Bitcoin Forum
December 13, 2024, 03:48:55 AM *
News: Latest Bitcoin Core release: 28.0 [Torrent]
 
   Home   Help Search Login Register More  
Pages: « 1 [2] 3 4 5 6 7 8 9 »  All
  Print  
Author Topic: BREAKING: Atlanta based Bitcoin giant BitPay hacked for nearly $2,000,000!  (Read 11160 times)
Lauda
Legendary
*
Offline Offline

Activity: 2674
Merit: 2970


Terminated.


View Profile WWW
September 17, 2015, 09:32:38 AM
 #21

Is this confirmed by a better source? If so it's pretty horrific publicity for bitcoin. Gross negligence by Bitpay if true it really is, how can a company be so unprofessional. That is a hell of a lot of money to lose.

No wonder adoption has stalled when shit like this keeps happening.
This happened a year ago. I doubt that many people knew about this until this lawsuit and article(s) appeared.

And secondly - there should be some sort of failsafe system to prevent ONE person to have access to all funds.
You should have read the second part of my post. They don't even need a complicated system. A multi-signature way of releasing big payments.

How come I have better security procedures than BitPay  Huh
People working at big companies are dumber than you think. He got tricked easily via email. I wonder if he is using MS security essentials on his PC.  Roll Eyes

"The Times 03/Jan/2009 Chancellor on brink of second bailout for banks"
😼 Bitcoin Core (onion)
okae
Legendary
*
Offline Offline

Activity: 1401
Merit: 1008


northern exposure


View Profile WWW
September 17, 2015, 09:44:25 AM
 #22

People working at big companies are dumber than you think. He got tricked easily via email. I wonder if he is using MS security essentials on his PC.  Roll Eyes

hahaha you made me laught, becuase you are 110% right Wink

There is almost always human factor and error included in every hacking attempt. It is their own fault they were hacked.
And secondly - there should be some sort of failsafe system to prevent ONE person to have access to all funds.

you know, nobody is perfect, but if they are "playing" with the money of others,  they should care a little bit more about it, in the end, whats happend here is more or less the same as with MT.Gox... i mean from the point of view of users.

IMHO #1.b of suspects, Hal Finney is/was S.N.
itod
Legendary
*
Offline Offline

Activity: 1988
Merit: 1077


Honey badger just does not care


View Profile
September 17, 2015, 09:44:44 AM
 #23

The next day, the imposter sent another email to the CEO asking him to send an additional 3000 bitcoins to the customer. The CEO emailed Krohn to confirm the request, and the imposter sent back an email saying the transfer was valid. The CEO then sent the bitcoins.

Knowing that even the biggest bitcoin companies, like BitPay, don't have multi-signature mechanisms for these kinds of tasks is mind boggling. Is it really so hard to implement multisingatures that they have to trust email confirmations for such a large transactions? Wouldn't it be easier that both executives sign the transaction, instead of asking each other to confirm something by email? Unbelievable.
unamis76
Legendary
*
Offline Offline

Activity: 1512
Merit: 1012


View Profile
September 17, 2015, 10:47:01 AM
 #24

There's something really fishy about this story, or they're not telling everything. First thing: why did Krohn provided his corporate email password (or any other password for the record) in an unknown random website that was just supposed to ask for an opinion about a bitcoin industry document?

And who the hell sends that many funds without questioning? This story really doesn't seem to connect and makes everyone at BitPay look stupid. Not really falling for this...
EternalWingsofGod
Hero Member
*****
Offline Offline

Activity: 700
Merit: 500



View Profile
September 17, 2015, 10:49:17 AM
 #25

This reminds me of the Mt. Gox scandal that brought down the price of Bitcoin from $1000 to eventually where it is now. That, plus all of the controversy around BIP 101, I would say the price is going to be low for a while until things cool down.

