Bitcoin Forum
April 27, 2024, 03:29:08 AM *
News: Latest Bitcoin Core release: 27.0 [Torrent]
 
   Home   Help Search Login Register More  
Bitcoin Forum > Bitcoin > Bitcoin Discussion > Captain obvious: "Change your mybitcoin passwords"
Pages: [1]
« previous topic next topic »
  Print  
Author Topic: Captain obvious: "Change your mybitcoin passwords"  (Read 1510 times)
AngstHase (OP)
Newbie
*
Offline Offline

Activity: 39
Merit: 0


View Profile
June 21, 2011, 09:33:58 AM
 #1
One of my friends got hacked on mybitcoin.com. He used the self username/password combination as on mtgox.

However his password was salt-hashed in the mtgox database, and far as I know its impossible to hack a salted hashvalue without the special salt hash/hex key.


Definitely the attacker got some more accounts cashed out.
http://blockexplorer.com/address/1MAazCWMydsQB5ynYXqSGQDjNQMN3HFmEu
1714188548
Hero Member
*
Offline Offline

Posts: 1714188548

View Profile Personal Message (Offline)

Ignore
1714188548
1714188548
Reply with quote  #2
1714188548
Report to moderator
1714188548
Hero Member
*
Offline Offline

Posts: 1714188548

View Profile Personal Message (Offline)

Ignore
1714188548
1714188548
Reply with quote  #2
1714188548
Report to moderator
1714188548
Hero Member
*
Offline Offline

Posts: 1714188548

View Profile Personal Message (Offline)

Ignore
1714188548
1714188548
Reply with quote  #2
1714188548
Report to moderator
Whoever mines the block which ends up containing your transaction will get its fee.
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction.
foo
Sr. Member
****
Offline Offline

Activity: 409
Merit: 250



View Profile
June 21, 2011, 11:25:31 AM
 #2
Quote from: AngstHase on June 21, 2011, 09:33:58 AM
One of my friends got hacked on mybitcoin.com. He used the self username/password combination as on mtgox.

However his password was salt-hashed in the mtgox database, and far as I know its impossible to hack a salted hashvalue without the special salt hash/hex key.
*facepalm* No, the salt is right there in the file, next to the hash. What the salt does is make it impractical to use precomputed tables, you have to brute force the password. If the password is very weak this does not take long.
I know this because Tyler knows this.
Pages: [1]
  Print  
Bitcoin Forum > Bitcoin > Bitcoin Discussion > Captain obvious: "Change your mybitcoin passwords"
 « previous topic next topic »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!