Bitcoin Forum
December 06, 2016, 06:22:03 PM *
News: Latest stable version of Bitcoin Core: 0.13.1  [Torrent].
 
   Home   Help Search Donate Login Register  
Pages: [1] 2 »  All
  Print  
Author Topic: Someone tried to retrieve my mtgox password  (Read 2577 times)
ploum
Sr. Member
****
Offline Offline

Activity: 378



View Profile WWW
June 27, 2011, 08:34:14 PM
 #1

I received a mail from MtGox saying that I tried to reset my password.

This was not me (this is obvious, the request is coming from a Windows PC  Grin )

But the strangest thing is that if you try to reply to the mail (as they told you to do if you haven't requested the reset), the mail is sent to :
Mt.Gox@w001.mo.us.xta.net

Do you smell that?


Blog posts about Bitcoin - 1KdRBbhjo72CqKTrFsQed6s9NMrvwvrUkq
1481048523
Hero Member
*
Offline Offline

Posts: 1481048523

View Profile Personal Message (Offline)

Ignore
1481048523
Reply with quote  #2

1481048523
Report to moderator
1481048523
Hero Member
*
Offline Offline

Posts: 1481048523

View Profile Personal Message (Offline)

Ignore
1481048523
Reply with quote  #2

1481048523
Report to moderator
1481048523
Hero Member
*
Offline Offline

Posts: 1481048523

View Profile Personal Message (Offline)

Ignore
1481048523
Reply with quote  #2

1481048523
Report to moderator
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1481048523
Hero Member
*
Offline Offline

Posts: 1481048523

View Profile Personal Message (Offline)

Ignore
1481048523
Reply with quote  #2

1481048523
Report to moderator
nosfera2
Jr. Member
*
Offline Offline

Activity: 42



View Profile
June 27, 2011, 08:37:36 PM
 #2

No way! They hacked Mt Gox again and changed the domain name!
Dirt Rider
Member
**
Offline Offline

Activity: 111


View Profile
June 27, 2011, 08:38:31 PM
 #3

I received the same email.  Looks like some form of phishing attempt.
Dirt Rider
Member
**
Offline Offline

Activity: 111


View Profile
June 27, 2011, 08:39:40 PM
 #4

No way! They hacked Mt Gox again and changed the domain name!

No.  Anyone can send you an email and set the reply-to address to be anything they want.
Vince Torres
Sr. Member
****
Offline Offline

Activity: 337


View Profile
June 27, 2011, 08:40:54 PM
 #5

I think this is a conspiracy. We need some answers.

Namecoin.com .bit domain registrar. Register a new .bit domain for just $1!
BTC: 1LpKzg24NHmrxLZbnVphcstV3s7uA8cSnT
LTC: LWHswCFRPouCXTNiT8B9HUVnGrae9eojVg
ploum
Sr. Member
****
Offline Offline

Activity: 378



View Profile WWW
June 27, 2011, 08:41:31 PM
 #6

With the list of users and their email address having been made public, I'm astonished we are not receiving more of those  Roll Eyes

Blog posts about Bitcoin - 1KdRBbhjo72CqKTrFsQed6s9NMrvwvrUkq
Dirt Rider
Member
**
Offline Offline

Activity: 111


View Profile
June 27, 2011, 08:47:34 PM
 #7

I think this is a conspiracy. We need some answers.

Oh give me a break.  Have you never received spam and/or phishing emails?
EricJ2190
Full Member
***
Offline Offline

Activity: 134


View Profile
June 27, 2011, 08:47:34 PM
 #8

All of Mt. Gox's mail originates from the server w001.mo.us.xta.net. Just check the headers on your account recovery emails. The fact that is shows up in the From address of the password reset email is probably just a mistake on their part.
twobitcoins
Full Member
***
Offline Offline

Activity: 144


View Profile
June 27, 2011, 08:48:05 PM
 #9

I received such an email.  I determined it was most likely from Mt. Gox because I had recently changed my email address on Mt. Gox to a new, unique one and the email came to that address.  The strange From field is disconcerting, but I think it is a misconfiguration rather than an attack in this case.
LightRider
Legendary
*
Offline Offline

Activity: 1488


I advocate the Zeitgeist Movement & Venus Project.


View Profile WWW
June 27, 2011, 08:48:19 PM
 #10

I have received a similar message, although I had not made such a request. The IP address the request originated from is a tor server in Germany. Someone is definitely trying to break back into the accounts.