Alas I'm in agreement with you on this one, Bitpay has filled in the role Gox has to an extent and more hacks on major exchanges just causes percieved insecurity in the system.

JeWay
Hero Member
*****
Offline Offline

Activity: 952
Merit: 503


View Profile
September 17, 2015, 10:54:32 AM
 #26

First, Mt. Gox. And now, Bitpay. Then, who's next? Sad Cry
julian071
Hero Member
*****
Offline Offline

Activity: 1133
Merit: 819



View Profile
September 17, 2015, 11:17:28 AM
 #27

This definitely shows that using Bitcoin is just as easy as sending email.

=P
Come-from-Beyond
Legendary
*
Offline Offline

Activity: 2142
Merit: 1010

Newbie


View Profile
September 17, 2015, 11:28:53 AM
 #28

First, Mt. Gox. And now, Bitpay. Then, who's next? Sad Cry

Not that fast, first let's watch Bitpay bankruptcy drama.

PS: Does anyone remember how much time passed since Mark got he had problems till he initiated the bankruptcy procedure?
kelsey
Legendary
*
Offline Offline

Activity: 1876
Merit: 1000


View Profile
September 17, 2015, 11:34:59 AM
 #29

This definitely shows that using Bitcoin is just as easy as sending email.



i lol'd  Grin
itod
Legendary
*
Offline Offline

Activity: 1988
Merit: 1077


Honey badger just does not care


View Profile
September 17, 2015, 11:36:49 AM
 #30

First, Mt. Gox. And now, Bitpay. Then, who's next? Sad Cry

Not that fast, first let's watch Bitpay bankruptcy drama.

PS: Does anyone remember how much time passed since Mark got he had problems till he initiated the bankruptcy procedure?

C'mon, this doesn't even resemble to MtGox. There's no exchange involved, and nobody's money is being held hostage. It's expensive corporate fuckup, but it's small enough to be covered from current income.
Come-from-Beyond
Legendary
*
Offline Offline

Activity: 2142
Merit: 1010

Newbie


View Profile
September 17, 2015, 11:45:35 AM
 #31

C'mon, this doesn't even resemble to MtGox. There's no exchange involved, and nobody's money is being held hostage. It's expensive corporate fuckup, but it's small enough to be covered from current income.

MtGox looked legit too, compare these companies without retrospective.
MicroGuy (OP)
Legendary
*
Offline Offline

Activity: 2506
Merit: 1030


Twitter @realmicroguy


View Profile WWW
September 17, 2015, 12:32:11 PM
 #32

Is this confirmed by a better source? If so it's pretty horrific publicity for bitcoin. Gross negligence by Bitpay if true it really is, how can a company be so unprofessional. That is a hell of a lot of money to lose.

No wonder adoption has stalled when shit like this keeps happening.
Yeah I want a better source this sounds like click bait and everyone is blindly following it, without proof I am calling this bullshit.

Read pages #34-35 here: http://media.bizj.us/view/img/7016312/bitpay-2.pdf
bitgolden
Legendary
*
Offline Offline

Activity: 3024
Merit: 1132


Leading Crypto Sports Betting & Casino Platform


View Profile
September 17, 2015, 12:40:52 PM
 #33



Read pages #34-35 here: http://media.bizj.us/view/img/7016312/bitpay-2.pdf
[/quote]

 It seems some insurance company's track sheet on bitpay. I googled. But not that much news on bitpay hacking... may be expect tomorrow...

