Latest posts of: tachypknea

Bitcoin Forum

June 28, 2024, 01:08:07 AM

Welcome, Guest. Please login or register.

News: Latest Bitcoin Core release: 27.0 [Torrent]

Home

Help

Search

Login

Register

More

Show Posts
Pages: [1]

1

Economy / Exchanges / Re: Bittrex Account Hacked - 2FA was active

on: August 07, 2017, 08:05:58 PM

Quote from: Hastura on August 07, 2017, 06:18:37 PM Quote from: tachypknea on August 07, 2017, 05:19:08 PM I think i got hacked the same way (The IP Address of the hacker was also from Russia), it is weird how Bittrex won't prompt an email confirmation to the user when the IP address is very off (I also live very far away from Russia) Hello tachypknea I also don't understand that. I always logged in from the same country, so it's strage that they/the security system did nothing when suddenly in ip from Russia logged in. Did you already get an answer from the support? Hello Hastura, They ignored my question, they sent me an automated message of how to re-activate your account...... From the looks of it they haven't looked into the situation at all. I tried following up, but no reply in the last 30 hours. Yeah, it's weird how they will freeze your account when a weird IP accesses your account (if it's dormant), but won't do the same when the account is active.. It's also weird how they won't allow users who enable 2FA to have email address confirmation as well. I know other websites that would prompt me to confirm with my email when a new IP or device is used for the account, it's not new technology or anything.. My biggest concern is that it's an issue on their end with the 2FA, in which I won't feel safe holding my money on the exchange anymore. Thank you for your help everyone.

2

Economy / Exchanges / Re: Bittrex Account Hacked - 2FA was active

on: August 07, 2017, 05:19:08 PM

Quote from: btcney on August 07, 2017, 10:53:58 AM Quote from: Hastura on August 07, 2017, 09:00:52 AM Hello Just saw that this guy (https://bitcointalk.org/index.php?topic=2069938.0) has the same problem I also got hacked yesterday. I made a ticket 18h ago but i still got no answer from Bittrex. Here is what happen: I was already logged in and i was on the wallete page. I hit the "F5" button to refresh the page and it starts loading and loading and loading... After 2-3mins it's still loading. So i closed the browser and tryed to login again... I enter username and password, press enter and then i get the info "security check - checking your browser before accessing bittex - can take up to 5 minutes" So i wait... Then i get to the next step. Enter the code for the 2FA. I enter the code and i have to wait again "securitx check - checking....ect" I don't get access cus it takes to long. So i have to try 2-3 times...but no success. I closed my browser, cleaned the cache, tryed agein...no success. I closed my browser again, cleaned cache and coockies, tryed again...and yes...access...i'm back in. So i open my wallet...and there is a "Pending Withdrawal"! - Status of the Withdrawal "Authorized"! I was like: What the ####!!!! I hit the cancel-button again and again but it was to late. Transfere had alredy started. So i mad a printscreen, opend a ticket and send it to the bittrex support. After the transaction went through, i also had the txid. I made a new printscreen and send that also to bittrex support. Then i checkt the logins on the bittrex page and i see an ip-adress the tha is not mine and made a printscreen. Next step: ip address lookup....the ip address is from Russia (another printscreen) And no, i don't live in Russia.... Well, as i said in the begining...i made a ticket 18h ago...and i still got no answer This is weird... How the 'hacker' was able to gain access to your email PLUS your 2fa is pretty much baffling. Plus he was able to withdraw an amount from a foreign IP without letting off any alarms in the bittrex security system which is supposedly one of the most secure in the industry. I've seen other complaints similar to this one and this definitely isn't an isolated case. It could well be an insider job, however there is nothing that you can do to prove it. Bittrex will probably think that you are faking all this and trying to get extra money, so they probably won't give you the money even if you are obviously telling the truth because if they set a previous example then everyone will just fake theirs. It's quite easy, a VPN is all you need. I'm not saying that you faked it, though, just to be clear. Are there any vulnerabilities that could have led to the demise of your account? I think i got hacked the same way (The IP Address of the hacker was also from Russia), it is weird how Bittrex won't prompt an email confirmation to the user when the IP address is very off (I also live very far away from Russia)

