Bitcoin Forum
December 14, 2024, 07:53:10 PM *
News: Latest Bitcoin Core release: 28.0 [Torrent]
 
   Home   Help Search Login Register More  
Pages: [1]
  Print  
Author Topic: [2015-10-13] Purse.io users’ accounts compromised, hackers stole 10,235 BTC  (Read 683 times)
milaliss (OP)
Full Member
***
Offline Offline

Activity: 224
Merit: 100


View Profile
October 13, 2015, 06:56:52 AM
 #1

Purse.io users’ accounts compromised, hackers stole 10,235 BTC
Several users of Purse.io, a P2P service provider allowing to shop on Amazon with bitcoins, reported receiving unauthorized password reset emails which was quickly followed by unauthorized withdrawals of money from their accounts.
http://www.coinfox.info/news/3348-purse-io-users-accounts-compromised-hackers-stole-10-235-btc
freedomno1
Legendary
*
Offline Offline

Activity: 1834
Merit: 1094


Learning the troll avoidance button :)


View Profile
October 13, 2015, 06:57:47 AM
Last edit: October 13, 2015, 07:09:59 AM by freedomno1
 #2

Thanks I'll add it to the list of big bitcoin thefts
Edit: It looks like someone put a comma where a decimal was needed ...
https://www.cryptocoinsnews.com/purse-io-users-are-targeted-by-hackers-10-235-btc-stolen/
http://siliconangle.com/blog/2015/10/11/purse-io-denies-bitcoin-theft-despite-compromise-and-multiple-users-saying-theyve-been-robbed/

Confirmed SOURCE OP ERROR  CORRECTION Posted Below

Bitcoin startup Purse said today that 10.235 BTC (roughly $2,500) in customer funds were stolen over the weekend during a security incident.

Eleven customers had their accounts emptied, according to Purse representatives, who reported they had covered the bitcoins withdrawn with company funds.

http://www.coindesk.com/customer-bitcoin-stolen-purse-email-breach/

“We actively monitor our customer liabilities against the funds we control. During our downtime, we determined funds we control exceeded customer liabilities [and] the unauthorized withdrawals (10.235 BTC) implying user funds were secure," he said in an email. "Profit from one to two days was used to reimburse the withdrawals.”

Believing in Bitcoins and it's ability to change the world
jacee
Legendary
*
Offline Offline

Activity: 1302
Merit: 1025


View Profile
October 13, 2015, 06:58:54 AM
 #3

Purse.io users’ accounts compromised, hackers stole 10,235 BTC
Several users of Purse.io, a P2P service provider allowing to shop on Amazon with bitcoins, reported receiving unauthorized password reset emails which was quickly followed by unauthorized withdrawals of money from their accounts.
http://www.coinfox.info/news/3348-purse-io-users-accounts-compromised-hackers-stole-10-235-btc

That's a lot of coins. I wonder where hackers uses all those.  What eo you guys think will be their next target?  Undecided
freedomno1
Legendary
*
Offline Offline

Activity: 1834
Merit: 1094


Learning the troll avoidance button :)


View Profile
October 13, 2015, 07:03:46 AM
 #4

Purse.io users’ accounts compromised, hackers stole 10,235 BTC
Several users of Purse.io, a P2P service provider allowing to shop on Amazon with bitcoins, reported receiving unauthorized password reset emails which was quickly followed by unauthorized withdrawals of money from their accounts.
http://www.coinfox.info/news/3348-purse-io-users-accounts-compromised-hackers-stole-10-235-btc

That's a lot of coins. I wonder where hackers uses all those.  What eo you guys think will be their next target?  Undecided

Fail it was 10 BTC good news though just a small hack

https://blog.purse.io/update-on-unauthorized-password-reset-emails/

Update:  

11 users were affected and 10.235 Bitcoin were withdrawn. All affected accounts have been reimbursed.  Reports of accounts with 2FA being compromised are not accurate. Some users enabled 2FA after they received reset password emails.  Accounts that were affected will soon regain access.  We will publish technical details of the attack in the coming days.

Believing in Bitcoins and it's ability to change the world
LiteCoinGuy
Legendary
*
Offline Offline

Activity: 1148
Merit: 1014


In Satoshi I Trust


View Profile WWW
October 13, 2015, 07:42:05 AM
 #5

“No accounts with 2FA enabled before the attack were affected. Reports of accounts with 2FA being compromised are not accurate. Some users enabled 2FA after they received reset password emails,” he said.


Some people will never learn. 2FA has to be mandatory.

