I'm giving this a well earned bump as things are starting to gain momentum in terms of services carking it.
Coinpulse seems to be the latest. I'm sure there are many more undergoing struggles yet to be revealed.
Who's up next?
I'd say we've got our hands full with the Cryptopia hack and the QuadrigaCX fiasco. Hopefully we don't see any other cases with big customer losses, but it seems to be that season. Liqui.io shut down recently too. I'm sure a lot of smaller altcoin exchanges have been decimated by now. It's anyone's guess who will go belly up or pull off an exit scam next.
|
|
|
That's what it looks like, and my gut instinct is that he was running a fractional reserve. However, we should keep in mind this theory is based on a couple days worth of internet sleuthing by random people. If a cold wallet existed, it wouldn't belong to the same WalletExplorer address cluster as the hot wallet. The exchange's logs should be able to confirm one way or the other. The truth will come out eventually.
|
|
|
I do lean more to the falsifying of a cold wallet, especially if at no point in their legal route of registering it was necessary to prove ownership of the coins. This is a pretty big claim and at first glance resembles a Ponzi like scenario. The problem here is that they should have been able to amass a large amount of coins just in the collected trading/deposit/withdrawal fees. This would support the oddly terrifying claim that they hold less than 1000 BTC, which is less than 4% of the claimed amount. It's possible we're jumping to conclusions too quickly regarding the wallet analysis that's been doing the rounds. There definitely could have been cold wallet addresses that were never used on the network to spend outputs, and those wouldn't have been included in the WalletExplorer address grouping.
|
|
|
I hate to seem insensitive, but I prefer the Duck test. "If it looks like a duck, swims like a duck, and quacks like a duck, then it probably is a duck." This has all the markers of a scam. The owner executed a will two weeks before his death! Then, faced with mounting unfulfilled withdrawal requests on his exchange, he skips off to India with all the private keys and just happens to die? All while leaving zero processes in place to properly run the company or guarantee customer deposits? Only scammers operate that way. There's nothing remotely normal or explainable about that scenario. This isn't negligence. It's malice. I would tend to agree with you about the duck test but all depends on what happens with regards to his body being repatriated. If there is a body and it is identified as being him then there is probably no scam. If there is no body then the duck test rules Okay, that's fair enough. If his body comes back to Canada and is positively identified as him, I'll admit it probably wasn't a scam. If it's truly like the court filings say, it's like somebody getting struck by lightning twice. Not impossible, but really unlikely.
|
|
|
You can't really compare the bug that was found in Core, which was theoretical at best, and fixed anyway before it even had a chance to do anything. The Electrum bug as explained by theymos sounded as if you were just a click away from losing your coins: This message is false, sent to you by a hacker. If you click the link in the message and install the software, then your BTC will be stolen. When has Bitcoin Core had anything like that? I wouldn't compare the two either, but the recent bug in Core was far more serious. It was "theoretical" in the sense that all bugs that haven't been exploited yet are theoretical. Since you quoted theymos: The bug fixed in Bitcoin Core 0.16.3 was really bad. IMO it was the worst bug since 2010. If it had been exploited in a 0-day fashion, significant & widespread losses (due to acceptance of counterfeit BTC) would've been likely, and Bitcoin's reputation would've long been tarnished. Furthermore, since a ton of altcoins are based on Bitcoin Core, this would've affected a huge swath of the crypto space all at once. I encountered the Electrum attack. To be honest, it wasn't very convincing. It was a social engineering attack, not an actual vulnerability in the software. You would have had to open an external untrusted website, download the software, and also neglect to verify it. Plus, the malware only worked if you kept your Electrum keys online, which isn't necessary.
|
|
|
And it should have been implemented in Bitcoin long ago. Basically, we need a sort of smart contract done either as a second layer solution or right in the blockchain protocol. For example, to prevent such cases from occurring, you would create a smart contract that should send bitcoins from your wallet to another wallet in case you don't prolong this contract, say, in a month or so (something like "a dead hand"). In this way, if you die, lose private keys or whatever, your bitcoins won't be lost but instead will be legitimately transferred after a specified amount of time
This is a great idea. Is there any development focusing on this matter? Or is this still an idea at the moment? But I'm not sure if Bitcoin would be able to support this, it should require more complex script, isn't it? There's no reason to do it at the protocol level. Dead man's switches for Bitcoin inheritance have been a topic of discussion for years. Here's one interesting approach to the problem.The simplest way to do it is to use nLockTime: Make a transaction that pays your inheritors in the future and reveal it to them, then periodically spend those coins before the timelock triggers (every 6 months or something). Rinse, repeat. When you die, the coins will finally be transferred to your inheritors.
|
|
|
On a side note: Death certificate in India costs money, not the death.
Does someone know where his body is?
