Bitcoin Forum
December 17, 2017, 06:40:34 AM *
News: Latest stable version of Bitcoin Core: 0.15.1  [Torrent].
 
   Home   Help Search Donate Login Register  
Pages: « 1 2 3 [4]  All
  Print  
Author Topic: Blockchain.info security [FUNDS STOLEN]  (Read 27516 times)
Jesse James
Newbie
*
Offline Offline

Activity: 29


View Profile
August 22, 2013, 08:34:26 AM
 #61

After reviewing the blockchain.info wallet source code, I can not recommend using it at the moment.  I had a full monty write-up on this earlier, but as I've dug deeper I've decided to take it down so I can communicate my findings to blockchain.info exclusively first.  Stay tuned.
Jesse James. I'm so sad. I lose 263.84btc total from 2 difference address in blockchain.info on 29th Aug. 2013. Details Please check  https://bitcointalk.org/index.php?topic=277601.0

Can you help me to check it's because of bug?

@watertech666: Sorry for your loss.  However, neither of your victimized addresses 1 2 appears on my published list nor in johoe's additions to it so neither of your addresses was specifically effected by the repeated signature nonce issue. 

Also, it's clear the thief knows the private key for 1CzAncjXYjtiXNC4CNAw4RoKdQLoi72xn, so you should remove it from your forum signature.  He could steal from either address in the future at any time.

Hello, my blockchain.info wallet was cleaned in April - back then there was a wave of stolen coins but only a speculation about the reason having to do with the alias and offline copies.

can someone check my old address / transactions with the script?
https://blockchain.info/address/1N2ctCxet8zjeyQMQngfmkvC2h9qzF3c6k

Back then I used to do alot of outgoing transactions with Blockchain on Firefox..

@Aajo: Sorry for your loss as well, but your victimized address is not listed either.
1513492834
Hero Member
*
Offline Offline

Posts: 1513492834

View Profile Personal Message (Offline)

Ignore
1513492834
Reply with quote  #2

1513492834
Report to moderator
1513492834
Hero Member
*
Offline Offline

Posts: 1513492834

View Profile Personal Message (Offline)

Ignore
1513492834
Reply with quote  #2

1513492834
Report to moderator
1513492834
Hero Member
*
Offline Offline

Posts: 1513492834

View Profile Personal Message (Offline)

Ignore
1513492834
Reply with quote  #2

1513492834
Report to moderator
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1513492834
Hero Member
*
Offline Offline

Posts: 1513492834

View Profile Personal Message (Offline)

Ignore
1513492834
Reply with quote  #2

1513492834
Report to moderator
watertech666
Member
**
Offline Offline

Activity: 62



View Profile WWW
August 22, 2013, 09:01:27 AM
 #62

@Jesse James
If there are any possible? I keep 4 backup file in same fold. 2 address lose and 2 address still there. And I use 2 FA. If thief stole backup file. Must 4 address all lose. Am I right?

Water Filter supplier who accept bitcoin.  http://www.asiawaterfilter.com
Dougie
Full Member
***
Offline Offline

Activity: 211


You are not special.


View Profile
August 22, 2013, 09:11:50 AM
 #63

Only a handful of addresses are known to be affected thus far. Likely if you have been affected by this problem your coins will have been taken already. All affected users will be refunded in full, please PM me or email help@blockchain.info.
That is very good of you. I feel very comfortable using blockchain.info. I think google should refund all affected users too.

Interesting that this is going further than the android problem. Perhaps someone should update the announcement to include refreshing the blockchain.info version.

Lurking since 2011...
1J4DhU3q6RxxCTfAAcg5ExVK6FfxkmzkTH
neoranga
Jr. Member
*
Offline Offline

Activity: 50


View Profile
August 22, 2013, 10:28:42 AM
 #64

Are blockchain.info paper wallets with already signed transactions in Firefox vulnerable?
How can we check?
Jesse James
Newbie
*
Offline Offline

Activity: 29


View Profile
August 22, 2013, 10:42:32 AM
 #65

@Jesse James
If there are any possible? I keep 4 backup file in same fold. 2 address lose and 2 address still there. And I use 2 FA. If thief stole backup file. Must 4 address all lose. Am I right?