3

Economy / Exchanges / Re: Bittrex Account Hacked

on: August 07, 2017, 07:10:08 AM

Quote from: pinkflower on August 07, 2017, 05:02:50 AM What did Bittrex say? Its impossible to bypass 2FA and users of any exchange are safer if they have it enabled. So dont ever disable it. tachypknea, contact Bittrex and post screenshots of the conversations. Also post screenshots of your Bittrex account transactions as proof. You can paint on the amounts for privacy. You are raising a serious concern about Bittrex's security. We as a community should start getting to the bottom of this. Its either you are lying or Bittrex is not secure. The link below contains the transactions I cut and pasted from my profile, and the response I got from Bittrex. I never disabled 2FA, and the API key got changed at around the same time stamp, I am not sure if that is significant or not. (I still very new to crypto-currency as I have just started). I am not sure what Bittrex can do for me at this point, as they haven't replied to my request for an investigation. Removed link

4

Economy / Exchanges / Re: Bittrex Account Hacked

on: August 07, 2017, 12:10:45 AM

Quote from: bitcoinmaniac52 on August 06, 2017, 10:45:54 PM It is such a shame that every single day on this forum we see multiple posts of poor individuals getting taken advantage of by hackers/thieves. They do not have any place in our community. Sorry for your loss, my friend. Thank you for your kind words, makes me feel a lot better

5

Economy / Exchanges / Re: Bittrex Account Hacked

on: August 07, 2017, 12:03:35 AM

Quote from: chiznitz on August 06, 2017, 11:26:23 PM Quote from: bitcoinvestor on August 06, 2017, 10:21:37 PM Yeah, I read an article not to activate 2fa on bittrex, here is one reason. The hacker can withdraw without email confirmation. I plan to activate 2fa but I cancel after I read the article. http://highoncoins.com/cryptocurrency-trading-tips/do-not-use-two-factor-authenticatoin-with-bittrex/ Your account is way more secure if you use 2FA. I recommend enabling it if you still do not have it enabled. The guy in the link you posted was actually sharing his account with a "friend" When visiting Bittrex please make sure to bookmark or manually type in https://www.bittrex.com Google currently returns phishing sites as advertisements for Bittrex. These sites look just like ours and have been tricking users into entering their credentials and multiple 2FA codes which are good for 2minutes. Typically they have the user enter their code and then tell them logins are congested and to please wait, at which point the user again enters their code. This means the attacker has entered their account on the first try and then now has a 2FA code to withdrawal for 2 minutes. Below is an example google search. I could have possibly made that costly wrong click. Thank you so much, what a relief, being phished is better than having a virus stealing all my information

6

Economy / Exchanges / Re: Bittrex Account Hacked

on: August 06, 2017, 10:34:44 PM

Sorry not sure what guath is. But the individual somehow by passed the 2FA and somehow got ahold of my password and proceeded to changing the API key (no idea what the purpose is) and withdrew all the funds. I have the person's IP address, but I don't think I can do anything with that at this point. I am just paranoid if my computer/phones are infected. Maybe I should disable 2FA :/

7

Economy / Exchanges / Bittrex Account Hacked

on: August 06, 2017, 09:55:58 PM

Hi everyone, My Bittrex account has 2FA authenticator active, but somehow the person was able to access my account and clear all my coins and transfer it out as BTC. They were unable to touch monero, as it was under maintenance. I was wondering if anyone can offer insight to what my best course of action would be. Bittrex won't deactivate my account upon request. Should I wipe my phone to be safe? Or my computer. The hacker transferred the BTC to this wallet: https://blockchain.info/address/19BY2XCgbDe6WtTVbTyzM9eR3LYr6VitWK?offset=100&filter=6 Thanks for reading.

Pages: [1]

Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines