Bitcoin Forum
November 01, 2024, 02:02:49 AM *
News: Latest Bitcoin Core release: 28.0 [Torrent]
 
   Home   Help Search Login Register More  
Pages: « 1 2 [3] 4 5 »  All
  Print  
Author Topic: HELP, BITCOINS STOLEN - REWARD 600 Bitcoins or equivalent in Euro  (Read 10383 times)
thebaron
Sr. Member
****
Offline Offline

Activity: 434
Merit: 250



View Profile
November 18, 2012, 09:13:23 PM
 #41

I was referring to the OP with my statement, who comes off as the type that would be vulnerable to this kind of thing.

Ever tried NOD32? Never had a problem in the 3 years I've been running it, and it catches a lot of potential bullshit.
casascius
Mike Caldwell
VIP
Legendary
*
Offline Offline

Activity: 1386
Merit: 1140


The Casascius 1oz 10BTC Silver Round (w/ Gold B)


View Profile WWW
November 18, 2012, 09:14:57 PM
 #42

So what would be the best way to make something secure, but still usable? (ie, not cold storage, I need to trade my coins on exchanges) My current plan is to buy a lightweight netbook, carry it with me all the time, put ubuntu and full-disk encryption on it, and only do bitcoin stuff from there.

A smartphone app that could scan paper wallets and initiate transactions would make paper wallets just as mobile as your netbook.  I don't know if that smartphone app is part of the present or part of the future, but I gather your netbook won't be powered on 24/7 so it's just as cold as paper when it's off.

The hardest part of using paper wallets is having to type the codes if you can't scan them.  Eliminate the typing, and they are very convenient.  They weigh far less than the netbook and can be given away IRL if you end up needing to give someone bitcoins.

Companies claiming they got hacked and lost your coins sounds like fraud so perfect it could be called fashionable.  I never believe them.  If I ever experience the misfortune of a real intrusion, I declare I have been honest about the way I have managed the keys in Casascius Coins.  I maintain no ability to recover or reproduce the keys, not even under limitless duress or total intrusion.  Remember that trusting strangers with your coins without any recourse is, as a matter of principle, not a best practice.  Don't keep coins online. Use paper or hardware wallets instead.
slush
Legendary
*
Offline Offline

Activity: 1386
Merit: 1097



View Profile WWW
November 18, 2012, 09:16:41 PM
 #43

That's exactly why I'm working on bitcoin hardware wallet: https://bitcointalk.org/index.php?topic=122438.0 . Such theft with hacked machine and sniffed password would be impossible...

BTCurious
Hero Member
*****
Offline Offline

Activity: 714
Merit: 504


^SEM img of Si wafer edge, scanned 2012-3-12.


View Profile
November 18, 2012, 09:53:01 PM
 #44

Thing is, I need the security for more than just my wallet. As a trader, most of my bitcoins are on various exchanges, so I need a secure computer in any case. Plus two-factor auth, which has proven its worth nicely for me in this case.

On the topic of virusscanners: Many of them report false positives on things like cracks. Having a few false positives makes your virusscanner completely useless, since you won't know if a report is a false positive or an actual risk. Someone whom I told about my problem suggested microsoft security essentials, which sounds really counter-intuitive, but apparently it comes out on top in comparisons. Of course, when I get my netbook, I won't need a windows virusscanner...


Anyway, in the meantime, I need to have some virusscanner scan my infected harddisk to find the source. Preferrably I'll scan from ubuntu, since I don't want to risk any autoruns or whatever. I am not too familiar with ubuntu. I'll google myself, but maybe someone has a suggestion?

sippsnapp
Sr. Member
****
Offline Offline

Activity: 322
Merit: 250


View Profile
November 19, 2012, 05:33:04 AM
 #45

Thing is, I need the security for more than just my wallet. As a trader, most of my bitcoins are on various exchanges, so I need a secure computer in any case. Plus two-factor auth, which has proven its worth nicely for me in this case.

On the topic of virusscanners: Many of them report false positives on things like cracks. Having a few false positives makes your virusscanner completely useless, since you won't know if a report is a false positive or an actual risk. Someone whom I told about my problem suggested microsoft security essentials, which sounds really counter-intuitive, but apparently it comes out on top in comparisons. Of course, when I get my netbook, I won't need a windows virusscanner...


Anyway, in the meantime, I need to have some virusscanner scan my infected harddisk to find the source. Preferrably I'll scan from ubuntu, since I don't want to risk any autoruns or whatever. I am not too familiar with ubuntu. I'll google myself, but maybe someone has a suggestion?

