[...] We don't believe that any side claims that the seed was sent in plain text, the "victim" (aka blackmailer) has always claimed that his seed was sent encrypted to Google and then a Google employee used it to steal his funds. We have millions of users but only his funds was stolen - and stolen by Google. We expect people on this forum to be smarter than that. And yes, you can verify that everything was broadcasted over HTTPS, just ask the "researchers" who made a case out of it in the first place to send you a copy of the wallet executable, install it on a sandbox and run a packet sniffer to see for yourself.
Wait.. are you actually really trying to justify yourself by saying your wallet did at least encrypt the seed before sending it over to google?? Like.. are you serious? A closed source wallet sending the seed via google API to check the spelling.. and then you come here and say "..well at least it was encrypted via https"... are you kidding?! I rarely encounter such incompetence, ignorance and arrogance in one person. Congratulations. Such statements are a really good reason to absolutely discourage the use of your wallet. |
|
|
|
P.S. I've noticed that you already replaced the transaction using "increase fee" despite the previous posts' info.
He indeed decided to increase the fee of the transaction stealing all of his coins.. OP, if you want to save your coins, do what i have posted. But replace the transaction id in the 3rd step with the actual one you now want to double-spend ( a219bb1983c1dea6a00360fa830e5961deaf5a1dccbafd0578c81087db3b50e5). |
|
|
|
|
People receive phishing mails all the time.
What is the big deal with this one?
Just because you bought a ledger and receive a ledger phishing mail?
Customers of coinbase also receive phishing mails "from coinbase". Customers of the bank of america also receive phishing mails.
Checking an email for authenticity is not too hard.
Already the senders address ledgersupport.io is enough to expose that mail as a phishing attempt.
If people don't even check the senders address, then they can be bribed into doing anything via email. They would fall for the classical nigerian prince. Nothing you can do to help those people. They got to learn it the hard way.
|
|
|
|
I've noticed that experienced crypto enthusiasts recommend not to use closed source wallets like Coinomi and Ownr. Open source ones are supposed to be more trustworthy. Why? Only a small number of hodlers can read the code in fact.
Because with closed source software (this doesn't only apply to wallets, but also your operating system for example), you can't be sure of what the software is doing. It might be malicious, might have serious bugs/vulnerabilities or might use outdated libraries which are known to be exploitable. With open source software on the other hand, you can check which libraries are used as well as check every new update being performed. While you are right that the majority isn't able to read the code (and even if, they probably wouldn't), a few technically versed people did look at it. Some bugs or malicious backdoors are found way faster in open source software than in closed source. If there was a malicious backdoor in electrum/wasabi/core, you can be sure that you would have already heard about it. This does not apply to closed source wallets. |
|
|
|
|
If you are not satisfied by their wallet, why not switching to a different one?
Both mycelium and samourai allow you to send transactions with a 1 sat/vB fee.
Mycelium is using a priority model with a pretty large span (i'd say roughly 20-30 to choose from) and samourai allows you to choose from a few priorities and further allows you to customize your fee completely.
Further, the fee is dependent on the size of the transaction and not the FIAT value. You would have paid the same fee if your UTXO's would have been worth 100.000$ instead of 10$.
|
|
|
|
write what do you think?
I think someone is moving BTC's around because that's exactly what is happening. Not that unusual that a currency gets moved around. maybe someone has found a vulnerability and is slowly taking large sums?
Vulnerability? Where? In windows, definitely. Adobe PDF reader? Well imaginable. Bitcoin network? Unlikely. Don't interpret too much into a few transactions.. Could be someone selling the coins or just moving them to a new wallet etc.. |
|
|
|
By the way, is that megabits?
It is MiB per day (24 hours). If you need to make sure that core never exceeds a specific upload rate, you need to limit it using external software (e.g. trickle). I tried "trickle -u 99999 -d 99999 bitcoin-qt" which returned: trickle: Could not reach trickled, working independently: No such file or directory
trickle: exec(): No such file or directory The first message might indicate an error, but did you check your bandwidth? This message often appears without any error. You might want to double check this. |
|
|
|
Ideally, I'd prefer to limit the bandwith specifically of bitcoin-qt. Is there an apt-get listed app that can do that?
