Bitcoin Forum
December 11, 2016, 02:33:27 AM *
News: Latest stable version of Bitcoin Core: 0.13.1  [Torrent].
 
   Home   Help Search Donate Login Register  
Pages: [1] 2 »  All
  Print  
Author Topic: MtGox's claims seem to be correct: Bitcoins still with them  (Read 4005 times)
relative
Jr. Member
*
Offline Offline

Activity: 56


View Profile
June 20, 2011, 12:30:51 PM
 #1

I think you can confirm from blockexplorer that MtGox didn't loose a large amount of bitcoins.

This seems to be their offline address: http://blockexplorer.com/address/1KLahQtqDNAXvrjNyfvgSBtAhwco5ZxLp4

There was a transfer at 18:17, at the time MtGox noticed the attack according to this timeline: http://blog.zorinaq.com/?e=55

There were no transactions in that address before that!
Some on this board claim the hacker sold and bought a large amount of coins at 0.01 to be able to withdraw 1000$ worth of coins at 0.01.
if any of these 400k were affected, this would show up on this address.
of course, noone knows how many coins were at MtGox above that 400k, but these 400k seem to be safe.

they were transferred to multiple other addresses at aprox 22:00 in 50k chunks and are now sitting there.

unless the hacker got hold of the private key of MtGox's offline deposit address, the large recorded transactions were MtGox's.



1481423607
Hero Member
*
Offline Offline

Posts: 1481423607

View Profile Personal Message (Offline)

Ignore
1481423607
Reply with quote  #2

1481423607
Report to moderator
1481423607
Hero Member
*
Offline Offline

Posts: 1481423607

View Profile Personal Message (Offline)

Ignore
1481423607
Reply with quote  #2

1481423607
Report to moderator
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1481423607
Hero Member
*
Offline Offline

Posts: 1481423607

View Profile Personal Message (Offline)

Ignore
1481423607
Reply with quote  #2

1481423607
Report to moderator
1481423607
Hero Member
*
Offline Offline

Posts: 1481423607

View Profile Personal Message (Offline)

Ignore
1481423607
Reply with quote  #2

1481423607
Report to moderator
1481423607
Hero Member
*
Offline Offline

Posts: 1481423607

View Profile Personal Message (Offline)

Ignore
1481423607
Reply with quote  #2

1481423607
Report to moderator
Epinnoia
Full Member
***
Offline Offline

Activity: 207


View Profile
June 20, 2011, 12:47:39 PM
 #2

Some on this board claim the hacker sold and bought a large amount of coins at 0.01 to be able to withdraw 1000$ worth of coins at 0.01.

Based on the interview last night, I think MtGox claimed that the $1000 worth of bitcoins was based on them being in the neighborhood of $5-$10 each, rather than $0.01 each.  

I don't much care for the explanation given about the 'auditor' being hacked.  They're citing privacy reasons for not giving out the name of the auditor, when in fact it is ridiculous to have any audit performed by unnamed entities.  It's the name of the auditor, and their credibility therefrom, which gives credence to the audits they perform.  Not naming the auditor is extremely suspicious, in my opinion.

When asked why the auditor needed access to the live database, it was claimed that the audit being performed was to ensure that MtGox wasn't manipulating quoted prices to their own benefit.  That's all great, but only if the auditor is legitimate.  And we have no way of knowing that the auditor is legitimate if we don't know who the auditor is.

What use is an audit performed by unnamed entities?  It's worthless!


My first miner -> ATI 4550 (7.2 Mh/sec): 
https://www.facebook.com/groups/cryptospeculators/
relmeas
Full Member
***
Offline Offline

Activity: 125


View Profile
June 20, 2011, 12:53:43 PM
 #3

how is it known that its that address?

i guess one could find out by making sure its the one used to transfer funds from the temporary addresses given out when adding funds to account...
relative
Jr. Member
*
Offline Offline

Activity: 56


View Profile
June 20, 2011, 12:57:09 PM
 #4

how is it known that its that address?