It's hard to speculate.  Assuming this is due to a stolen wallet backup file, it would make sense for the thief to sweep all addresses in the wallet simultaneously.  However, you don't know how many keys were in the wallet when the thief may have had access to it ...  he/she might have waited a long time for funds to accumulate before swooping in.

I did some transaction following and it appears your thief is accumulating loot in the address 1HackerRpwYH7F6uGu8422dScNxaHAtWYz ... which currently has 647 BTC. 
NewLiberty
Legendary
*
Offline Offline

Activity: 1190


Gresham's Lawyer


View Profile WWW
August 22, 2013, 07:44:57 PM
 #66

... in the address 1HackerRpwYH7F6uGu8422dScNxaHAtWYz ... which currently has 647 BTC. 

Which apparently donated some here?
http://www.btcfans.com/donate

FREE MONEY1 Bitcoin for Silver and Gold NewLibertyDollar.com and now BITCOIN SPECIE (silver 1 ozt) shows value by QR
Bulk premiums as low as .0012 BTC "BETTER, MORE COLLECTIBLE, AND CHEAPER THAN SILVER EAGLES" 1Free of Government
AAleron
Newbie
*
Offline Offline

Activity: 22


View Profile
August 24, 2013, 12:18:23 AM
 #67

I had my Blockchain Wallet drained on aug12 I posted about it on the forum.

Can someone tell me if this wallet was on the list

1Cqfi7gKrbGgQuWNpGrziDzmaNoY2cGGjV

I don't use that wallet anymore and am worried about using Blockchain.info until I know how my account was drained while I was logged in and how someone else logged in to my account from Australia at the same time without my knowledge.
 
BurtW
Legendary
*
Offline Offline

Activity: 2114

All paid signature campaigns should be banned.


View Profile WWW
August 24, 2013, 01:52:40 PM
 #68

I had my Blockchain Wallet drained on aug12 I posted about it on the forum.

Can someone tell me if this wallet was on the list

1Cqfi7gKrbGgQuWNpGrziDzmaNoY2cGGjV

I don't use that wallet anymore and am worried about using Blockchain.info until I know how my account was drained while I was logged in and how someone else logged in to my account from Australia at the same time without my knowledge.
 
I simply did a search of this entire thread and no, this address did not appear on any of the lists posted in this thread.

Here's every address that has been exposed from genesis through block 253081 ... obviously only a few of these are due to blockchain.info:

121Zna8Dy9W2qDvsJEH2ALeHQkteXaeGng
...
1yiQRuB3KRxZTrSHBNZK9NdjbyJskHiVs
So, unless your account was drained after block 253081 it does not look like this was the method used.

Our family was terrorized by Homeland Security.  Read all about it here:  http://www.jmwagner.com/ and http://www.burtw.com/  Any donations to help us recover from the $300,000 in legal fees and forced donations to the Federal Asset Forfeiture slush fund are greatly appreciated!
AAleron
Newbie
*
Offline Offline

Activity: 22


View Profile
August 24, 2013, 11:24:36 PM
 #69

Thanks for doing that. I'll keep digging. Having not had anything stolen before online, this theft has made me very cautious of bitcoin wallets, its clear they are not safe and while you could have any sort of online account broken into, its coloured my view on the safety of bitcoins for the average user.
2weiX
Legendary
*
Offline Offline

Activity: 1862

bitcoincommodities.com


View Profile
August 26, 2013, 06:23:11 AM
 #70

All affected users will be refunded in full, please PM me or email help@blockchain.info.

Customer service win!

If only they'd refund other bugs as well^^
CoinGames
Jr. Member
*
Offline Offline

Activity: 44



View Profile WWW
September 18, 2013, 01:52:36 PM
 #71

We also had some coins stolen, and I would like to know how I can find out if it was due to this blockchain.info security flaw.

In fact the attackers took only 4 BTC from us, but over 200BTC from several other addresses. So I'm pretty sure there are many other victims out there.

See these transactions Hacker https://blockchain.info/address/16oP8up3f8ePer1vfBPhypRqkUnsA9ZfYM

See more details here:   https://bitcointalk.org/index.php?topic=246328.0

We would appreciate any help corroborating that it was indeed this security flaw that was to blame.

