Bitcoin Forum
November 13, 2024, 09:45:57 AM *
News: Check out the artwork 1Dq created to commemorate this forum's 15th anniversary
 
   Home   Help Search Login Register More  
Pages: [1]
  Print  
Author Topic: Give MtGox a break  (Read 1406 times)
JonasKohlheim (OP)
Newbie
*
Offline Offline

Activity: 19
Merit: 0


View Profile
June 21, 2011, 02:18:59 PM
 #1

They were the most popular, they were the biggest.
Of course that makes them the number one target as well.
And they did get attacked.

But why being so harsh towards them? Seriously, the hackers tried and will have kept trying to find a weak spot until they succeed.
This Sunday, they succeeded.

MtGox now just needs to handle the situation in a calm matter, which they are actually doing quite good:
The made some very good calls
1) They froze the websites and took the servers off line ASAP
2) They worked together with google to warn all the Gmail users ASAP

They are now handling the situation in an offline environment it seems, where they have everything under control.

What else do you expect them to do? Do you expect them to just go online just 5 hours after an attack, to make you all happy in the short term, but compromise everyone and everything in the process?!?

Give them a break, they are doing a good job at handling the situation and I respect them for it. Be patient, please.
dev^
Newbie
*
Offline Offline

Activity: 28
Merit: 0


View Profile
June 21, 2011, 02:20:27 PM
 #2

What else do you expect them to do?

Deliver helpful status informations.
BitcoinPorn
Hero Member
*****
Offline Offline

Activity: 630
Merit: 500


Posts: 69


View Profile WWW
June 21, 2011, 02:21:10 PM
 #3

Yeah.  I am with Jonas everybody who had their "real world" cash involved in this incident.   Just let this one side, I'm sure Gox will try better next time.  And if not, threes a charm!


bitsalame
Donator
Hero Member
*
Offline Offline

Activity: 714
Merit: 510


Preaching the gospel of Satoshi


View Profile
June 21, 2011, 02:24:04 PM
 #4

They were the most popular, they were the biggest.
Of course that makes them the number one target as well.
And they did get attacked.

But why being so harsh towards them? Seriously, the hackers tried and will have kept trying to find a weak spot until they succeed.
This Sunday, they succeeded.

MtGox now just needs to handle the situation in a calm matter, which they are actually doing quite good:
The made some very good calls
1) They froze the websites and took the servers off line ASAP
2) They worked together with google to warn all the Gmail users ASAP

They are now handling the situation in an offline environment it seems, where they have everything under control.

What else do you expect them to do? Do you expect them to just go online just 5 hours after an attack, to make you all happy in the short term, but compromise everyone and everything in the process?!?

Give them a break, they are doing a good job at handling the situation and I respect them for it. Be patient, please.

They weren't proving and finding "new vulnerabilities"
Mt.Gox had very old and trivial misconfigurations that most security conscious administrator would have spotted immediately.
Considering the seriousness, sensitivity and the scale of this operation, it is unforgivable that it got taken down with these stupid exploits.

After the attack we demand transparency.
The only thing we got are lies.
It leaves much to be desired.
d.james
Sr. Member
****
Offline Offline

Activity: 280
Merit: 250

Firstbits: 12pqwk


View Profile
June 21, 2011, 02:26:19 PM
 #5

I'll go easy on them if they paid me their daily trade commission.

I also expect them to do what they should do when someone gets paid with that commission.

You can not roll a BitCoin, but you can rollback some. Cheesy
Roll me back: 1NxMkvbYn8o7kKCWPsnWR4FDvH7L9TJqGG
Findeton
Full Member
***
Offline Offline

Activity: 126
Merit: 100


View Profile
June 21, 2011, 02:34:56 PM
 #6

I expect them to work hard to solve the problem. I'm not saying they have to solve it instantly, but they've also contributed to people's anxiety stating that they would reopen mtgox today at 2 am GTM...

Anyways, yes, I prefer them to be perfectly sure that the claim webpage works before I use it.

Bitcoin Weekly, bitcoin analysis and commentary

14DD7MhRXuw3KDuyUuXvAsRcK4KXTT36XA
Batouzo
Member
**
Offline Offline

Activity: 70
Merit: 10


View Profile
June 21, 2011, 02:45:04 PM
 #7

They were the most popular, they were the biggest.
Of course that makes them the number one target as well.

