Ledger Nano S, and it's great! Very easy to use, and I even spent a ridiculous amount of time setting up the words in the steel wallet that came with it. I've never used a hardware wallet before, and I'm really liking this. Can you post link of which powerbank you have? Like is it powerbank only for laptop? Or its those that are for tablets/phones mostly? |
|
|
|
2. What if you bought like a charger for your laptop? Or what about those powerbanks that work for laptops? Like those that connect to your laptop to give you a charge when you cannot find an outlet? Could someone do something to it where when you connect it to your laptop, you can get malware/keylogged?
3. What about connecting your iphone or android phone to someone's power bank? Or what about connecting them to an outlet say at starbucks or coffeeshop? Could someone set something up in those outlets etc?
OK, so I'm no expert here, but I own several power banks (I find them incredibly useful when I'm out on my bicycle). I'm almost certain that connecting your Ledger to a power bank would not be an issue. I'm assuming you mean the connection would be power bank-->laptop-->Ledger, because it would make no sense to just connect the power bank to the Ledger. If anyone can show I've given some bad advice, I'm all ears. I did hook up my Ledger Nano S, and it's great! Very easy to use, and I even spent a ridiculous amount of time setting up the words in the steel wallet that came with it. I've never used a hardware wallet before, and I'm really liking this. Hi there, when you say powerbank, you mean the one specifically for your laptop? Or its one of those powerbanks where you can charge your laptop but also usb devices like tablets and phones? Im talking about those that you can connect to your laptop. But also the ones that connect to your usb devices. Well i don't mean connecting your ledger to a powerbank... im confused how you would do this? Can you explain? You cannot do this and im not sure why you would even do this if you can? A powerbank is meant to charge laptop, tablet, phone. I mean say your laptop is running out of battery and you need to charge it but you have no outlet or power... but you have a fully charged powerbank... you connect powerbank to your laptop. Then you use your laptop as normal. I mean could someone install malware/keylogger in that powerbank where the moment you connect it to your laptop or say a tablet/phone... get malware/keylogger? Like imagine you bought a powerbank from someone online or someone lend you it... but it has malware if you ever connect it to your laptop/phone/tablet. Then even once you unplug power bank from your laptop, the next time you open emails or enter your password to your email or password manager, then all your information is keylogged? That is what i mean by powerbank. Like you only use it when you need power and there is no outlet to connect to. Do you get what im asking? Im confused with your example. |
|
|
|
|
Okay has anyone here claimed bitcoin gold with coinomi with their iphone as oppose to their android phone? I only have iphone.
Also what about SV?
|
|
|
|
|
Related to this.
1. What if you bought say a used modem/router? Then start using it. Is it possible to get hacked very easily with this if you use a laptop and connect to the modem/router?
2. What if you bought like a charger for your laptop? Or what about those powerbanks that work for laptops? Like those that connect to your laptop to give you a charge when you cannot find an outlet? Could someone do something to it where when you connect it to your laptop, you can get malware/keylogged?
3. What about connecting your iphone or android phone to someone's power bank? Or what about connecting them to an outlet say at starbucks or coffeeshop? Could someone set something up in those outlets etc?
|
|
|
|
|
Okay i did not know it was other electrum versions as well... thought it was only btc version of it.
The thing is this. If you haven't used electrum in a long time, you have to agree most ppl wouldn't have a clue about this right? I mean if someone used electrum but haven't opened it in long time and just hold their btc, you can't really fault them for seeing a message there and upgrading it right? I know lot of ppl say its the person's fault... but if they never seen that message ever and it looks legit since its from the client, most ppl wouldnt think much of it unless they are very cautious about it right?
I didn't open my electrum for a while because of this issue as i didn't want to risk anything.
|
|
|
|
|
Hi only program i removed was exodus. I just deleted exodus exe file now from my downloads to recycle bin and deleted it.
But what about electrum, electrum-ltc and electron cash? I still have all these programs installed as it shows all of them in add/remove programs.
|
|
|
|
|
Does anyone know how this copy and paste issue arise from? People say malware but from where specifically? Does anyone know?
|
|
|
|
How did you find that electrum site? Was it through google or electrum? Because if you type in manually yourself www.electrum.orgYou should be fine right? |
|
|
|
|
Is this wallet better or worst than nano ledger s? Is there a reason why anyone would use any wallet besides trezor or nano ledger?
|
|
|
|
|
Has there been cases of this though? I know with nano ledger s, there was a case but that seller or person who did put a preset pin. Thus if you reset it, there would been no issue. But has there been cases of this whether trezor or ledger nano?
|
|
|
|
|
Show Posts