I am looking online about his body being repatriated to Canada but did not find anything but I do not see a scam here. I do find it unprofessional and incompetent if a company (especially an exchange) would have just person who has access to funds and wallets even in the event of death but right now I hope his family are coping with the death of their loved one. I also hope somehow funds will be recovered so no investors lose out. I hate to seem insensitive, but I prefer the Duck test. "If it looks like a duck, swims like a duck, and quacks like a duck, then it probably is a duck." This has all the markers of a scam. The owner executed a will two weeks before his death! Then, faced with mounting unfulfilled withdrawal requests on his exchange, he skips off to India with all the private keys and just happens to die? All while leaving zero processes in place to properly run the company or guarantee customer deposits? Only scammers operate that way. There's nothing remotely normal or explainable about that scenario. This isn't negligence. It's malice.
|
|
|
This is exactly why I believe that large scale traders and institutions don't want to deal with crypto currency exchanges, but rather wait for other institutions to set up trading desks, and I can't even blame them.
Every year we're seeing how multiple exchanges go down and the operators take a run with people's funds, or that the operators claim to have suffered from a hack, while it was an insider job....
When it's entities like the ICE and Fidelity and Citibank holding custody instead of lone exchange operators or Bitgo multisig, there will probably be fewer exit scams like this. However, there will still continue to be hacks and embezzlement attempts by insiders. One of these Wall Street custody solutions will eventually get compromised and that'll trigger a major controversy about the viability of Bitcoin securities and physically settled derivatives. I just wonder how big the market will be and how much will be in custody when that happens.
|
|
|
you would need to collude with a mining pool who can withhold certain transactions (losing bets) from the blockchain
problem is that even if a pool goes back and rehashes/re-orgs a block to exclude a losing bet.. that losing bet just becomes TEMPORARILY unconfirmed again.. and another pool will pick up that 'losing bet' thats suddenly become unconfirmed.. and reconfirm it into their block later The attacker would obviously want to respend those outputs to addresses they control at the same time and try to confirm the double spends. That's why the amount of hash rate an attacker controls matters so much. Just like selfish mining, the expected value is a matter of probability because Bitcoin's mining algorithm is based on a discrete probability distribution (a Poisson distribution). There's never a guarantee that any attack will work 100% of the time, but the important thing is that the higher an attacker's hash rate, the higher the chances of success. The bigger an entity is, the bigger their incentive to attack.
|
|
|
That's the closest we have to the OP's first idea ("frozen addresses"), yes. I'm pretty sure I've seen this use case suggested before, but it doesn't seem particularly useful as an anti-hacking mechanism. If your private keys are compromised, then once the timelock is ending you're still just racing the attacker to spend the outputs and hoping your transaction gets confirmed first. This feature should allow a transaction to expire (i.e. be reversed) unless the payee (i.e. the person you pay to and who is to receive the money) confirms it from their side.
You should use payment channels on Lightning then. Both counterparties need to sign a transactions before channel state can be updated. Otherwise, the last valid state can be broadcast to the blockchain.
|
|
|
Bitcoiners, nerds? Impossible!
|
|
|
Let's not forget that in its heyday, the operators of GHash.IO engaged in double spending attacks. Here is one such example. The less hash rate in the hands of any individual operator, the better. that is completely off topic because it doesn't even have anything to any mining pool or having hashrate, etc. you don't even have to be a miner to be able to perform something like that. It's not off topic because you would have needed access to significant mining power to reliably perform such an attack. Without hash rate, you couldn't guarantee winning bets will be confirmed and losing bets dropped. Any non-miner could have losing bets confirmed all day. A mining pool can withhold certain transactions (losing bets) from the blockchain while confirming others (winning bets). This creates expected value for the colluders. it is just the starter of that topic who is making it bigger issue than it is and linking it to GHASH somehow. otherwise it is another proof of how 0-confirmation transactions are not safe and can easily be double spent.
The point is that miners with significant hash rates have incentives to act dishonestly. The worse mining concentration gets, the less Bitcoin's mining incentives work. Attacking 1-confirmation transactions would significantly increase the costs, but it doesn't destroy the double spend incentive. There just needs to be enough value worth stealing and enough hash rate at the attacker's disposal.
|
|
|
How many dollars of BTC purchases would it take to go to $10,000?
It's impossible to calculate. The order books listed on exchanges are fluid and only give you a glimpse of overall market liquidity. As the price rises, more coins will enter the order books and it'll take more money to keep pushing price up.
|
|
|
Miners will have to adapt and earn from fees, and if BTC becomes a globally accepted payment instrument then number of transaction will increase, which will make a stable profit for miners.