1. there was only one large trade on this day. it originated from this address, which wasnt touched for a week before that.
2. apparently it was known before that day that this address belongs to MtGox, see for example: http://forum.bitcoin.org/index.php?topic=17897.0
kjj
Legendary
*
Offline Offline

Activity: 1302



View Profile
June 20, 2011, 01:04:14 PM
 #5

Some on this board claim the hacker sold and bought a large amount of coins at 0.01 to be able to withdraw 1000$ worth of coins at 0.01.

Based on the interview last night, I think MtGox claimed that the $1000 worth of bitcoins was based on them being in the neighborhood of $5-$10 each, rather than $0.01 each.  

I don't much care for the explanation given about the 'auditor' being hacked.  They're citing privacy reasons for not giving out the name of the auditor, when in fact it is ridiculous to have any audit performed by unnamed entities.  It's the name of the auditor, and their credibility therefrom, which gives credence to the audits they perform.  Not naming the auditor is extremely suspicious, in my opinion.

When asked why the auditor needed access to the live database, it was claimed that the audit being performed was to ensure that MtGox wasn't manipulating quoted prices to their own benefit.  That's all great, but only if the auditor is legitimate.  And we have no way of knowing that the auditor is legitimate if we don't know who the auditor is.

What use is an audit performed by unnamed entities?  It's worthless!

I'm sure they would have been more than happy to name the auditor two days ago.  But now, I can understand them keeping quiet.

And at this point, do you really care what the financial auditor has to say, nameless or not?

Sounds like they will be attempting to recover the losses from the auditor.  Depending on how that goes, we'll probably find out their name when that is done.

p2pcoin: a USB/CD/PXE p2pool miner - 1N8ZXx2cuMzqBYSK72X4DAy1UdDbZQNPLf - todo
I routinely ignore posters with paid advertising in their sigs.  You should too.
Bruce Wagner
Sr. Member
****
Offline Offline

Activity: 336


View Profile
June 20, 2011, 01:30:21 PM
 #6

As I said elsewhere....  There's a lot more coming out.

Today at 2pm ET we'll be interviewing LIVE.... the man behind the $5,000,000 trade....
. of Bitcoin at $0.01 each....

http://twitter.com/brucewagner/status/82786506330218497
proudhon
Legendary
*
Offline Offline

Activity: 1148



View Profile
June 20, 2011, 01:31:17 PM
 #7

As I said elsewhere....  There's a lot more coming out.

Today at 2pm ET we'll be interviewing LIVE.... the man behind the $5,000,000 trade....
. of Bitcoin at $0.01 each....

http://twitter.com/brucewagner/status/82786506330218497


WTF?
relative
Jr. Member
*
Offline Offline

Activity: 56


View Profile
June 20, 2011, 01:33:37 PM
 #8

As I said elsewhere....  There's a lot more coming out.

Today at 2pm ET we'll be interviewing LIVE.... the man behind the $5,000,000 trade....
. of Bitcoin at $0.01 each....

http://twitter.com/brucewagner/status/82786506330218497



that would be 500 mil. bitcoins.
sensationalist?
bitclown
Full Member
***
Offline Offline

Activity: 186


View Profile
June 20, 2011, 01:38:16 PM
 #9

As I said elsewhere....  There's a lot more coming out.

Today at 2pm ET we'll be interviewing LIVE.... the man behind the $5,000,000 trade....
. of Bitcoin at $0.01 each....

http://twitter.com/brucewagner/status/82786506330218497
You better have your microphones sorted out today... Smiley
Clipse
Hero Member
*****
Offline Offline

Activity: 504


View Profile
June 20, 2011, 01:38:21 PM
 #10

As I said elsewhere....  There's a lot more coming out.

Today at 2pm ET we'll be interviewing LIVE.... the man behind the $5,000,000 trade....
. of Bitcoin at $0.01 each....

http://twitter.com/brucewagner/status/82786506330218497


GOD could you please stop injecting your own "company" at the expense of every single thread ? Its really becoming spammy.

...In the land of the stale, the man with one share is king... >> Clipse

We pay miners at 130% PPS | Signup here : Bonus PPS Pool (Please read OP to understand the current process)
just_someguy
Full Member
***
Offline Offline

Activity: 125


View Profile
June 20, 2011, 01:40:34 PM
 #11

OMG Bruce, if this is true then my hat is off to you.


