281
|
Bitcoin / Bitcoin Technical Support / Re: URGENT! A 2nd Hack into our Blockchain wallet
|
on: December 03, 2018, 09:39:31 AM
|
So Blockchain sends no notification if you import the wallet using the 12 word seed? Is that what happened here?
It is impossible for blockchain.com to know whether the seed as been imported into another wallet. But let me understand this: You have used the SAME wallet with the SAME seed on the SAME 3rd party service which is way less secure than a normal wallet AFTER the attacker gained access to your account? Really.. ? A really good advice from me: Please stop any business around crypto. First learn the basics (yes, BASICS), then start dealing with money. We are experts at advertising and paying users, yes, when it comes to Crypto we have to learn a very hard lesson here. Who in his right mind would use a compromised account to store more funds? Yes, it's a terrible mistake, people do make mistakes, this one is indeed quite a costly one, it's no fun for sure, but we would have to storm it out and move on. Thanks guys for letting us know hackers can use the 12 word seed to move funds without any notification in your web wallet. So just to clarify, you could have all the "protection" you want, such as 2FA, email verification etc. - but if someone has your Blockchain 12 word seed - he can easily move the funds without having to go through all these security steps, correct?! So basically these security steps are "Good for nothing" pretty much?! You should consider changing your e-mail address with blockchain.com , if they got your login credentials and password they could request the mail address to be moved, then they can drain your wallet. Just make a new account, and change all your mail accounts and passwords. Consider doing a clean install of your computer as well, just in case you have some code laying around. You should also consider to check if you have a physical keylogger connected to your keyboard. Simple, is there any usb box between your keyboard cable and the computer (if you dont use a laptop) /KX
|
|
|
282
|
Other / Beginners & Help / Re: how to choose a high secured wallet ??
|
on: December 03, 2018, 09:26:05 AM
|
which one is very safe ( high secured) linux or windows ..?
both systems can be hacked if you use them unwisely. If you click on a spam link or install a javascript in your browser, it doesnt matter if you have linux or windows or osx (mac). Historically Mac's has been the most secure operating systems but to be true secure use a cold storage wallet like Nano Ledger or create a paper wallet. Cryptocurrency is like real money, if you loose it, its very hard to claim it back. if we unfortunately clicked on a spam link , what will happens Several things can theoretically happen 1) A keylogger can be installed and read all your keypresses 2) A javascript can be launched, which might steal your login credentials 3) A malicious software can be ran in background and wait for you to send cryptocurrency, it will try to change the receiver address 4) You can initiate a ransomware virus which will encrypt your drive and extort money from you SO, just dont click on any link you have no idea where its from (even on telegram) /KX well , thanks for the information.. if we clicked a link in any one social media , is there will be any chances to hack our wallet ?? If you click on a clipboard virus or scam code, it will change your destination address when you send funds. So it doesnt matter if you send from a hardware/software wallet, you still will need to enter a destination address which the code can change. the worst clipboard hijacker controls over 2 million addys. You can read more here: https://www.bleepingcomputer.com/news/security/clipboard-hijacker-malware-monitors-23-million-bitcoin-addresses//KX
|
|
|
283
|
Other / Beginners & Help / Re: how to choose a high secured wallet ??
|
on: December 01, 2018, 06:10:35 PM
|
which one is very safe ( high secured) linux or windows ..?
both systems can be hacked if you use them unwisely. If you click on a spam link or install a javascript in your browser, it doesnt matter if you have linux or windows or osx (mac). Historically Mac's has been the most secure operating systems but to be true secure use a cold storage wallet like Nano Ledger or create a paper wallet. Cryptocurrency is like real money, if you loose it, its very hard to claim it back. if we unfortunately clicked on a spam link , what will happens Several things can theoretically happen 1) A keylogger can be installed and read all your keypresses 2) A javascript can be launched, which might steal your login credentials 3) A malicious software can be ran in background and wait for you to send cryptocurrency, it will try to change the receiver address 4) You can initiate a ransomware virus which will encrypt your drive and extort money from you SO, just dont click on any link you have no idea where its from (even on telegram) /KX
|
|
|
284
|
Alternate cryptocurrencies / Service Discussion (Altcoins) / Re: Binance 2fa lost my phone
|
on: December 01, 2018, 02:39:02 PM
|
Hello everybody! How can I disable my 2fa on binance if I lost my phone? Now I have new but I don't know how to access my account(didn't completed KYC) and don't remember my LTC addresses...only remember approximately how much money is on the account and what coins are there...I wrote to technical support about 2 hour ago but still get no answer...