It's not just miners who will have to adapt. Users will need to adapt to paying higher fees. This is a really important part of Bitcoin's design. We can't guarantee endless transaction growth, so we need to depend on scarcity of block space to force fees higher. As long as demand is strong enough for perpetually full blocks, I'm confident the mining incentive can still work after inflation is done. This is an even more important reason to retain the block size limit than node or miner centralization.
|
|
|
I recently watched the movie Goosebumps 2 with my kids and Bitcoin was once again mentioned briefly in this movie. The one boy mentioned Bitcoin and the other boy called it Nerd money. <My kids turned to me and said, Are you a nerd?> Haha, I don't mind the label myself. So it got me thinking, why would people label Bitcoin as Nerd money, when people use electronic payment options like PayPal every day? What feature about Bitcoin gives people this impression about Bitcoin? Most people don't understand cryptography, economics, computer programming. They don't understand how Bitcoin works, and using it can be really complicated for novices. So naturally, Bitcoin seems like it's tailor-made for nerds from an outsider's perspective.
|
|
|
Thanks for sharing. Pending confirmation from other internet sleuths, this report looks pretty damning for QuadrigaCX, Gerald Cotten and possibly his wife. There is strong circumstantial evidence that they were running a fractional reserve, paying withdrawals with new deposits. That would explain the recent withdrawal delays and the apparently hasty need for Cotten to execute a will and die. It looks like Quadriga was on the verge of a Gox-style ending: Potential Falsehood #2 — QuadrigaCX Has 26,488 Bitcoins in its Possession
Again, via thorough inspection of several dozen verified Bitcoin withdrawals and deposits, the estimated aggregated total number of bitcoins in QuadrigaCX’s possession is south of 1,000 BTC, with 1,000 being a very generous estimate at this point in time.
|
|
|
Key word, might. It's also not clear what they mean by resuming operations -- it could just mean bringing the site up in limited capacity, allowing users to log in and see balances, etc. Right now, the site is still just a splash page. The letter from NZ Police suggests nothing about a speedy return of funds. The article makes it sound like the police are preventing communication with their customers: Police are working to enable the company to communicate directly with customers, the letter said.
|
|
|
Less than two years ago Binance didn't exist. Look at it now. If you'd proposed in 2017 somewhere brand new would dominate no one would've believed you.
It's definitely possible. I don't know what went right for Binance that didn't for other exchanges though. It's impossible to predict what customers will latch on to and what they won't.
There were a few factors. They were in the right place at the right time. At a time when Poloniex was shedding customers due to horrible lag, Binance offered a far superior trading engine. At a time when Bittrex was adding mandatory KYC, Binance let you withdraw $15,000+ a day with no documents. Their rise was further reinforced by the BNB token's success. BNB benefited from the ICO bubble but also incentivized people to trade at Binance. It created a feedback loop.
|
|
|
We deny fate .. for sure, if we keep supporting Exit Scamms. That will ruin whole of Bitcoin.
I am not supporting, I just find people are fast to jump on a conclusion. Nothing is sure, people are just speculating here and there (since they can't speculate on QuadrigaSX lol). Let's imagine the guy is really dead, people are making the moment worse for the family. I'll just leave this here: Lots of fishy things going on here: - Owner had sole control of cold storage keys (unheard of these days)
- Owner executed a will less than two weeks before he died
- Only evidence of owner's death is a supposed death certificate from India
I would echo this sentiment:The fact that he "died" over a month ago, in the midst of a huge legal battle, out of the country, in the 2nd most populated country in the world, in a place that's known for its scammers, bribery, and forging of documents is suspicious enough.
|
|
|
Im not from the US, and in other countries you must prove that the funds are from licit origin. If I don't have the trading history, im not sure how I could prove it. Could you give some examples? Laws, guidance from tax authorities, things like that? Your Livecoin trading history is just a spreadsheet from a dodgy foreign company. It's not really "proof" of anything. It's not an official tax document, so I don't see why you're dwelling on it. I have no knowledge of previous experiences of people in my place in my country, so I don't really know what to expect. Maybe you should ask for very generic guidance from your tax authority. No reason to give them details, but just general guidance about what to do. In the US it seems it's different. In many European countries you must prove with proof that the money isn't coming from drugs and stuff. This still doesn't sound right. Maybe if you were more specific about where you live, this could be proven or disproven. There's also the problem of mixed coins. I once mixed some coins just to test, then I realized if I wanted to sell these coins, im not sure if it would be a good idea. It sounds like you might be afraid of your own shadow. The mixed coins are still your coins. You did nothing illicit. If you want to lose your private keys and donate the coins to the rest of us, feel free. I need past precedents on the same situation to see what's going on when you are caught up in this situation. It's not a good idea to experiment in this field of being a testing ragdoll for the government's take on crypto taxes.
You might be waiting a while.
|
|
|
|