warning if you use your mt. gox password on mybitcoin!

[CalumMc]

Hello all,

I used the same password on mtgox and mybitcoin (stupid me) and now all my bitcoin from mybitcoin is gone!  Just a warning to anyone, change your password!!!

Calum

[Bezza]

This is common sense no need to warn people.

[CalumMc]

Yeah, I know. just saying though

[flug]

This is common sense no need to warn people.

It's good to give expression to common sense lest common sense be forgotten.

[BinaryMage]

This is common sense no need to warn people.

You'd be surprised how many people use the same account username and password for multiple accounts. Hopefully less prevalent here on the Bitcoin forums, but nonetheless, it's never a bad idea to remind people.

[Bezza]

This is common sense no need to warn people.

You'd be surprised how many people use the same account username and password for multiple accounts. Hopefully less prevalent here on the Bitcoin forums, but nonetheless, it's never a bad idea to remind people.

I agree it's just the title is misleading, entered this thread believing something had happened to mybitcoin but instead it's just another person making another topic on changing passwords.

[relative]

that mybitcoin is actually currently under attack using leaked mtgox passwords is something about mybitcoin

[tymothy]

This is common sense no need to warn people.

You'd be surprised how many people use the same account username and password for multiple accounts. Hopefully less prevalent here on the Bitcoin forums, but nonetheless, it's never a bad idea to remind people.

The passwords released were still encrypted, correct? So if you had 15+ characters in a strong password, chances are they won't be cracked anytime soon, right?

[phillipsjk]

They were hashed, not encrypted.

If they were encrypted, the attacker only needs to break 1 passphrase to get the passwords.. Mt. gox has been criticized for not making sure all of the hashes are "strong enough" though.

But yes, your conclusions are correct.

Edit: in theory, there is a vanishingly small chance that your complex password may correspond with a much simpler password when hashed with the same salt. If you have a complex password, you may just want to generate a new one anyway.

[CalumMc]

I'm just going through all of my accounts on things, changing the passwords to unique random strings. I've learned my lesson here!

[CalumMc]

Same thing happened to me. Very stupid of me. I caught the MtGox news a bit too late. By the time I had checked, the BTC I had with MyBitCoin had already disappeared!

I have since then changed my passwords on almost any site I can think of to something considerably more secure (and varied for each account/usage).

Thankfully I only lost 2.6 BTC. Sadly, that's still a good chunk of change for me right now. I do believe most of that was made through mining, so it's not a total loss.

Anyone willing to help a moron recover some of his lost BTC with some donations?  In the extremely unlikely chance that you are, PM me!

I'm changing all my passwords to... things like ' 5%[">s)Lv[tb{</"@5$D '.  Also if anyone feels really sorry for me... 16cZnVNWt9xghpexsZdoqqKPUyqg2KpiYf

[cronopio]

Please change the title.

Should be something like Warning if you REUSE YOUR PASSWD

[Astro]

This has nothing to do with mybitcoin and everything to do with idiots.

[andrepcg]

thank god i had no btc in mybitcoin

[qikaifu]

This has nothing to do with mybitcoin and everything to do with idiots.

You're mean.

 it's mtgox and the hacker's fault. it's not theirs.

[Astro]

it's mtgox and the hacker's fault. it's not theirs.

That's a pretty resourceful hacker that has the skill to force thousands of bitcoin users, against 20 years of internet security advice, to use the SAME PASSWORD on every site.  I tip my hat to him.

[CalumMc]

it's mtgox and the hacker's fault. it's not theirs.

That's a pretty resourceful hacker that has the skill to force thousands of bitcoin users, against 20 years of internet security advice, to use the SAME PASSWORD on every site.  I tip my hat to him.

i'm not saying it's not my fault, of course a lot of its my fault for having the same password.

[Sandoz]

I wonder why so many people trust "online wallets", especially after the whole Sony mess.

I advise everyone to keep their bitcoins on their own computer. At least there is no one else to blame if they are stolen. You have it in your hands to protect your wallet...

[CalumMc]

I wonder why so many people trust "online wallets", especially after the whole Sony mess.

I advise everyone to keep their bitcoins on their own computer. At least there is no one else to blame if they are stolen. You have it in your hands to protect your wallet...

i use mybitcoin for portability. I wonder if it would be possible to use appspot http://code.google.com/p/bitcoinj/