CoinGames - Classic Bitcoin Games
http://www.coingames.in/
johoe
Full Member
***
Offline Offline

Activity: 217


View Profile
September 18, 2013, 06:07:45 PM
 #72

Hello,

I just reran my script and no 1cup addresses appears in the list.  So the cause is not a double R-value.

The fact that all addresses were compromised at the same time suggests that someone got hold of the private keys via breaking into the server or some other computer and got hold of the wallet.dat or the output of the vanity address generator.  I see that you still advertise these addresses.  You should really change them as it is quite likely that they are compromised.

Here are all addresses that were compromised since mid-August due to the double R-value bug:

12RqykuRC9esWxtJL3T9WiwsPb8gdPpdDR
17AHXAodFQ33A4DqFENVHCG59qiaRNbhcq
17YujH47nJqYDF91P9GfKbQYap9MdQP7cS
19qnLpn9it7csR9sEay1XrFyfAmUNoXYk4
1HgRa96fuHCde6Rie4nwhaz1hZR694X4wj
1M7UUR1QhTMwoEiVVWf88Dy4in23RjYdic
1NSnZPRR32mrfAADxNJcPRP647gseqEMyj
1P3wCaQNk438cXKsC2YYvpecWa6kZKGCKC
1PCrHhXxS8ZotDvgSA5WxpmtC1qNQchrPr

  Johoe

Donations to 1CF62UFWXiKqFUmgQMUby9DpEW5LXjypU3
Mark_Twain
Full Member
***
Offline Offline

Activity: 180



View Profile
December 17, 2013, 06:02:39 AM
 #73

Just had a similar problem! 10 BTC ripped off from my Wallet without my consent! Please Help!
https://bitcointalk.org/index.php?topic=373612.new#new

Litecoins donations: LUNrACL2GoC8RhHqJbd4k2GnqX2xjixooY
Bitcoins donations: 1AWcSjq96oa5tqLyqPG2U729AzGPZW9aW4
educatedwarrior
Full Member
***
Offline Offline

Activity: 220


View Profile
March 04, 2014, 02:26:47 PM
 #74

I just got 16 BTC stolen from Blockchain.info


I learned my lesson.  Never using Blockchain again.

Cryptoculture Mining Pools - http://cryptoculture.net      Follow us on Twitter - https://twitter.com/cryptoculture
film2240
Legendary
*
Offline Offline

Activity: 1022


Freelance videographer


View Profile WWW
March 04, 2014, 04:41:45 PM
 #75

This isn't looking good.I think now would be a good time to find a local bitcoin wallet for my android phone (as the only one I have now is blockchain.info at the moment) that works whereas the official android wallet seems to make my funds disappear.

Maybe that's what my mac's for,store them away from online services.Any options?

[This signature is available for rent.BTC/ETH/LTC or £50 equivalent a month]
[This signature is available for rent.BTC/ETH/LTC or £50 equivalent a month]
[This signature is available for rent.BTC/ETH/LTC or £50 equivalent a month]
leopard2
Legendary
*
Offline Offline

Activity: 1243


View Profile
March 04, 2014, 04:58:23 PM
 #76

We need better legislation for Bitcoin theft. Unbelievable how much dirt is out there  Angry Shocked

Similar to horse theft in the Wild West, which was so critical that capital punishment was the only way to go.

I suggest something like Sharia or Codex Hammurabi.  Angry Angry One finger cut off, per Bitcoin stolen, is a good start.

Scum of the earth scammer dirt, will have trouble typing with their hands cut off.

Truth is the new hatespeech.
educatedwarrior
Full Member
***
Offline Offline

Activity: 220


View Profile
June 26, 2017, 12:09:26 PM
 #77

Hi I know this is an old post.  

I just found the address that stole the bitcoin and laundered the money.   They stole the bitcoin and spit up the coins into to address (mixed the coins) then merged back into 1 address later down the blockchain.

  • Bitcoin address the assets were stolen from was 1376AFc3gfic94o9yK1dx7JMMqxzfbssrg  and went to 1AkcY9NLEBH8Esyxwnwu9HiFQaSUjfDooa.    Here is a visual node diagram - https://blockchain.info/tree/51585845
    Bitcoins were laundered and then merged back into address 1L7YRcL9h7tc5B4gWKikdz7UvwrxtBDPWp
    The coins were then transfered to  1BGZohKS9QboP9gwCs4jw7vUXEvyPEs3FL  on 4/14/2014 where they stayed until   2/24/2016..  After that looks like this one person started profit taking of 10 btc converting into fiat.