Cereberus
Legendary
*
Offline Offline

Activity: 910
Merit: 1000



View Profile
October 13, 2015, 12:00:46 PM
 #6

Purse.io users’ accounts compromised, hackers stole 10,235 BTC
Several users of Purse.io, a P2P service provider allowing to shop on Amazon with bitcoins, reported receiving unauthorized password reset emails which was quickly followed by unauthorized withdrawals of money from their accounts.
http://www.coinfox.info/news/3348-purse-io-users-accounts-compromised-hackers-stole-10-235-btc

That's a lot of coins. I wonder where hackers uses all those.  What eo you guys think will be their next target?  Undecided

I don't think they use them all in one place. 10 btc wouldn't be hard to distribute and sell off for another currency.
before the revision on the amount: 10kbtc on the other hand   Sad




    ██    ██    ██    ██
  ██    ██    ██    ██
██    ██    ██    ██
              ██    ██
            ██    ██
          ██    ██
        ██    ██
      ██    ██       
    ██    ██    ██    ██
  ██    ██    ██    ██
██    ██    ██    ██
TRADEPLAYZ
█ 
█ 
█     
█  █
█  █ 
█  █ 
█  █
    █  █
  █  █
  █  █
        █
    █
      █   
TOURNAMENT PVP SYSTEM
  FACEBOOK |  TWITTER  |  LINKEDIN  |  TELEGRAM  |  GITHUB  |  ANN  | INSTAGRAM 

█ 
█ 
█     
█  █
█  █ 
█  █ 
█  █
    █  █
  █  █
  █  █
        █
    █
      █   

                     █▄
                     ████▄
                     ██████▄
                     ████████▄
                     ██████████▄
                     ████████████▄
                     ██████████████▄
                     ███████████████
                     ██████████████▀
                     ████████████▀
                     ██████████▀
                     ████████▀
                     ██████▀
                     ████▀
                     █
█▀
GOOGLE PLAY

                            ▄█████████████▄
                            ███████████████
                            █░░░░░░░░░░░░░█
                            █░░░░░░░░░░░░░█
                            █░░░░░░░░░░░░░█
                            █░░░░░░░░░░░░░█
                            █░░░░░░░░░░░░░█
                            █░░░░░░░░░░░░░█
                            █░░░░░░░░░░░░░█
                            █░░░░░░░░░░░░░█
                            █░░░░░░░░░░░░░█
                            █░░░░░░░░░░░░░█
                            █░░░░░░░░░░░░░█
                            ██████▀▀▀██████
                             ▀████▄▄▄▄████▀
  APPSTORE
tiggytomb
Legendary
*
Offline Offline

Activity: 1848
Merit: 1000


View Profile
October 13, 2015, 12:05:20 PM
 #7

Was initially shocked as I read 10k Bitcoins stolen! Smiley
definitely 2FA is a must nowadays on anything that has value.
jacee
Legendary
*
Offline Offline

Activity: 1302
Merit: 1025


View Profile
October 13, 2015, 12:11:41 PM
 #8

Was initially shocked as I read 10k Bitcoins stolen! Smiley
definitely 2FA is a must nowadays on anything that has value.

As litecoinguy said above, 2FA should be mandatory and I think it's about time that these sites make it also mandatory for people to use the 2FA. No 2FA then no account. It helps the community and also the company.
Hugroll
Hero Member
*****
Offline Offline

Activity: 756
Merit: 500


View Profile
October 13, 2015, 12:13:46 PM
 #9

i got an email couple months ago about purses security being compromised and password change advice. i just decided to stop using purse lol, guess i made a pretty goo decision
mrkent
Sr. Member
****
Offline Offline

Activity: 249
Merit: 256


Try Purse Instant! https://purse.io/instant


View Profile WWW
October 14, 2015, 11:32:15 PM
 #10

i got an email couple months ago about purses security being compromised and password change advice. i just decided to stop using purse lol, guess i made a pretty goo decision

That email was regarding phishing attempts. Purse hasn't had any other security breaches.