F104
Newbie
*
Offline Offline

Activity: 26



View Profile
June 20, 2011, 01:43:54 PM
 #12

Quote
It appears that someone who performs audits on our system and had read-only access to our database had their computer compromised. This allowed for someone to pull our database. The site was not compromised with a SQL injection as many are reporting, so in effect the site was not hacked.

No, you weren’t hacked, you employed people with as much responsibility, professionalism, and sense of duty as you: none.

It makes it OK that it was "someone else" and not Gox? Earlier, Gox blamed each victimized user even as the complaints mounted.

Gox' character seems at the level of a 12 year old.
aral
Jr. Member
*
Offline Offline

Activity: 42


View Profile
June 20, 2011, 02:04:06 PM
 #13

they should use some of these bitcoins to compensate the people whose money they lost through bad security
Rob Lister
Jr. Member
*
Offline Offline

Activity: 54


View Profile
June 20, 2011, 02:10:34 PM
 #14

I don't know how exchanges are regulated.  I don't know what typical practices are.  But this bothers me more than a little.  I didn't have a gox account and I certainly don't intend to get one now.

Like I say, maybe their business practices are typical but...

1) why is the auditor unnamed?  that should have been public information both before and after the incident.

2) why does an auditor have a copy of the exchange database (read-only or otherwise) on an unsecured machine?

3) why does the copy of the exchange database include the email and password columns? 

these are just a few questions.
airdata
Sr. Member
****
Offline Offline

Activity: 406


View Profile
June 20, 2011, 02:13:45 PM
 #15

clipse : if bruce is going to get more info on this... it's not spam.  Had i not seen it in this thread, i wouldn't know about it.

So Bruce : Are you saying you're going to have the guy who hacked mtgox on?
piuk
Hero Member
*****
Offline Offline

Activity: 910



View Profile WWW
June 20, 2011, 02:14:39 PM
 #16

Bit of discussion on reddit about this ttp://www.reddit.com/r/Bitcoin/comments/i4bee/follow_the_money_trail_was_the_432000_btc/

Rob Lister
Jr. Member
*
Offline Offline

Activity: 54


View Profile
June 20, 2011, 05:55:49 PM
 #17

I don't know how exchanges are regulated.  I don't know what typical practices are.  But this bothers me more than a little.  I didn't have a gox account and I certainly don't intend to get one now.

Like I say, maybe their business practices are typical but...

1) why is the auditor unnamed?  that should have been public information both before and after the incident.

2) why does an auditor have a copy of the exchange database (read-only or otherwise) on an unsecured machine?

3) why does the copy of the exchange database include the email and password columns? 

these are just a few questions.

have any of these questions been answered in another thread?
Chick
Member
**
Offline Offline

Activity: 70


View Profile
June 20, 2011, 05:59:37 PM
 #18

ON A SIDE NOTE: 20000th THREAD HERE!

Freakin
Full Member
***
Offline Offline

Activity: 140


View Profile
June 20, 2011, 06:00:43 PM
 #19

I think the plan for teh hackers was to withdraw $1000 worth of BTC at $.01, but they likely expected the trade to be executed instantly.  

Instead, the price steadily dropped for 10-15 minutes while everyone watched, then as soon as it was over tons of bids and asks were added and price immediately shot back up to $10-12.

Adam Barr yesterday confirmed that only about 100-200 bitcoins were transferred out around the $10 mark, not hte 100,000BTC that people are speculating on.

Batouzo
Member
**
Offline Offline

Activity: 70


View Profile
June 20, 2011, 06:04:24 PM
 #20

As I said elsewhere....  There's a lot more coming out.

Today at 2pm ET we'll be interviewing LIVE.... the man behind the $5,000,000 trade....
. of Bitcoin at $0.01 each....

http://twitter.com/brucewagner/status/82786506330218497


Hey I seen that link before.

Must you spam your websites each 5 posts in each thread each minute of each hour?
Pages: [1] 2 »  All
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!