I just need to found out who owns 1BGZohKS9QboP9gwCs4jw7vUXEvyPEs3FL.   Should be a depositor address at one of the exchanges.  Looks like 1L7YRcL9h7tc5B4gWKikdz7UvwrxtBDPWp was the hackers person wallet address.

Cryptoculture Mining Pools - http://cryptoculture.net      Follow us on Twitter - https://twitter.com/cryptoculture
erikalui
Legendary
*
Offline Offline

Activity: 1162



View Profile WWW
June 26, 2017, 04:10:34 PM
 #78

Hi I know this is an old post. 

I just found the address that stole the bitcoin and laundered the money.   They stole the bitcoin and spit up the coins into to address (mixed the coins) then merged back into 1 address later down the blockchain.

  • Bitcoin address the assets were stolen from was 1376AFc3gfic94o9yK1dx7JMMqxzfbssrg  and went to 1AkcY9NLEBH8Esyxwnwu9HiFQaSUjfDooa.    Here is a visual node diagram - https://blockchain.info/tree/51585845
    Bitcoins were laundered and then merged back into address 1L7YRcL9h7tc5B4gWKikdz7UvwrxtBDPWp
    The coins were then transfered to  1BGZohKS9QboP9gwCs4jw7vUXEvyPEs3FL  on 4/14/2014 where they stayed until   2/24/2016..  After that looks like this one person started profit taking of 10 btc converting into fiat.

I just need to found out who owns 1BGZohKS9QboP9gwCs4jw7vUXEvyPEs3FL.   Should be a depositor address at one of the exchanges.  Looks like 1L7YRcL9h7tc5B4gWKikdz7UvwrxtBDPWp was the hackers person wallet address.

My funds too went in a similar way. It got stolen on 7th June by this address: 1PTKJsu66KFAYmaKTFv7h9d38enhtdxdCf  and then was sent to multiple addresses which I was unable to track and the final address had some 10 btc in it from multiple addresses (including my coins). It was about 0.057 btc that was stolen. Anyways to track the hacker?

              ▄▄▄
            ▄█████▄
          ▄█████████▄
        ▄█████████████▄
      ▄█████████████████▄
    ▄████▀███████████▀████▄
  ▄████▀   ▀███████▀   ▀████▄
  ████▄     ▄█████▄     ▄████
   ▀████▄ ▄████▀████▄ ▄████▀
     ▀███████▀   ▀███████▀
       ▀████▄     ▄████▀
         ▀████▄ ▄████▀
           ▀███████▀
             ▀███▀







     ▐███████▌           ▐███▌      ▐███▌        ████         ██████████████
     █████████           █████      █████        ████         ▀▀▀▀▀████▀▀▀▀▀
    ▐███▌ ▐███▌         ▐█████▌    ▐█████▌       ████              ████
    ████   ████         ███████    ███████       ████              ████
   ▐███▌   ▐███▌       ▐███▌███▌  ▐███▐███▌      ████              ████
   ████     ████       ████  ███  ███  ████      ████              ████
  ▐███████▄ ▐███▌     ▐███▌  ▐██▌▐██▌  ▐███▌     ████              ████
  ████▀▀▀▀▀▀ ████     ████    ██████    ████     ████              ████
 ▐███▌       ▐███▌   ▐███▌    ▐████▌    ▐███▌    ███████████       ████
 ▀▀▀▀         ▀▀▀▀   ▀▀▀▀      ▀▀▀▀      ▀▀▀▀    ▀▀▀▀▀▀▀▀▀▀▀       ▀▀▀▀
███▀
▐▌


▐▌

███▄
1
....The Token of Compliance....

❱❱  Facebook   ❱❱  Twitter   ❱❱  Telegram   ❱❱  Blog
▀███
▐▌


▐▌

▄███
███▀
▐▌


▐▌

███▄
▀███
▐▌


▐▌

▄███
Pages: « 1 2 3 [4]  All
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!