Besides using the built in function as mentioned by mocacinno, you can use trickle to limit the bandwith of a specific application: trickle -u UPLOAD_BANDWIDTH -d DOWNLOAD_BANDWIDTH APPLICATION
You obviously need to replace UPLOAD_BANDWIDTH with the maximum allowed upload bandwidth, DOWNLOAD_BANDWIDTH with the maximum allowed download bandwidth and APPLICATION with the name of the application you want to limit. You might want to try the method mentioned by mocacinno (editing the core config file) first and afterwards trickle. If nothing works, feel free to report back and we can further debug your problem. |
|
|
|
So should I increase the fees as RBF is ticked on and will I get the coins by doing so?  ? No, this would just increase the fee and would result in the transaction getting confirmed faster. You need to create a new transaction spending the same input. To do so, do the following: - Disconnect Electrum from the Network
- Open the console (View -> Show Console -> Then the "Console" tab)
- Enter: wallet.remove_transaction("a219bb1983c1dea6a00360fa830e5961deaf5a1dccbafd0578c81087db3b50e5")
- Close and restart Electrum
- Create a new transaction sending your funds with a pretty high fee (definitely more than the 16 sat/vB from the first transaction) -> sign it and save/export it
- Connect electrum to the network again
- Import the just created transaction (Tools -> Load transaction -> from text/file (depending on what you have chosen in the last step))
- Broadcast it
You are just rubbed with a DDOS malware attack which changed the bitcoin address you input to hacker's bitcoin address.
 Please do not comment on topics you don't know anything about. Such useless and wrong information is just clogging up the thread making it more difficult to find valuable information. |
|
|
|
In the same way you warned the users of this forum a few months ago about a security breach affecting electrum, I humbly think that it might be good to inform the community of the dangers incurred following the receiption of phishing emails targeting ledger wallet owners.
Electrum had a (admittedly not severe at all) vulnerability. But there is no new ledger hardware wallet vulnerability. The only risk lies in getting phishing mails, which people receive anyways. I don't get why a forum should warn its user about phishing mails from a completely different company. In fact, it could even lead to a perceived security, in times where there is no such warning. But those phishing mails are still being sent. 24 hours a day, 7 days a week and 52 weeks a year. IMO unnecessary. |
|
|
|
yes history says sent 0.03 and using latest firmware.
Then your balance didn't reduce by 0.07. This most likely is just a displaying issue. ledger live is a horrible software. I'd definitely also recommend you to use a better interface to access your hardware wallet. Both electrum and wasabi are recommendable. The only thing that actually matters is finding out if 33yvXaH8ZvebD5ZTBTYzVUrAKCEaCiA1eR is a change address generated by your wallet. If it is, it's just a visual glitch, if it isn't there's a problem.
Since the input used is 0.94x BTC, he would be missing more than just 0.07 if this address wasn't part of his wallet. Most likely just ledger live being ledger live  |
|
|
|
Die gebühren an sich sind derzeit extrem hoch, ich hatte gestern über Anycoin BTC für 10,00€ geholt weil ich dachte damit kann ich nachträglich CPFP nutzen, von den 10,00€ hab ich genau 3,49€ erhalten, das fand ich schon extrem viel was man da verliert  Ja, wenn es recht flott gehen soll dann sind die Gebühren schon relativ hoch. Kombiniert mit einem hohen €-Wechselkurs, ergibt das eine GEbühr von ~6.50€. Ob du dabei 10€ oder 10.000€ kaufst, spielt keine Rolle. Die Gebühr ist von der Transaktionsgröße (Bytes) abhängig und daher unabhängig vom €-Betrag. Bei Bitcoin Core habe ich gesehen gibt es einen Punkt der nennt sich Gebühren von Betrag abziehen? Das würde heißen das nicht ich die Gebühren zahle sondern der Empfänger? Wie ist das den bei Electrum, kommen da die gebühren oben drauf oder werden die da auch abgezogen vom betrag?
