Bitcoin Forum
November 06, 2024, 08:23:57 PM *
News: Latest Bitcoin Core release: 28.0 [Torrent]
 
   Home   Help Search Login Register More  
Pages: [1] 2 »  All
  Print  
Author Topic: MtGox, Secure?  (Read 3492 times)
BitPorium (OP)
Hero Member
*****
Offline Offline

Activity: 590
Merit: 500


View Profile
June 13, 2011, 06:44:09 PM
 #1

So, is MtGoX really secure? My account was kindly hijacked and emptied of $500, thankfully I pulled the bulk out earlier. But how could this happen? I have no malware of any kind on my system, and my password is 12 characters long, Whats up with that? This totally sucks.
TheMoneyStorm
Newbie
*
Offline Offline

Activity: 54
Merit: 0



View Profile
June 13, 2011, 08:30:47 PM
 #2

Here's a bump
Ricochet
Sr. Member
****
Offline Offline

Activity: 373
Merit: 250



View Profile
June 13, 2011, 10:21:07 PM
 #3

All the recent hijackings are making me nervous. 
BitPorium (OP)
Hero Member
*****
Offline Offline

Activity: 590
Merit: 500


View Profile
June 14, 2011, 04:50:38 AM
 #4

so, its not isolated? this is very interesing
TheMoneyStorm
Newbie
*
Offline Offline

Activity: 54
Merit: 0



View Profile
June 14, 2011, 10:00:12 AM
 #5

So, is MtGoX really secure? My account was kindly hijacked and emptied of $500, thankfully I pulled the bulk out earlier. But how could this happen? I have no malware of any kind on my system, and my password is 12 characters long, Whats up with that? This totally sucks.

Did you find out what happened yet?
BitPorium (OP)
Hero Member
*****
Offline Offline

Activity: 590
Merit: 500


View Profile
June 14, 2011, 10:25:42 AM
 #6

So, is MtGoX really secure? My account was kindly hijacked and emptied of $500, thankfully I pulled the bulk out earlier. But how could this happen? I have no malware of any kind on my system, and my password is 12 characters long, Whats up with that? This totally sucks.

Did you find out what happened yet?
I emailed them but I am still waiting on a response. its a little ridiculous.
TheMoneyStorm
Newbie
*
Offline Offline

Activity: 54
Merit: 0



View Profile
June 14, 2011, 10:43:18 AM
 #7

I emailed them but I am still waiting on a response. its a little ridiculous.

I was gonna transfer some coins to MtGox yesterday, until I read this. Now I'm not real sure
I want to use them.

I hope you hear back soon.
BitPorium (OP)
Hero Member
*****
Offline Offline

Activity: 590
Merit: 500


View Profile
June 14, 2011, 11:29:15 AM
 #8

I emailed them but I am still waiting on a response. its a little ridiculous.

I was gonna transfer some coins to MtGox yesterday, until I read this. Now I'm not real sure
I want to use them.

I hope you hear back soon.
What I have done is when I send coins I put them to sell ASAP and then pull all the money out right away. I think that is the best way for me.
bitcoinTrader
Sr. Member
****
Offline Offline

Activity: 364
Merit: 250


View Profile
June 14, 2011, 11:59:06 AM
 #9

Do you see anything in account history?

smackdaddy
Newbie
*
Offline Offline

Activity: 45
Merit: 0


View Profile
June 14, 2011, 04:12:21 PM
 #10

I just noticed the Mt. Gox's login works by submitting the username and password, unencrypted (well, it posted to an SSL site, but the password is in clear text in the URL).

That makes me very uncomfortable. It makes me suspect the site has not been well coded. I feel like there is a high probability that mtgox is compromised to some degree.
anatolikostis
Legendary
*
Offline Offline

Activity: 2026
Merit: 1005



View Profile
June 14, 2011, 05:24:26 PM
 #11

Today after massive DDoS somebody has stolled all my coins ...Coins has gone

06/14/11 16:20   Withdraw BTC   1NLtQgDhn7tR4SMyGWLr9bihLuFh6SCMX2 (this is the address of hacker!!!)


 Cry Cry Cry Cry Cry Cry Cry Cry Cry Cry Cry

I`ve emailed support...


