Bitcoin Forum
November 18, 2024, 12:58:49 AM *
News: Latest Bitcoin Core release: 28.0 [Torrent]
 
   Home   Help Search Login Register More  
Pages: [1]
  Print  
Author Topic: wallet is compromised  (Read 1018 times)
goxed (OP)
Legendary
*
Offline Offline

Activity: 1946
Merit: 1006


Bitcoin / Crypto mining Hardware.


View Profile
April 01, 2013, 10:27:26 PM
Last edit: April 01, 2013, 11:12:39 PM by goxed
 #1

Somebody stole 7BTC today. No idea how my wallet was leaked. It's a windows 7 machine, not shared with anyone. It is a hot wallet and was not encrypted. Now moving to armory.



Did anyone else see such exploits?

Revewing Bitcoin / Crypto mining Hardware.
Mike Christ
aka snapsunny
Legendary
*
Offline Offline

Activity: 1078
Merit: 1003



View Profile
April 01, 2013, 10:30:17 PM
 #2

That's lame.  Y u no encrypt?

goxed (OP)
Legendary
*
Offline Offline

Activity: 1946
Merit: 1006


Bitcoin / Crypto mining Hardware.


View Profile
April 01, 2013, 10:35:28 PM
 #3

I know Sad learnt my lesson.

Revewing Bitcoin / Crypto mining Hardware.
instaBoost
Member
**
Offline Offline

Activity: 84
Merit: 10



View Profile
April 01, 2013, 10:46:06 PM
 #4

I know Sad learnt my lesson.

armory up, encrypt up = worry less Smiley

Donations: 12wqXQuExLnWoWWQy7j35hzBEW91bUz1YS
XRP: rDRho51t4StfNqEWrYKBAteJKyDeo5crZz
Foxpup
Legendary
*
Offline Offline

Activity: 4535
Merit: 3188


Vile Vixen and Miss Bitcointalk 2021-2023


View Profile
April 02, 2013, 04:35:45 AM
 #5

windows 7 ... hot wallet ... not encrypted.
This is a perfectly secure setup, and I can think of absolutely no way your wallet could possibly have been compromised. </sarcasm>

Will pretend to do unspeakable things (while actually eating a taco) for bitcoins: 1K6d1EviQKX3SVKjPYmJGyWBb1avbmCFM4
I am not on the scammers' paradise known as Telegram! Do not believe anyone claiming to be me off-forum without a signed message from the above address! Accept no excuses and make no exceptions!
goxed (OP)
Legendary
*
Offline Offline

Activity: 1946
Merit: 1006


Bitcoin / Crypto mining Hardware.


View Profile
April 02, 2013, 07:43:17 AM
 #6

windows 7 ... hot wallet ... not encrypted.
This is a perfectly secure setup, and I can think of absolutely no way your wallet could possibly have been compromised. </sarcasm>

I know, is there a way to track this thief? Here is the transaction
https://blockchain.info/address/149kuVmGKWUwsN8bvu4WTthc6mVwEB3A2E

Revewing Bitcoin / Crypto mining Hardware.
Wardrick
Legendary
*
Offline Offline

Activity: 1022
Merit: 1000


View Profile
April 02, 2013, 08:12:27 AM
 #7

Why the hell does Bitcointalk.org go down all the time. I just typed up a long response and clicked submit, and got the "cannot be displayed page" AGAIN. I then click back and it doesn't save my message, ughh  Angry


To sum it up, there's a way to track a BTC address to see where they have sent to. That's the closest you'll get to catching him. Maybe he'll have an account with a lot of info attached to one of those sites or places he's sent the BTC to though, but it'd be a long shot.
🏰 TradeFortress 🏰
Bitcoin Veteran
VIP
Legendary
*
Offline Offline

Activity: 1316
Merit: 1043

👻


View Profile
April 02, 2013, 08:32:28 AM
 #8

Why the hell does Bitcointalk.org go down all the time. I just typed up a long response and clicked submit, and got the "cannot be displayed page" AGAIN. I then click back and it doesn't save my message, ughh  Angry


To sum it up, there's a way to track a BTC address to see where they have sent to. That's the closest you'll get to catching him. Maybe he'll have an account with a lot of info attached to one of those sites or places he's sent the BTC to though, but it'd be a long shot.

I don't think a scammer/thief is going to send the coins to something like "1TimWheat29c72fjs9 ...".

Currently coins are not touched so..
johnniewalker
Legendary
*
Offline Offline

Activity: 896
Merit: 1000



View Profile
April 02, 2013, 09:29:52 AM
 #9

are you referring to Instawallet?
Wardrick
Legendary
*
Offline Offline

Activity: 1022
Merit: 1000


View Profile
April 02, 2013, 10:57:14 AM
 #10

Why the hell does Bitcointalk.org go down all the time. I just typed up a long response and clicked submit, and got the "cannot be displayed page" AGAIN. I then click back and it doesn't save my message, ughh  Angry


To sum it up, there's a way to track a BTC address to see where they have sent to. That's the closest you'll get to catching him. Maybe he'll have an account with a lot of info attached to one of those sites or places he's sent the BTC to though, but it'd be a long shot.