..Stake.com..   ▄████████████████████████████████████▄
   ██ ▄▄▄▄▄▄▄▄▄▄            ▄▄▄▄▄▄▄▄▄▄ ██  ▄████▄
   ██ ▀▀▀▀▀▀▀▀▀▀ ██████████ ▀▀▀▀▀▀▀▀▀▀ ██  ██████
   ██ ██████████ ██      ██ ██████████ ██   ▀██▀
   ██ ██      ██ ██████  ██ ██      ██ ██    ██
   ██ ██████  ██ █████  ███ ██████  ██ ████▄ ██
   ██ █████  ███ ████  ████ █████  ███ ████████
   ██ ████  ████ ██████████ ████  ████ ████▀
   ██ ██████████ ▄▄▄▄▄▄▄▄▄▄ ██████████ ██
   ██            ▀▀▀▀▀▀▀▀▀▀            ██ 
   ▀█████████▀ ▄████████████▄ ▀█████████▀
  ▄▄▄▄▄▄▄▄▄▄▄▄███  ██  ██  ███▄▄▄▄▄▄▄▄▄▄▄▄
 ██████████████████████████████████████████
▄▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▄
█  ▄▀▄             █▀▀█▀▄▄
█  █▀█             █  ▐  ▐▌
█       ▄██▄       █  ▌  █
█     ▄██████▄     █  ▌ ▐▌
█    ██████████    █ ▐  █
█   ▐██████████▌   █ ▐ ▐▌
█    ▀▀██████▀▀    █ ▌ █
█     ▄▄▄██▄▄▄     █ ▌▐▌
█                  █▐ █
█                  █▐▐▌
█                  █▐█
▀▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▀█
▄▄█████████▄▄
▄██▀▀▀▀█████▀▀▀▀██▄
▄█▀       ▐█▌       ▀█▄
██         ▐█▌         ██
████▄     ▄█████▄     ▄████
████████▄███████████▄████████
███▀    █████████████    ▀███
██       ███████████       ██
▀█▄       █████████       ▄█▀
▀█▄    ▄██▀▀▀▀▀▀▀██▄  ▄▄▄█▀
▀███████         ███████▀
▀█████▄       ▄█████▀
▀▀▀███▄▄▄███▀▀▀
..PLAY NOW..
MF Doom
Hero Member
*****
Offline Offline

Activity: 560
Merit: 500



View Profile
September 17, 2015, 12:42:17 PM
 #34

C'mon, this doesn't even resemble to MtGox. There's no exchange involved, and nobody's money is being held hostage. It's expensive corporate fuckup, but it's small enough to be covered from current income.

MtGox looked legit too, compare these companies without retrospective.

The question now becomes:  Is everyone jumping the gun with these btc startups?  Are the people running these completely incompetent?

or

Is btc too weak and too prone to hacks that its completely unsafe to use online?  Yeah I know everyone says "just use a paper wallet!" but that can only help so much.  Sad story, and shows you cant trust insurance companies!
Mitchell
Staff
Legendary
*
Offline Offline

Activity: 4144
Merit: 2337


Verified awesomeness ✔


View Profile WWW
September 17, 2015, 01:03:57 PM
 #35

How can be someone this stupid? No GPG confirmation? No phone confirmation? Nothing? Jesus.

.
Duelbits
            ▄████▄▄
          ▄█████████▄
        ▄█████████████▄
     ▄██████████████████▄
   ▄████▄▄▄█████████▄▄▄███▄
 ▄████▐▀▄▄▀▌████▐▀▄▄▀▌██

 ██████▀▀▀▀███████▀▀▀▀█████

▐████████████■▄▄▄■██████████▀
▐██████████████████████████▀
██████████████████████████▀
▀███████████████████████▀
  ▀███████████████████▀
    ▀███████████████▀
.
         ▄ ▄▄▀▀▀▀▄▄
         ▄▀▀▄      █
         █   ▀▄     █
       ▄█▄     ▀▄   █
      ▄▀ ▀▄      ▀█▀
    ▄▀     ▀█▄▄▄▀▀ ▀
  ▄▀  ▄▀  ▄▀

Live Games

   ▄▄▀▀▀▀▀▀▀▄▄
 ▄▀ ▄▄▀▀▀▀▀▄▄ ▀▄
▄▀ █ ▄  █  ▄ █ ▀▄
█ █   ▀   ▀   █ █  ▄▄▄
█ ▀▀▀▀▀▀▀▀▀▀▀▀▀ █ █   █
█▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀█  █▄█
█ ▀▀█  ▀▀█  ▀▀█ █  █▄█