WTF!!!!
BitPorium (OP)
Hero Member
*****
Offline Offline

Activity: 590
Merit: 500


View Profile
June 14, 2011, 05:26:50 PM
 #12

Here is my significant other: 1JHqaJ2xhj18zFgYtgSf7VYx1G4QJ8u92P
chungenhung
Legendary
*
Offline Offline

Activity: 1134
Merit: 1005


View Profile
June 14, 2011, 06:48:01 PM
 #13

no its not.
It says that my IP has been blocked due to multiple login attemps from the same IP address, when I tried to login for the first time for the day.
Tried this on multiple locations, got the same result.
rx5yt
Guest

June 15, 2011, 12:11:59 AM
 #14

how many bitcoins if you dont mind me asking.  just curious as to how this may effect the market if anything
haydent
Full Member
***
Offline Offline

Activity: 154
Merit: 100



View Profile
June 15, 2011, 12:39:05 AM
 #15

yes this isnt the first time ive read about it here.

everyone should be using a secure password,

for the really paranoid, or if you're dealing in large figures consider:

as mentioned shifting btc in and out as need be is a way to protect them and its 'free' and 'fast'


as for usd i would consider withdrawing them in and out as need via liberty reserve (its fast but there are fees 2% to withdraw) or dwolla, a bit slower but only 25c to withdraw


ultimately this is an issue that could make or brake an exchange, and core to its survival.

as i mentioned in another thread, it seems ironic that many of us would have more money in mtgox than in our bank accounts yet with less security login checks.

2x Gigabyte 6950 OC @ 920/450 w/ ati tray tools (1 shader modded) - 760Mhs on ozco.in 0% fee aus pool
btc: 1HS5Brzcsh7XkJn566XYbvfpa2JuBRBdss
MagicalTux
VIP
Hero Member
*
Offline Offline

Activity: 608
Merit: 501


-


View Profile
June 15, 2011, 03:23:36 AM
 #16

Hi,

Please direct issues regarding security (such as those) to admin@mtgox.com

We will enforce more secure passwords on Mt.Gox (refuse simple ones) and add the ability to set a withdraw password.


Mark
haydent
Full Member
***
Offline Offline

Activity: 154
Merit: 100



View Profile
June 15, 2011, 03:53:38 AM
 #17

sounds good.  Cheesy

2x Gigabyte 6950 OC @ 920/450 w/ ati tray tools (1 shader modded) - 760Mhs on ozco.in 0% fee aus pool
btc: 1HS5Brzcsh7XkJn566XYbvfpa2JuBRBdss
anatolikostis
Legendary
*
Offline Offline

Activity: 2026
Merit: 1005



View Profile
June 16, 2011, 06:53:36 PM
Last edit: June 16, 2011, 11:05:18 PM by anatolikostis
 #18

Hi, Please direct issues regarding security (such as those) to admin@mtgox.com
We will enforce more secure passwords on Mt.Gox (refuse simple ones) and add the ability to set a withdraw password.
Mark

Well, Mark...


Just tell us first what kind of "marked bitcoins" you mentioned (this is the part of your answer to my postbox at anatoliy-pravo@net.lg.ua about my stolen 13.4 btc during DDoS at 06/14/11 16:20):

Quote from: MagicalTux
We have however marked your 13.4 bitcoins and will be tracking those over the network. If someone deposits those funds on Mt.Gox, we will know immediatly.
Thanks,
Mark

Satoshi will be suprised  Grin Grin Grin

Do you cherish your reputation? It seems to be not...I`ll tell my friends, they`ll tell other...Lets see how long mtgox.com will go on...

I`m going to make a new more interesting topic about this nice exchange...


 
aceman1011
Full Member
***
Offline Offline

Activity: 142
Merit: 100


View Profile
June 16, 2011, 10:35:21 PM
 #19

Not secure! My friend lost over $1000 after someone hacked his account using multithreaded brute force. Blame lulzsec. Use tradehill instead, it is much more secure. MtGox has multiple SQLi vulnerabilities...

Rent my 800 + mh/s rig. PM me!
haydent
Full Member
***
Offline Offline

Activity: 154
Merit: 100



View Profile
June 16, 2011, 11:08:54 PM
 #20

there's no way they woudn't be hashing, its a entusiast built site, not a corporation one...

2x Gigabyte 6950 OC @ 920/450 w/ ati tray tools (1 shader modded) - 760Mhs on ozco.in 0% fee aus pool
btc: 1HS5Brzcsh7XkJn566XYbvfpa2JuBRBdss
Pages: [1] 2 »  All
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!