I don't think a scammer/thief is going to send the coins to something like "1TimWheat29c72fjs9 ...".

Currently coins are not touched so..

What lol? He could send it to say a gambling site "Bitzino", and then his BTC address is used with an account there with his first and last name. Then with his IP + first and last name I'm pretty sure you could find out the rest. It was just a possibility...
greyhawk
Hero Member
*****
Offline Offline

Activity: 952
Merit: 1009


View Profile
April 02, 2013, 11:00:49 AM
 #11

Your conception of "his BTC adress" sounds most interesting. Care to elaborate?
Raoul Duke
aka psy
Legendary
*
Offline Offline

Activity: 1358
Merit: 1002



View Profile
April 02, 2013, 11:11:25 AM
 #12

Why the hell does Bitcointalk.org go down all the time. I just typed up a long response and clicked submit, and got the "cannot be displayed page" AGAIN. I then click back and it doesn't save my message, ughh  Angry


You should try pressing F5, to resubmit again, instead of clicking back Roll Eyes
Wardrick
Legendary
*
Offline Offline

Activity: 1022
Merit: 1000


View Profile
April 02, 2013, 11:46:03 AM
 #13

@Greyhawk. I don't know, I just know there's a way to find the places a BTC address has sent to.

@Psy, I can't the page still comes up as can not be displayed.
greyhawk
Hero Member
*****
Offline Offline

Activity: 952
Merit: 1009


View Profile
April 02, 2013, 11:54:04 AM
 #14

@Greyhawk. I don't know, I just know there's a way to find the places a BTC address has sent to.

You still say "a BTC adress". A bitcoin user can have a thousand BTC adresses or a million. Doesn't matter. Ideally you have new one for each transaction you make. With that at hand it's trivial to loop, split and merge any ill gotten gains through so many adresses that tracing is no longer realistically viable (though still theoretically possible).
caveden
Legendary
*
Offline Offline

Activity: 1106
Merit: 1004



View Profile
April 02, 2013, 12:06:27 PM
 #15

If your computer was not shared with anyone, encrypting your wallet would not have saved your coins. If an attacker manages to install something at your computer, this something can simply wait until you type the password in and then your coins are gone.
Encrypting your wallet only protects against physical theft of the media containing the wallet.

Not using Windows is certainly a much strong security approach than encrypting your wallet. You should consider it. Even better: your bitcons should be in a system which never access the Internet. Of course that's not super convenient as of now, so what I normally suggest is keeping two wallets: one offline, and another, with a smaller amount you could afford to lose, in a machine (preferably not Windows) that's used for Internet access.
goxed (OP)
Legendary
*
Offline Offline

Activity: 1946
Merit: 1006


Bitcoin / Crypto mining Hardware.


View Profile
April 03, 2013, 06:50:41 AM
Last edit: April 03, 2013, 08:03:50 AM by goxed
 #16

Can someone from outside the firewall use rpc commands on the bitcoin-qt? I think my bitcoin-qt used upnp top open some ports and was accessible outside the firewall.

Revewing Bitcoin / Crypto mining Hardware.
Craftyman
Member
**
Offline Offline

Activity: 75
Merit: 10



View Profile
April 04, 2013, 04:48:08 AM
 #17

whats this armory business?

YinCoin YangCoin ☯☯First Ever POS/POW Alternator! Multipool! ☯ ☯ http://yinyangpool.com/ 
Free Distribution! https://bitcointalk.org/index.php?topic=623937
Bwincoin - 100% Free POS. BAR2xMtD8jd6MfF52KXebz4PeTh9g5TvQx
Gabi
Legendary
*
Offline Offline

Activity: 1148
Merit: 1008


If you want to walk on water, get out of the boat


View Profile
April 04, 2013, 05:40:51 AM
 #18

Can someone from outside the firewall use rpc commands on the bitcoin-qt? I think my bitcoin-qt used upnp top open some ports and was accessible outside the firewall.
Only if you run it as server and use a fail password.

slippyrocks
Member
**
Offline Offline

Activity: 69
Merit: 10


respecttheslider


View Profile
April 04, 2013, 07:29:01 PM
 #19

am using electrum in windows 7 64-bit no problems is a great client

does not download the block chain, is local, can set very low or no fees, has word based seed function to recover

wallet, has a virtual keyboard for password security, and encryption of the wallet file

even loaded it on my kindle hd

also using eset32 antivirus

yes bitcoin-qt with rpc enabled is not good
Pages: [1]
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!