Technical support can take more than two hours. Just be patient, you will be able to reset your 2fa. Just wait for them to tell you what to do. Just dont click on any links if you are unsure what you are doing.
|
|
|
285
|
Other / Beginners & Help / Re: how to choose a high secured wallet ??
|
on: December 01, 2018, 02:36:51 PM
|
which one is very safe ( high secured) linux or windows ..?
both systems can be hacked if you use them unwisely. If you click on a spam link or install a javascript in your browser, it doesnt matter if you have linux or windows or osx (mac). Historically Mac's has been the most secure operating systems but to be true secure use a cold storage wallet like Nano Ledger or create a paper wallet. Cryptocurrency is like real money, if you loose it, its very hard to claim it back.
|
|
|
287
|
Economy / Computer hardware / Ledger Nano S (green) parts, where to buy????
|
on: November 30, 2018, 03:10:25 PM
|
Does anyone know where to buy Ledger Nano S parts?
I am specifically looking for the 250x30 OLED display (12Pin) and the Switch button.
Ledger asks you to send in the old Ledger and exchange it for a new one, but I am not interested of that. Need to keep the ledger and just change the parts.
the model is the green motherboard (version 2)
/KX
|
|
|
288
|
Economy / Exchanges / Re: Blocked 1200 BTC Binance Account: Lost in Doubts
|
on: November 28, 2018, 03:49:55 PM
|
Hi everyone.
I would like to let the Bitcointalk community know about the situation with my Binance account that has 1200 BTC locked.
I’m writing this post just to let you guys know how I’m doing while I wait.
To everyone that has helped me, I just want to say thank you and that I appreciate your support and help.
I know their CEO CZ is quite active on Twitter and has responded to unresolved issues before. You could always try to send him a message on twitter to https://twitter.com/cz_binance or hashtag @cz_binance and he will see it He is also active on linkedin, you can try send him a message here: https://www.linkedin.com/in/cpzhaoIf you need help contacting him I have a direct link, but hopefully your issue will be resolved. /KX
|
|
|
292
|
Other / Beginners & Help / Re: how to choose a high secured wallet ??
|
on: November 26, 2018, 09:21:06 AM
|
The security of your wallet depends on the whole system architecture.
For example: A completely unencrypted desktop wallet on a linux system is way more secure than an encrypted wallet on a windows machine.
Having your wallet secured is good, yes. But it is worthless if you get tricked by a scammer to send him your BTC by yourself.
You should never ever have your desktop wallet unencrypted. Don't get fooled that linux is much safer than windows.
|
|
|
293
|
Bitcoin / Bitcoin Technical Support / Re: Can You recover my BIP38 Password?
|
on: November 26, 2018, 09:16:49 AM
|
You are wrong, for BIP 38 it takes quite a bit more to check the missing characters than a few seconds. For checking two missing characters you would get 9025 alterations and with the numerous options you have with compressed/uncompressed address and segwit/legacy that number grows eight fold. I would say 6-8 hours.