In der Regel ist es so, dass du einen Betrag an eine Empfangsadresse sendest (z.B. 1 BTC) und dafür eine Gebühr zahlst (Gesamt: 1 BTC + Fee). Wenn du bei Core dort den Haken setzt, dann wird die Gebühr von dem zu sendenen Betrag abgezogen. Beim Empfänger kommen also 1 BTC - Fee an. Wenn jemand (Person oder Service) möchte, dass du exakt X BTC sendest, dann kannst du nicht X - Fee senden. Solltest diese Option daher immer ausgeschaltet lassen. |
|
|
|
Edit: RBF hab ich aus, da viele wo ich mit BTC bezahle das verlangen das RBF ausgeschaltet ist.
Hmm.. dann zahlst du aber bei Services ein, die eine Zahlung mit 0 Bestätigungen akzeptieren und dir quasi sofort was "gutschreiben" (wie manche Online Casinos etc.), oder? Ansonsten, wenn auf eine Bestätigung gewartet wird, macht das absolut keinen Sinn. Wenns dringlich ist, macht das Sinn (sofern man mit 0 Bestätigungen etwas bekommt), in allen anderen Fällen würde ich aber RBF schon aktiviert lassen. Schon allein für das bessere Gefühl die Zahlung "beschleunigen" zu können, falls es denn mal sein muss. Dann hoffe ich mal das ich nicht nen Monat nun warten muss...
Ich schätze mal spätestens Sonntag Nacht sollte es klappen, sofern nicht nochmal ein großer Preisanstieg oder -sturz von BTC kommt. |
|
|
|
The amount is ~$3200, I don't know if it worths for a moner, I think no. If I import the priv key in electrum wallet, is there any chance? There's no way to get back the tx as it has been sent to someone who has no direct contact with the receiver. Thank you.
As far as i know, blockchain.com does not set the RBF flag, which would be absolutely mandatory to be able to replace the transaction with electrum. You might want to post the TX ID, so we can check that for you tho. |
|
|
|
Hallo,
Ich hoffe der Bereich hier ist korrekt.
Hallo, ja alles gut  Ich habe BTC zu Coinbase geschickt allerdings beunruhigt mich das Electrum seit Stunden ein gelbes Schild mit Ausrufezeichen dabei stehen hat mit "Unconfirmed parent" [50.3 sat/b,33,12MB]
Alle anderen Transkation haben nur "Unconfirmed] und ein Zahnrad dort stehen so wie ich es kenne.
Das bedeutet, dass ein Input, den du verwendet hast, noch nicht bestätigt ist. Hab ich da etwas falsch gemacht nun? Ich wollte die gebühren erhöhen aber es geht weder per CPFP und RBF hab ich nicht gesetzt. Wie krieg ich die Coins den nun bestätigt das diese nicht ewig da stehen bleiben, hatte da noch nie Probleme eigentlich, erste mal nun.
Transaktion ID: e2fbef2ac8bcf8a3639554c39489822cc854f91bd74d62f92bcf0ac3be8053e1
Du hast nichts falsch gemacht. Deine Transaktion nutzt einen Input, der noch nicht bestätigt ist: TX mit 10 sat/vBDer aktuelle Stand ist also folgendes: - Deine Transaktion zahlt eine Gebühr von 50 sat/vB
- Die Transaktion deines Inputs (vorherige Transaktion, also) zahlt eine Gebühr von 10 sat/vB
Es muss zuerst die Parent Transaktion bestätigt werden, bis deine ausgehende TX bestätigt werden kann. Da beide TX in einem Block landen können und Miner die möglichst hohe Gebühr haben möchten, müsstest du warten bis die aktuelle Gebühr um in einen Block zu kommen bei ca. 30 sat/vB liegt. Denn dann lohn es sich als Miner beide Transaktionen in einen Block aufzunehmen. Derzeit liegen wir bei mehr als 200-250 sat/vB, der Mempool ist ziemlich voll. Das heißt, es wird schon noch etwas dauern, vermutlich sogar ein paar Tage. Bezüglich RBF / CPFP: Am besten ist es natürlich wenn man RBF immer gesetzt hat. Das schadet nie. Kann man jetzt natürlich nicht ändern, aber fürs nächste mal. CPFP ist theoretisch natürlich möglich, dafür müsstest du aber die Kontrolle über eine Wechselgeldadresse haben (existiert in der Transaktion nicht) oder über die Empfängeradresse (coinbase). CPFP kann in dem Fall also leider nur coinbase durchführen. Du hast aktuell 2 Möglichkeiten: - Transaction Accelerator verwenden: Es existiert nur einer (alle anderen sind Betrug) und dieser akzeptiert 100 Transaktionen pro Stunde. Du müsstest also in den ersten Sekunden deine Transaktion (Hash) dort "einreichen". Dann wird deine TX im nächsten von viabtc generierten Block inkludiert.