Virusscanners are useless, sorry to be that harsh but i can crypt any virus undetectable for at least a week. Its not hard to modify a crypter source or buy a crypter for a few bucks.

Getting to know how viruses are spread is a great step in prevention as you know what to look for.

A firewall is only useful before an attack occurs, a trojan/bot dont cares if you run a firewall as long there is internet access, you always have something open, even if its port 80.
One way to extend the firewall is a VPN, this indeed can make a hardtime for trojan/bot.
Most viruses get detected after one week but it very much depends if it submitted and how much vics it has.
And yeah, things like cracks are perfect for spreading, because them noobs turn off the scanners.

Bottom line, a virus can only be detected if its in a anti virus database or fits in heuristic.
Scan every file where you i doubt on virustotal or jotty, both submit the sample to a ton of av vendors, they probably dont detect it from the start but at least after 1 week the same file is detected.

The below text is just copied from a skiddy forum, they sell these crypters for example....
Quote
Features:

    Unique Features:
       
  • Limited Copies.
  • Custom Process Name *Hot
  • Registry Persistence *Hot
  • Process Persistent (Anti BotKill) *Hot
  • Multiple stubs for long FUD Time *Hot
  • Advanced 4 Worm Functions *Hot
  • Unique Personal stubs available on Demand*Hot

    Advanced Features:
       
  • Working on : XP/VISTA/7 [32/64 BIT]
  • 2 Private Encrypted Fud RunPE
  • 5 Custom Injection
  • 9 Different Polymorphic Encryption
  • File Binder
  • One Time execution Binder
  • Custom encryption Pool
  • 32+ Antis
  • 2 Start-Up Methods
  • Custom Start-up Name
  • Custom Install Path
  • System Hide File
  • 4 Disablers
  • NT Header
  • File Persistence
  • Melt File
  • Bypass Firewall
  • Bypass UAC
  • Assembly Changer
  • File Cloner
  • Icon Changer
  • 5 Different Output (.pif, .scr, .com, .exe, .bat)
  • Extension Spoofer
  • Build in AV Scanne
  • Auto-Update
  • Updated almost twice a week
  • Dynamic HWID
  • Private Version Starting From 21€ (Special Discount of 30%)
  • 28€ for 40 days 21€ for 40 Days under 30% discount
  • 50€ for 120 Days 35€ for 120 Days under 30% discount
  • 65€ for 180 Days 45€ for 180 Days under 30% discount
On a PC with important/confidential data just dont surf nasty porn, dont load warez and dont visit useless flash gaming sites, dont download docx or PDF (there are exploits) from warez (for example ebooks).
+1 If you use linux
+1 If you use a virtualbox

Dont get me wrong, its not like the whole net is infected but there are standard ways how viruses are spread and you should know them.


Πάντα ῥεῖ
Bitcoin + Altcoin node pool setup - pm
BitCoinExchanger
Newbie
*
Offline Offline

Activity: 19
Merit: 0


View Profile
November 19, 2012, 12:34:28 PM
 #46

Its a big Loss.
But....i think u ll not recover them bro.
scribe
Sr. Member
****
Offline Offline

Activity: 295
Merit: 250



View Profile WWW
November 20, 2012, 02:03:41 PM
 #47

So what would be the best way to make something secure, but still usable? (ie, not cold storage, I need to trade my coins on exchanges) My current plan is to buy a lightweight netbook, carry it with me all the time, put ubuntu and full-disk encryption on it, and only do bitcoin stuff from there.

A smartphone app that could scan paper wallets and initiate transactions would make paper wallets just as mobile as your netbook.  I don't know if that smartphone app is part of the present or part of the future, but I gather your netbook won't be powered on 24/7 so it's just as cold as paper when it's off.

The hardest part of using paper wallets is having to type the codes if you can't scan them.  Eliminate the typing, and they are very convenient.  They weigh far less than the netbook and can be given away IRL if you end up needing to give someone bitcoins.

Is that assuming your scanning device is secure? I have a paper wallet set up, but know nothing of what happens to the private key I scan in, memory/app-wise...

blocknois.es Bitcoin music label. ~ New release: This Is Art

Read: Bitcoin Life | Wear: FUTUREECONOMY
l0ud
Newbie
*
Offline Offline

Activity: 23
Merit: 0


View Profile
November 20, 2012, 02:22:05 PM
 #48

Wow, wish there were anyway I could help - ATm I am looking for a way to retrieve a password I set on one of my BTC wallets a few weeks back but my loss of 60 BTC can't even compare.