You don't need to generate compressed/uncompressed public keys and segwit-/legacy- addresses for each iteration. It is enough to only test the ones where the decrypted private key is a valid private key (checksum helps here). This reduces the 9025 iterations (based on your post) to a fraction. But.. even with 9025 iterations (if you'd have to generate compressed/uncompressed public keys and all 3 types of addresses) it would NEVER take 6-8 hours on a modern machine. With a somewhat modern graphic card, this won't take much more than a minute. Again, you seems not to know what you are talking about. If you study BIP 38 for a while you will know its not possible to hashcat or use john the ripper. You would also know that the bippy code out there has a bug so you would need to do both compressed/uncompressed addys in order to cover the whole spectrum of space with possible addresses. Finally, if you know anything about passwords, you would know the iterations wont be less than 9025 out of two missing characters.
|
|
|
295
|
Bitcoin / Bitcoin Technical Support / Re: Can You recover my BIP38 Password?
|
on: November 25, 2018, 09:54:25 AM
|
I rescue a hard drive where I had stored the password of my private key. The problem is that I have 80% of the password, I can not remember the last 2 characters And even worse the password had 2 spaces, I can not remember if these spaces were part of the password or not.
How much of the password do you actually know is correct ? Are only the last 2 characters missing or are the spaces wrong / in wrong places ? With only the last 2 chars missing it wouldn't take more than a few seconds to bruteforce your private key. With also the spaces being in wrong places, it gets harder.. But still doable (if the rest of the password is correct). With the 2 last chars missing, the spaces being in the wrong position AND the current spaces being 2 other chars, your chances get very slim. I'd suggest you look at btcrecover ( https://github.com/gurnec/btcrecover). It lets you create your own 'token' file. This corresponds to the 'way to iterate trough your password'. You are wrong, for BIP 38 it takes quite a bit more to check the missing characters than a few seconds. For checking two missing characters you would get 9025 alterations and with the numerous options you have with compressed/uncompressed address and segwit/legacy that number grows eight fold. I would say 6-8 hours. (if its just two characters). Unfortunately there are different buggy versions of BIP38 decoders/encoders like bippy which treats the address as compressed even if its uncompressed, so the decoding process is quite unreliable where the software tells you the password is wrong even if its correct. There are even deviations where the browser itself treats the encoding wrong, which once you try to retrieve your encrypted key you will get a completely wrong decode. /KX
|
|
|
298
|
Other / Beginners & Help / Re: Somebody maybe virus stoll my ETH :(
|
on: November 22, 2018, 11:06:10 AM
|
Hello everybody i feel so bad , my all year mining earning was stollen by virus and i feel so weak because i cannot do with this anything my ETH wallet is 0x06e672ecd378140265bb44f682750b708c8b124d and the guy that stoll my 2 ETH is only one out ETH 0x5BFE5F416F7Ea1d0E95601700476AD140b6b7490 (((..... what i can do? is there any option ? help me please You should probably 1) clean your drive from any software you do not recognise 2) change your password on all devices and mail 3) check if you have any keylogger, you can follow this guide: https://www.wikihow.com/Detect-and-Remove-Keyloggers/KX
|
|
|
299
|
Bitcoin / Electrum / Re: electrum wallet - lost btc - money transfer which was not my own
|
on: November 22, 2018, 10:56:47 AM
|
what you suggest me to do, to protect my account?
You should start using 2FA, in this case to another phone or to your laptop, then you have doubled your security. There are also some exchanges that send you a confirmation code through email (like poloniex.com or bitbay), that secures your crypto even further.
|
|
|
300
|
Economy / Services / Re: I lost my all btc,ltc,doge coins!
|
on: November 20, 2018, 08:29:46 AM
|
Your funds seems to end up on this address 16S5ixVGo3AuD4SvkgLHWfSbEz1rFFr36P (The BTC part)
#1. File a police report #2. Send e-mail to the biggest exchanges to blacklist that address together with your police report and ID that helps, they need to verify you #3. Keep an eye on 16S5ixVGo3AuD4SvkgLHWfSbEz1rFFr36P in case it moves, most probably to an exchange, if you have a full node on your local system add notifications in case the balance change moves. #4. try to remember any biteclicks or e-mails you have opened from unknown people. #5. Do a quick search on your computer if you have any keylogger och clipboard sniffer installed #6. change all your passwords #7. repeat number 3
/KX
|
|
|
|