- Warten.
Leider bleibt dir nichts anders übrig. |
|
|
|
|
Since the transaction propagated already, the only way to successfully double spend the transaction is to make use of the RBF-flag.
But unfortunately, since your friend does not use a proper wallet, this flag is not set.
If he would have used a standard desktop- or mobile wallet, the RBF most likely would have been set. All modern wallets offer that option and most do that automatically.
Blockchain.com as a web wallet with outdated functionality, unfortunately doesn't.
Your only way to get the BTC back would be either to 1) ask a miner to include your double-spend transaction (unlikely if the amount isn't high enough for them) or 2) ask the recipient to pay it back.
Recommend your friend to use a proper wallet which offers that functionality and to double or even triple check everything before hitting send.
|
|
|
|
|
Since your fee is relatively high, the transaction should confirm in the early hours (europe time).
But a small pump/dump of the BTC/USD price could definitely add more transactions to the mempool.
For the future, you might want to consider using a proper wallet. Not only will you have the ability to replace transactions / increasing the fee, but you'll have a more secure storage of your keys.
Web wallets should be avoided whenever possible.
|
|
|
|
Zu dem Thread: Ich weiß nicht, ob so ein Banner Newbies wirklich davon abhält, in das Projekt, ICO oder sonstwas zu investieren.
Irgendwann müssen Personen ja auch erwachsen werden. Wenn ein riesiger Banner mit "Achtung, möglicherweise Betrug" und weitere Warnungen von Nutzern diese nicht abhalten.. dann sei dem so Einige Leute müssen Lektionen selber erfahren, um schlauer zu werden. Da fällt mir ein passendes Zitat ein, von dem ich leider nicht weiß woher es stammt: Der Dumme lernt aus seinen eigenen Fehlern, der Kluge aus den Fehlern der anderen.
|
|
|
|
|
Hab gerade nochmal drüber gelesen und entdeckt, dass du ja anscheinend den Private Key hast.
Also wenn du tatsächlich den Private Key von der richtigen Adresse (die mit den BTC) hast, dann kannst du den natürlich in entweder Core oder ein anderes Wallet (z.B. Electrum) importieren.
Beim importieren in Electrum musst du halt darauf achten den korrekten Adresstypen zu wählen: Legacy für Adressen die mit 1.. beginnen, P2SH für 3.. und bech32 für Adressen mit bc1..
Wenn die BTC aber auf einer anderen Adresse liegen (weil du z.B. eine Transaktion durchgeführt hast), dann ist das was in meinem 1. Post steht die einzige Möglichkeit.
|
|
|
|
We know there exists at least one attack which can reliably and quickly extract the entire seed phrase and private keys from a hardware wallet.
And since the ANT catalog got leaked, we know that the NSA has more than a handful ways to extract data from air-gapped devices. It doesn't add a layer of protection to an encrypted airgapped device - it replaces one.
Not necessarily. With hardware access to the cold storage, tampering attacks are possible. And this means that without verifying the hardware each time, you run the (admittedly low) chance of leaking private keys by simply just decrypting them. With a HW wallet, a malicious actor would not only need to manipulate the hardware of the HW wallet (since the software on the air-gapped device can verify the integrity of it), but also the air-gapped device. This obviously is based on the premise, that it is not possible to simply extract the private keys from the HW wallet. Further my first assumption was an evil maid scenario with repeatedly short access to the hardware. Spending more time thinking about this, i'd say a 2-of-2 multisig would be the best option here. |
|
|
|
|
Show Posts