I hope your situation turns out for the best.
casascius
Mike Caldwell
VIP
Legendary
*
Offline Offline

Activity: 1386
Merit: 1140


The Casascius 1oz 10BTC Silver Round (w/ Gold B)


View Profile WWW
November 20, 2012, 03:45:59 PM
 #49

Is that assuming your scanning device is secure? I have a paper wallet set up, but know nothing of what happens to the private key I scan in, memory/app-wise...

As long as you know you can spend it faster than anybody else, you're safe.  Paper wallets are worthless once the balance has been moved to another address.

It's really easy to test: simply try a transaction with some small sacrificial amount.  If it works, then you're probably safe.  If it gets stolen, at least your losses are very limited.  If you divide your holdings across multiple paper wallets and you're careful, then your risk should be limited to the balance of one paper wallet.  If you ever need to send more than one paper wallet's worth of funds somewhere, then do them back-to-back, verifying safe arrival of funds between each one: import - send - verify - import - send - verify - etc. rather than importing them all and risking they all get stolen at once.

Companies claiming they got hacked and lost your coins sounds like fraud so perfect it could be called fashionable.  I never believe them.  If I ever experience the misfortune of a real intrusion, I declare I have been honest about the way I have managed the keys in Casascius Coins.  I maintain no ability to recover or reproduce the keys, not even under limitless duress or total intrusion.  Remember that trusting strangers with your coins without any recourse is, as a matter of principle, not a best practice.  Don't keep coins online. Use paper or hardware wallets instead.
niko
Hero Member
*****
Offline Offline

Activity: 756
Merit: 501


There is more to Bitcoin than bitcoins.


View Profile
November 20, 2012, 04:16:28 PM
Last edit: November 20, 2012, 05:41:03 PM by niko
 #50

On the topic of virusscanners: Many of them report false positives on things like cracks.
This explains a lot.

They're there, in their room.
Your mining rig is on fire, yet you're very calm.
hashkey
Sr. Member
****
Offline Offline

Activity: 336
Merit: 250



View Profile
November 20, 2012, 04:43:12 PM
 #51

That's exactly why I'm working on bitcoin hardware wallet: https://bitcointalk.org/index.php?topic=122438.0 . Such theft with hacked machine and sniffed password would be impossible...

Hello slush I just happen to read an article just a while ago about your USB Wallet Project on bitcoinmagazine.net and it looks promising btw Cheesy

[WTS] 📞 Voice Call & 📩 SMS PV Services 📲 [non-US] ⏱️ Fast Service ✔️️✔️️✔️️ |
"Your effort to remain what you are is what limits you." ~ Puppet Master
duckfeet
Member
**
Offline Offline

Activity: 64
Merit: 10


View Profile
November 20, 2012, 05:05:53 PM
 #52

Dude, turn off your computer, go to police and tech-savvy private investigators.

Best advice I've read on here!
malevolent
can into space
Legendary
*
Offline Offline

Activity: 3472
Merit: 1724



View Profile
November 20, 2012, 09:27:41 PM
 #53

600 BTC (~$7000 at current rates) is a lot of money, I hope the thief made (or will make) some mistake along the way, I wish I could help but my knowledge of how the bitcoin/blockchain works is poor.
yep, for this bucks you can eventually get things moving even in russia^^.

I think the OP could try contacting the ISP or whoever administers that range of IP addresses (600 BTC is ca. 10x avg wage in Russia)
https://bitcointalk.org/index.php?topic=125641.msg1342936#msg1342936

Signature space available for rent.
casascius
Mike Caldwell
VIP
Legendary
*
Offline Offline

Activity: 1386
Merit: 1140


The Casascius 1oz 10BTC Silver Round (w/ Gold B)


View Profile WWW
November 20, 2012, 10:34:37 PM
 #54

Even if you knew who it was and had conclusive evidence that they were guilty, what exactly would you be able to do about it if they're in another country?

Pirateat40 lives in somebody's back yard, we know who he is, and nobody has collected a satoshi from him.  So what could be expected to come if someone were able to dig up some identity of somebody in Russia without any proof of guilt (knowing that even with proof of guilt, collection is unlikely)?

Paper wallets!  This is how you protect your bitcoins.  Just for fun, send 0.01 BTC to a paper wallet right now and then import it back.  Seeing it work is a valuable learning experience.