Their had a cluster fuck negligent fuck up instead of a security system.
IT students do better job at security.
Half of people that spoken about the DB leak has better knowledge about how the system should be secured.
silverman
Newbie
*
Offline Offline

Activity: 59
Merit: 0


View Profile
June 21, 2011, 02:47:08 PM
 #8

I think I agree with the rollback. I'm not really sure.

But I won't give Mt.Gox a break because :

1. They gave away private customer information to an outside party, who then spread it across the net.

2. They apparently have called in some authority who will doubtless be asking for even more information.

3. Have not been as transparent with us about these issues as they have been with those who might use the information to take down Bitcoin and us Bitcoin users.

nazgulnarsil
Sr. Member
****
Offline Offline

Activity: 672
Merit: 258


https://cryptassist.io


View Profile
June 21, 2011, 02:56:37 PM
 #9

if you can't afford a security guy you can't afford to open for business.

THE ONE STOP SOLUTION FOR THE CRYPTO WORLD
▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄
Facebook   /  Twitter   /  Reddit   /  Medium   /  Youtube   /
      ▄▄█████████▄▄
   ▄█████████████████▄
  █████▀▀  ███  ▀▀█████
 ████     █████     ████
████     ███████
███▀    ████ ████
███▄   ████   ████
████  ████▄▄▄▄▄████  ████
 ███████████████████████
  █████▄▄       ▄▄█████
   ▀█████████████████▀
      ▀▀█████████▀▀

▄██▀▀▀▀▀▀▀▀▀▀▀▀▀██▄
▄██▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀██▄
▄█▀                       ▀█▄
▄▄▄▄ ▄█                           █▄ ▄▄▄▄
█   ███▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀███   █
▀▀█▀                                 ▀█▀▀
▄▀                                     ▀▄
▄▄▀▄▄▄▄                                 ▄▄▄▄▀▄▄
█       ▀▀▄                           ▄▀▀       █
█          █                         █          █
█▀▀▄▄▄▄▄▄▄███▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀███▄▄▄▄▄▄▄▀▀█
▒▀▄       ██▀▀▀▀▀▀▀▀▀▀▀▀█▀█▀▀▀▀▀▀▀▀▀▀▀▀██       ▄▀▒
▒█▀▀▀▀▄▄  █              ▀              █  ▄▄▀▀▀▀█▒
▒█      █ ▀▄                           ▄▀ █      █▒
▒▀▄▀▄▄▄▄▀  █▀▀▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▀▀█  ▀▄▄▄▄▀▄▀▒
▒▒▒▀▄▄▄▄▄ █                             █ ▄▄▄▄▄▀▒▒▒
 ▒▒▒▒▒▒▀▀▀▀▀▄▄▄▄▄▄███████████████▄▄▄▄▄▄▀▀▀▀▒▒▒▒▒▒▒
██
██
██
██
██
██
██
██
██
██
██
██
chihlidog
Newbie
*
Offline Offline

Activity: 28
Merit: 0


View Profile
June 21, 2011, 03:21:20 PM
 #10

My email address and my hash are floating around on a document that anyone can download. No, I dont think I am going to give them a break. He hasnt even apologized for that. Hes acting like he did everything he could. Fact is, he got greedy, jumped in over his head, and now we pay the price. The hit that BTC is taking and will take from this has cost me money. My email address has been compromised. All from an avoidable incident that could have been prevented. And I havent even heard an apology. No, sorry, I wont give him a break.
unixdude
Newbie
*
Offline Offline

Activity: 47
Merit: 0



View Profile
June 21, 2011, 03:28:14 PM
 #11

if you can't afford a security guy you can't afford to open for business.

Can't help but agree but would say that is the absolute minimum you should do. I would even say hire a CISO to get your security policies in order and  bring in a CEH to regularly test the site/ related networks for vulnerabilities it may cost them but it is worth it in the long run as the damage done to a reputation due to an event like this is immense.
semarjt
Newbie
*
Offline Offline

Activity: 27
Merit: 0


View Profile
June 21, 2011, 04:17:33 PM
 #12

if you can't afford a security guy you can't afford to open for business.


This is the hilarious part to me.

The things they are struggling with are not actual security issues

Locking your front door is not a security issue, it is just common sense.

These trivial things that have been solved a million times and can and should be automatic

You don't hire a security guy to come lock your front door.
Pages: [1]
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!