bluefirecorp possibly hacked

[Vod]

I have tagged bluefirecorp as possibly being hacked.
https://bitcointalk.org/index.php?action=profile;u=20802
I received a PM from a user quoting a PM where bluefirecorp offered to sell his account.  The email address has been recently changed.

I don't have time this morning to review posting habit changes.  Can anyone verify/discredit this?

[Joel_Jantsen]

Sure,
After months of being inactive,suddenly the account came into life on Novermber 18 2016 and made it's first post for secondstarde signature campaign
https://bitcointalk.org/index.php?topic=907271.msg16915119#msg16915119

The last post before that was on: November 15, 2015, 11:17:23 PM
I think the account is sold rather than hacked.The change in user details is due to the fact new owner bought the account for a signature campaign.

Ask new owner to verify the details that the account was sold to him by the previous owner and you can tag him neutral accordingly.

[SFR10]

~Snipped~
I don't have time this morning to review posting habit changes.  Can anyone verify/discredit this?

I would like to verify the habit changes on the involved account (different style of posts), even though "Joel_Jantsen" has a point about possible sell of the account, it's also somehow suspicious for the user to start posting at exactly a year after it went off (known behavior in most hackers that try to get away since the dates will look similar and some might miss the year being different due to both connecting posts being at November month). Personally I think it's more of a hacked account, rather than a newly sold account.

[shorena]

Looks sold and resold to me. The first password change might also be preparation to sell or securiting the account after an attack. Impossible to tell.

Code:

October 04, 2016, 05:42:38 AM - bluefirecorp - password changed

Code:

06.11.2016 - 10:46:47 - bluefirecorp - password changed
06.11.2016 - 10:31:43 - bluefirecorp - password changed

[Vod]

I don't leave negative trust for sold accounts - I understand it happens.

However, I received a PM from bluefirecorp stating his account was not for sale.

Therefore, his account could be hacked.

I ask bluefirecorp to sign a message from an old bitcoin address.

[actmyname]

I have tagged bluefirecorp as possibly being hacked.
https://bitcointalk.org/index.php?action=profile;u=20802
I received a PM from a user quoting a PM where bluefirecorp offered to sell his account.  The email address has been recently changed.

I don't have time this morning to review posting habit changes.  Can anyone verify/discredit this?

-snip-

All good, but can you sign an address? Here's a list of your previously posted addresses:

18wKT6m2FunZbvXTwSg9i1kDYAq6q8x1jG (2012/03) [Archive]
1BKSPCcSJroM4Bzx9RtMoYnYpkU7P21iXu (2014/05) [Archive]
1JEZ6TdNYBey3MyGqAzwZmNQKRzgEn3gWM (2014/05) [Archive]

[bluefirecorp_]

Thanks for the posts guys. The account should be currently locked. We're in the recovery process now =D