Hacked BitcoinTalk Data Finally Surfaces On Dark Net

[pearnapple]

i can not imagine how to do that, cracked password is far beyond from my imagination and i can not figure out how to do that. i hope that bitcointalk will be fine and will be ok, for the forum and for the member especially. and i hope nothing will be happen with bitcoin community and we should not be worried.

in my opinion no one is going to crack it any time soon, in order to be really safe i think that it would be better to just change your password

[jackg]

i can not imagine how to do that, cracked password is far beyond from my imagination and i can not figure out how to do that. i hope that bitcointalk will be fine and will be ok, for the forum and for the member especially. and i hope nothing will be happen with bitcoin community and we should not be worried.

in my opinion no one is going to crack it any time soon, in order to be really safe i think that it would be better to just change your password

There's not realy much danger if you don't though.
It is designed to be impossible tocrack and it will be almost impossible to crack. There willbe some ways of cacing it (mainly brute-force to get it). Maybe with a high qubit computer you could do itbut they are probably more expensive than useful for this.

[Rinder]

Soo looks like the attack were something personal or some competitor trying to put bitcointalk, down its insane since the hack several hackeds accounts had been sold and hacked, i do hope this wont affect the current accounts.

[Teraboy]

Soo looks like the attack were something personal or some competitor trying to put bitcointalk, down its insane since the hack several hackeds accounts had been sold and hacked, i do hope this wont affect the current accounts.

But the hacked account is already sold in this time just a data of bitcoin talk is really hacking at may in the past year, and we know from some news is already tell us, if the hacker is starting for selling the data for a few days ago and the data is encrypted by SHA 256 algorithm. but i hate about the ddos can make site is downtime for several hours. Will be better for changing your password in this time for avoiding a worst thing.

[Wind_FURY]

I suppose everyone already considered the data compromised even if they did not see it officially on sale, I changed my passwords after every recent issue occurring in BCT as well as the CEX.IO data compromise and I changed all the passwords used on these sites. I think everyone should do that as well.

cex.io was hacked? I have not heard about this. Please post more details about it and when it happened. To my knowledge I have not heard or seen any hacks that involved cex.io funds being stolen.

[pooya87]

I suppose everyone already considered the data compromised even if they did not see it officially on sale, I changed my passwords after every recent issue occurring in BCT as well as the CEX.IO data compromise and I changed all the passwords used on these sites. I think everyone should do that as well.

cex.io was hacked? I have not heard about this. Please post more details about it and when it happened. To my knowledge I have not heard or seen any hacks that involved cex.io funds being stolen.

account hack is different from the site itself being hacked. (although it seems like cex.io was hacked in 2013) but i think he is talking about his own account being compromised and most of the google results about cex.io hack also suggests.

[Cashew]

Very useful information mate ! There should be a sticky somewhere or a messsage like the one that announce new versions of Bitcoin Core. My password has 60~70 bits of entropy, so that's definitively not worth trying to crack it.

[Zadicar]

i can not imagine how to do that, cracked password is far beyond from my imagination and i can not figure out how to do that. i hope that bitcointalk will be fine and will be ok, for the forum and for the member especially. and i hope nothing will be happen with bitcoin community and we should not be worried.

Cracking  passwords would be  difficult for the hackers  since it was encrypted ,same as others said that you would need a super  computer to crack it. I guess its up to you  if you change your password as of now  since its a little bit worrying for us that our account  could possibly be compromised and possibly  get by someone.

[abayan]

i can not imagine how to do that, cracked password is far beyond from my imagination and i can not figure out how to do that. i hope that bitcointalk will be fine and will be ok, for the forum and for the member especially. and i hope nothing will be happen with bitcoin community and we should not be worried.

Cracking  passwords would be  difficult for the hackers  since it was encrypted ,same as others said that you would need a super  computer to crack it. I guess its up to you  if you change your password as of now  since its a little bit worrying for us that our account  could possibly be compromised and possibly  get by someone.

I agree im also read this news a day ago then im starting to change my password in all over my most visited websites and some of impotant website just to play safe. But if it really true then i should worry about it.

[pandalion98]

~snip~

Instead of qustioning if satoshi is one of the effeted members, maybe try to find if the admins were breached of this issue? Even though they will change teir passwords often (probably) it cannot be ruled out that their passwords are also being sold here.

If you pay attention to this:

What year did you change the hashing algorithm? From what I saw in the database some users who didn't logon after 2012 were not in it.