  Spend BTCBTCBTCBTCBTCBTC @ amazon
Save 10-25% with Ƀ worldwide - PurseIO
Anonymously▃▃▃▃▃▃ ⌚Fast ⚖Safe ⓑOn Credit
Buy BTC w. Card
  Worldwide - Purse.IO
odolvlobo
Legendary
*
Offline Offline

Activity: 4522
Merit: 3426



View Profile
October 15, 2015, 12:00:24 AM
 #11

Translation for American readers:

Quote
Purse.io users’ accounts compromised, hackers stole 10.235 BTC

Join an anti-signature campaign: Click ignore on the members of signature campaigns.
PGP Fingerprint: 6B6BC26599EC24EF7E29A405EAF050539D0B2925 Signing address: 13GAVJo8YaAuenj6keiEykwxWUZ7jMoSLt
Kakmakr
Legendary
*
Offline Offline

Activity: 3542
Merit: 1966

Leading Crypto Sports Betting & Casino Platform


View Profile
October 15, 2015, 07:47:29 AM
 #12

Nothing new here, phishing attempts are rampant in the online banking scene too, and nobody post that as headline news on websites. It happens even more than we know, the banks just manage to keep it quite. One of my friends got his accounts cleared with the same thing and spoofed websites.

The thief's will not stop trying, because you use Bitcoin. They will target any platform or payment method with these type of social engineering attacks. If you do not enable 2FA, you expose yourself to a world of trouble.   

..Stake.com..   ▄████████████████████████████████████▄
   ██ ▄▄▄▄▄▄▄▄▄▄            ▄▄▄▄▄▄▄▄▄▄ ██  ▄████▄
   ██ ▀▀▀▀▀▀▀▀▀▀ ██████████ ▀▀▀▀▀▀▀▀▀▀ ██  ██████
   ██ ██████████ ██      ██ ██████████ ██   ▀██▀
   ██ ██      ██ ██████  ██ ██      ██ ██    ██
   ██ ██████  ██ █████  ███ ██████  ██ ████▄ ██
   ██ █████  ███ ████  ████ █████  ███ ████████
   ██ ████  ████ ██████████ ████  ████ ████▀
   ██ ██████████ ▄▄▄▄▄▄▄▄▄▄ ██████████ ██
   ██            ▀▀▀▀▀▀▀▀▀▀            ██ 
   ▀█████████▀ ▄████████████▄ ▀█████████▀
  ▄▄▄▄▄▄▄▄▄▄▄▄███  ██  ██  ███▄▄▄▄▄▄▄▄▄▄▄▄
 ██████████████████████████████████████████
▄▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▄
█  ▄▀▄             █▀▀█▀▄▄
█  █▀█             █  ▐  ▐▌
█       ▄██▄       █  ▌  █
█     ▄██████▄     █  ▌ ▐▌
█    ██████████    █ ▐  █
█   ▐██████████▌   █ ▐ ▐▌
█    ▀▀██████▀▀    █ ▌ █
█     ▄▄▄██▄▄▄     █ ▌▐▌
█                  █▐ █
█                  █▐▐▌
█                  █▐█
▀▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▀█
▄▄█████████▄▄
▄██▀▀▀▀█████▀▀▀▀██▄
▄█▀       ▐█▌       ▀█▄
██         ▐█▌         ██
████▄     ▄█████▄     ▄████
████████▄███████████▄████████
███▀    █████████████    ▀███
██       ███████████       ██
▀█▄       █████████       ▄█▀
▀█▄    ▄██▀▀▀▀▀▀▀██▄  ▄▄▄█▀
▀███████         ███████▀
▀█████▄       ▄█████▀
▀▀▀███▄▄▄███▀▀▀
..PLAY NOW..
rammy2k2
Legendary
*
Offline Offline

Activity: 1974
Merit: 1003



View Profile
October 15, 2015, 10:39:59 AM
 #13

Translation for American readers:

Quote
Purse.io users’ accounts compromised, hackers stole 10.235 BTC


yes, it was NOT stolen 10k BTC, it was 10 BTC, so nothing huge  Cheesy
Digit-0
Full Member
***
Offline Offline

Activity: 199
Merit: 100


in the end, you only find the beginning


View Profile
October 15, 2015, 11:50:11 AM
 #14

Nothing new here, phishing attempts are rampant in the online banking scene too, and nobody post that as headline news on websites. It happens even more than we know, the banks just manage to keep it quite. One of my friends got his accounts cleared with the same thing and spoofed websites.

The thief's will not stop trying, because you use Bitcoin. They will target any platform or payment method with these type of social engineering attacks. If you do not enable 2FA, you expose yourself to a world of trouble.  

yes, i agree with that, i mean that this happened even more than we know, this is curious about why there is no news about that, i mean about obviously the banks just manage to keep it quite, but why there is never news about it, because as you said it happens more often that we are thinking.


yes, it was NOT stolen 10k BTC, it was 10 BTC, so nothing huge  Cheesy

ahhh just imagine that it was your own 10 btc the one that was stolen, will be it huge? Tongue
Pages: [1]
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!