Companies claiming they got hacked and lost your coins sounds like fraud so perfect it could be called fashionable.  I never believe them.  If I ever experience the misfortune of a real intrusion, I declare I have been honest about the way I have managed the keys in Casascius Coins.  I maintain no ability to recover or reproduce the keys, not even under limitless duress or total intrusion.  Remember that trusting strangers with your coins without any recourse is, as a matter of principle, not a best practice.  Don't keep coins online. Use paper or hardware wallets instead.
slush
Legendary
*
Offline Offline

Activity: 1386
Merit: 1097



View Profile WWW
November 20, 2012, 10:40:13 PM
 #55

Paper wallets!  This is how you protect your bitcoins.  Just for fun, send 0.01 BTC to a paper wallet right now and then import it back.  Seeing it work is a valuable learning experience.

Paper wallet work until you need to load coins back to hacked machine.

malevolent
can into space
Legendary
*
Offline Offline

Activity: 3472
Merit: 1724



View Profile
November 20, 2012, 10:43:02 PM
 #56

Even if you knew who it was and had conclusive evidence that they were guilty, what exactly would you be able to do about it if they're in another country?

Pirateat40 lives in somebody's back yard, we know who he is, and nobody has collected a satoshi from him.  So what could be expected to come if someone were able to dig up some identity of somebody in Russia without any proof of guilt (knowing that even with proof of guilt, collection is unlikely)?

Ahh, Pirate Smiley
US is different from Russia where a scammer such as Pirate would be properly (or maybe a bit too severely but better than not at all) punished if the identity was known.
600 BTC might be enough for OP fly and bribe his way through to find the scammer (maybe with the help of the police after they have had received a generous tip).

Signature space available for rent.
casascius
Mike Caldwell
VIP
Legendary
*
Offline Offline

Activity: 1386
Merit: 1140


The Casascius 1oz 10BTC Silver Round (w/ Gold B)


View Profile WWW
November 20, 2012, 11:07:39 PM
 #57

Paper wallets!  This is how you protect your bitcoins.  Just for fun, send 0.01 BTC to a paper wallet right now and then import it back.  Seeing it work is a valuable learning experience.

Paper wallet work until you need to load coins back to hacked machine.

At least you'll only lose 1/10 of your coins, assuming you split them across 10 paper wallets, and that's assuming the hacker can redeem them faster than you.  If you are being actively keylogged while you redeem a paper wallet, and you click OK or hit enter before he has a chance to initiate the theft transaction, he still won't be able to steal.  The normal password trojan that logs keystrokes and sends logs periodically to the hacker is good for stealing passwords and credit card numbers but won't be of any use if the entered key becomes worthless moments after entry - he either has to be watching you in real time, or use more sophisticated malware adapted to detecting you entered a key and then preventing you from completing your transaction once you enter the key.

Companies claiming they got hacked and lost your coins sounds like fraud so perfect it could be called fashionable.  I never believe them.  If I ever experience the misfortune of a real intrusion, I declare I have been honest about the way I have managed the keys in Casascius Coins.  I maintain no ability to recover or reproduce the keys, not even under limitless duress or total intrusion.  Remember that trusting strangers with your coins without any recourse is, as a matter of principle, not a best practice.  Don't keep coins online. Use paper or hardware wallets instead.
BTCurious
Hero Member
*****
Offline Offline

Activity: 714
Merit: 504


^SEM img of Si wafer edge, scanned 2012-3-12.


View Profile
November 21, 2012, 12:28:55 AM
 #58

I've tried scanning with 2 different virusscanners, and neither seems to find a likely culprit.
Both of course mark all bitcoin miners as a potential threat, but clearly marked as "mining" or something like that.

At this point I'm giving up the search. Sorry about not being able to provide the details, but maybe being paranoid will be good for your security.

Also, my new netbook is spiffy ^_^

MKEGuy
Full Member
***
Offline Offline

Activity: 154
Merit: 100


View Profile
November 21, 2012, 01:51:01 AM
 #59

Twitter, Facebook, google, Anonymous - The hacker group.

Offer them the reward.

Its gonna take a good hacker to find that person.  Anon loves bitcoin - they will for almost for sure help you.  You MAY get lucky and they will do it for a reduced fee because they like it so much.

Good luck to you.

If you have >100 posts play the Circle of Trust Game  If I have helped you in any way, or you are just feeling generous... please feel free to donate! Smiley LNarfMNLyymkS9WYQFLcmr46AeMYNP8Qj2
josephliton
Hero Member
*****
Offline Offline

Activity: 644
Merit: 500


View Profile
November 21, 2012, 11:39:52 AM
 #60

Witches and magic.

Pages: « 1 2 [3] 4 5 »  All
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!