July 2012.

He last logged in in december 2010! Definitely before that time so he's not on that database.

As far as I know, Satoshi's account is disabled until someone can positively identify themselves as Satoshi (PGP/GPG, etc.). Until then, no one can use that account.

[MONKEYJUNK]

'To break it down, there are 469,540 passwords that have been encrypted with SHA-256, and 44,868 passwords encrypted wit SMF encryption.'

Incorrect.

     
   
So it's a fake article? 
Should we change the password or not?
   
It will be very helpful if the forum implement a 2FA or something like that...

[Pattberry]

Something must be done to put an end this hacking things going around the corner.

are you kidding me,how would you do that,hacking attempts are a part and parcel in this virtual world, you either take good care of what you do online and be careful on what all sites you share the same username and password,i dont expect the admin over here to take care of security very much,they are just running this forum as it is,i understand how difficult of a task it is to maintain these kind of traffic in here.But you could always improve the security of this site.

[bitcapitalist]

Change your password and make sure you don't use it with another service, that's all.

[Sharma]

'To break it down, there are 469,540 passwords that have been encrypted with SHA-256, and 44,868 passwords encrypted wit SMF encryption.'

Incorrect.

     
   
So it's a fake article? 
Should we change the password or not?
   
It will be very helpful if the forum implement a 2FA or something like that...

If we were required to change password,the forum admin or staff should have intimidated this to us through general notice.Since there is no such announcement,I Dont think we should worry although keep changing password periodically is a good practice

[jackg]

'To break it down, there are 469,540 passwords that have been encrypted with SHA-256, and 44,868 passwords encrypted wit SMF encryption.'

Incorrect.

     
   
So it's a fake article? 
Should we change the password or not?
   
It will be very helpful if the forum implement a 2FA or something like that...

If we were required to change password,the forum admin or staff should have intimidated this to us through general notice.Since there is no such announcement,I Dont think we should worry although keep changing password periodically is a good practice

Or just try to strengthen current ones.
It's hard to reverse the hashed passwords anyway. And I'm also informed that the usernames and emails are also hashed, making it extremely difficult.
You are probably correct, if there was any serious threat, It'd be reported in the message section (the part that states the "latest stable version of bitcoin core"

[Youresioure]

I wasn't here that time so I'm not worried about it, but since you're advised to change your log in data regularly and if there's such a security event, with extra caution, I think everyone with at least basic caution's changed their data already.

[shinratensei_]

'To break it down, there are 469,540 passwords that have been encrypted with SHA-256, and 44,868 passwords encrypted wit SMF encryption.'

Incorrect.

     
   
So it's a fake article? 
Should we change the password or not?
   
It will be very helpful if the forum implement a 2FA or something like that...

It's not a fake article, i believe is real according to in may 2015 bitcoin talk is ever getting hacked and their some database was stolen and if you wanna visiting in another sub forum in here you will see there are a people is selling the account is from the hacked database.

[BitcoinHunt3r]

Change your password and make sure you don't use it with another service, that's all.

ya it is better to keep our account secured by ourself, change our password periodically is good advice , and dont forget to use 2fa on every account if that is possible to do

[west man4]

My account was hacked but i can not get an email to get it back, they changed the email account? 
Have no staked address that can sign a message from.
So what are my options here?

My account is west man!

Please someone help because the ones I have pm'd are not responding anymore.

[hajimasan]

This just out in the news. What are the implications of this as a regular user of BCT? Should we be worried about this?

http://themerkle.com/hacked-bitcointalk-user-data-finally-surfaces-on-dark-net/

"Just a few days ago, the data stolen from the BitcoinTalk.org hack in 2015 was posted for sale on dark net. A hacker going by DoubleFlag, is selling BitcoinTalk.org’s database. The same hacker is said to be responsible for the 68 million emails and hashed passwords from Dropbox that went for sale on dark net not too long ago.

BitcoinTalk.org was originally hacked in May of 2015, but the data wasn’t posted until a few days ago. DoubleFlag seems to have been the first one able to get his hands on it, and no one after him for that matter. The stolen data was only accessible by using data breach notification sites like Hacked-DB and LeakedSource."

earlier i thought that the news of Ddoss attack on the bitcointalk.org forum is a fake news but today half hour ago during reply a post i see a heading news by this forum .

" News : Due to DDoS attacks, there may be periodic
downtime."

now i will suggest everyone they should change there password .