Bitcoin combines money, the wrongest thing in the world, with software, the easiest thing in the world to get wrong.
Visit www.thevenusproject.com and www.theZeitgeistMovement.com.
Dirt Rider
Member
**
Offline Offline

Activity: 111


View Profile
June 27, 2011, 08:51:27 PM
 #11

All of Mt. Gox's mail originates from the server w001.mo.us.xta.net. Just check the headers on your account recovery emails. The fact that is shows up in the From address of the password reset email is probably just a mistake on their part.

So confirm that the address is real by looking at the header of the suspect email?

Sure, I suppose it's possible that MtGox just goofed on the reply-to, which of course means that someone requested password recovery for my account and also ploum's (and it wasn't us).
nosfera2
Jr. Member
*
Offline Offline

Activity: 42



View Profile
June 27, 2011, 08:51:53 PM
 #12

No way! They hacked Mt Gox again and changed the domain name!

No.  Anyone can send you an email and set the reply-to address to be anything they want.

Whooshitywhoo!  Wink
Dirt Rider
Member
**
Offline Offline

Activity: 111


View Profile
June 27, 2011, 08:55:44 PM
 #13

I have received a similar message, although I had not made such a request. The IP address the request originated from is a tor server in Germany. Someone is definitely trying to break back into the accounts.

Ok so someone is for some reason triggering password recovery requests.  I am not sure what they have to gain from that, unless they think they can somehow intercept the outbound email messages from MtGox, that's a scary thought.
Seraphim401
Full Member
***
Offline Offline

Activity: 215


Live Long and Prosper


View Profile
June 27, 2011, 09:18:41 PM
 #14

I got the same e-mail,be careful guys.
 

dacoinminster
Legendary
*
Offline Offline

Activity: 1106


Rational Exuberance


View Profile WWW
June 28, 2011, 12:04:57 AM
 #15

I got it too. I'm relieved that lots of people got this - I thought maybe someone had hacked my email and they were trying to reset my password because they knew they had access to my email.

Of course, I don't have enough BTC to be worth stealing, so they would be disappointed even if it worked Smiley

Vinnie
Full Member
***
Offline Offline

Activity: 126


View Profile
June 28, 2011, 12:16:29 AM
 #16

I got it, too.

Anonymous Cash-By-Mail Exchange: https://www.bitcoin2cash.com
kwukduck
Legendary
*
Offline Offline

Activity: 1564


View Profile
June 28, 2011, 12:54:18 AM
 #17

too, as have 2 of my friends.

14b8PdeWLqK3yi3PrNHMmCvSmvDEKEBh3E
Rogue Star
Member
**
Offline Offline

Activity: 88


View Profile
June 28, 2011, 01:36:35 AM
 #18

at first i thought it was someone trying to reset my password because the IP was off. then I thought it was a phishing attempt when i saw the reply to address was weird after responding. i don't know what to think now, but i'm still leaning toward phishing :-/

in any case i forward it to mtgox which triggered the support site to create a ticket, hopefully i'll hear back from them.

you can donate to me for whatever reason at: 18xbnjDDXxgcvRzv5k2vmrKQHWDjYsBDCf
dacoinminster
Legendary
*
Offline Offline

Activity: 1106


Rational Exuberance


View Profile WWW
June 28, 2011, 03:25:34 PM
 #19

They replied to my support ticket as follows:

Ticket #****: Re: [Mt.Gox] Password recovery

Your request (#****) has been deemed solved.

To review, comment and reopen the request, follow the link below:
http://support.mtgox.com/tickets/****


Jiraiya, Jun-28 18:33 (JST):

Hello,

We have identified an issue with our password reset system that caused many users to receive unsolicited password reset emails. It is likely this was the cause of you receiving this email.

We would, however, like to remind you that having the same password for multiple online accounts is not secure.

Thanks,
Regards,
Jiraiya

MtGox.com Team

Mousepotato
Hero Member
*****
Offline Offline

Activity: 896


Seal Cub Clubbing Club


View Profile
June 28, 2011, 05:26:10 PM
 #20

No.  Anyone can send you an email and set the reply-to address to be anything they want.
I'm pretty sure he was being sarcastic Smiley

Mousepotato
Pages: [1] 2 »  All
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!