Slots
.
        ▄▀▀▀▀▀▀▀▀▀▀▀▀▀▄
        █         ▄▄  █
▄▀▀▀▀▀▀▀▀▀▀▀▀▀▄       █
█  ▄▄         █       █
█             █       █
█   ▄▀▀▄▀▀▄   █       █
█   ▀▄   ▄▀   █       █

Blackjack
|█▀▀▀▀▀█▄▄▄
       ▀████▄▄
         ██████▄
▄▄▄▄▄▄▄▄█▀    ▀▀█
████████▄        █
█████████▄        █
██████████▄     ▄██
█████████▀▀▀█▄▄████
▀▀███▀▀       ████
   █          ███
   █          █▀
▄█████▄▄▄ ▄▄▀▀
███████▀▀▀
.
                 NEW!                  
SPORTS BETTING 
|||
[ Đ ][ Ł ]
AVAILABLE NOW

Advertisements are not endorsed by me.
DarkHyudrA
Legendary
*
Offline Offline

Activity: 1386
Merit: 1000


English <-> Portuguese translations


View Profile
September 17, 2015, 01:08:40 PM
 #36

One hacked e-mail and he could get a enterprise wallet of 5k BTC?
I thought security was something important when the subject is money.

English <-> Brazilian Portuguese translations
pooya87
Legendary
*
Offline Offline

Activity: 3668
Merit: 11103


Crypto Swap Exchange


View Profile
September 17, 2015, 01:12:41 PM
 #37

~~~
"After capturing Mr. Krohn's Bitpay credentials, the hacker used that information to hack into Mr. Krohn's Bitpay email account to fraudulently cause a transfer of bitcoin" valued at $1,850,000, the lawsuit says.

According to court documents, the transfer was a total of 5,000 bitcoins in three separate transactions.
~~~

what the F is wrong with these companies?

do they not know that sending a fake email is super easy. maybe i am missing something here but for transferring 1/3 of 5000 BTC which is around 400K USD any stupid person would double check everything.

i mean sending a spoofed email is so easy that anybody can do it by just googling how to...

█▀▀▀











█▄▄▄
▀▀▀▀▀▀▀▀▀▀▀
e
▄▄▄▄▄▄▄▄▄▄▄
█████████████
████████████▄███
██▐███████▄█████▀
█████████▄████▀
███▐████▄███▀
████▐██████▀
█████▀█████
███████████▄
████████████▄
██▄█████▀█████▄
▄█████████▀█████▀
███████████▀██▀
████▀█████████
▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀
c.h.
▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄
▀▀▀█











▄▄▄█
▄██████▄▄▄
█████████████▄▄
███████████████
███████████████
███████████████
███████████████
███░░█████████
███▌▐█████████
█████████████
███████████▀
██████████▀
████████▀
▀██▀▀
Come-from-Beyond
Legendary
*
Offline Offline

Activity: 2142
Merit: 1010

Newbie


View Profile
September 17, 2015, 01:15:39 PM
 #38

...they are obviously solvent...

...and run fractional reserve?
adamstgBit
Legendary
*
Offline Offline

Activity: 1904
Merit: 1037


Trusted Bitcoiner


View Profile WWW
September 17, 2015, 01:24:08 PM
 #39

well there goes this year's profit margin

adamstgBit
Legendary
*
Offline Offline

Activity: 1904
Merit: 1037


Trusted Bitcoiner


View Profile WWW
September 17, 2015, 01:26:55 PM
 #40

they should get these kinds of request signed with a private key stored on an air gapped PC.
it will add a few mins to the process, but it would prevent this hack

Pages: « 1 [2] 3 4 5 6 7 8 9 »  All
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!