markm
Legendary
 Offline
Activity: 3052
Merit: 1134
|
 |
September 16, 2013, 08:03:29 AM |
|
Can't you just make up nice long totally random passwords to people and tell them their password instead of asking them to make one up?
I guess then though they'll just go use that same one on phishingsite.com ?
-MarkM-
|
|
|
|
iGotSpots
Legendary
Offline
Activity: 2548
Merit: 1054
CPU Web Mining 🕸️ on webmining.io
|
|
September 16, 2013, 08:09:55 AM |
|
Some of you are stupid as fuck. mcxNOW wasn't hacked. Someone got a username/password list from somewhere else and tried to log in with the list they had
Blaming RS for people being stupid and using the same name/pass for everything is even more retarded than those people are
RS shut down trading and looked into it, even though it wasn't his site that was compromised. Holy shit people stop being so stupid
|
|
|
|
FrigidWinter
Newbie
Offline
Activity: 53
Merit: 0
|
|
September 16, 2013, 08:13:34 AM |
|
@RS, How many threads on this topic do we need?  Edit: Wasn't this the "most secure" online exchange ever?  Unfortunately there isn't much one can do to force users to use a unique username and password at mcxNOW. It is security 101 but some users fail to do it. could have prevented it that many other exchanges have already implemented. Withdrawals only through email verification |
|
|
|
|
|
drummerjdb666
|
|
September 16, 2013, 08:16:22 AM |
|
All Fear, Uncertainty, and Doubt aside. I still feel safer with my coins on mcxNOW than a couple of other exchanges.
|
|
|
|
|
TheRealSolid (OP)
Member
Offline
Activity: 94
Merit: 10
Operator of mcxNOW | Programmer of MicroCash
|
|
September 16, 2013, 08:19:28 AM |
|
One simple thing could have prevented it that many other exchanges have already implemented.
Withdrawals only through email verification
Or 2FA. The problem is these people who use the same user/pass at every site typically don't care about enabling extra security features either. |
https://mcxnow.com - Fast and secure coin exchange. Primecoin / Litecoin / Mincoin / Worldcoin / CopperLark
|
|
|
TheRealSolid (OP)
Member
Offline
Activity: 94
Merit: 10
Operator of mcxNOW | Programmer of MicroCash
|
|
September 16, 2013, 08:20:26 AM |
|
I admit I'm a retard but this would of at least saved me. 2FA has been there since the update too. mcxNOW doesn't store or use emails for verification but does give users the choice of Google Authenticator as a second auth device. |
https://mcxnow.com - Fast and secure coin exchange. Primecoin / Litecoin / Mincoin / Worldcoin / CopperLark
|
|
|
iGotSpots
Legendary
Offline
Activity: 2548
Merit: 1054
CPU Web Mining 🕸️ on webmining.io
|
|
September 16, 2013, 08:22:48 AM |
|
Some of you are stupid as fuck. mcxNOW wasn't hacked. Someone got a username/password list from somewhere else and tried to log in with the list they had
Blaming RS for people being stupid and using the same name/pass for everything is even more retarded than those people are
RS shut down trading and looked into it, even though it wasn't his site that was compromised. Holy shit people stop being so stupid
Who said it was hacked? I agree it isn't an RS issue if people were stupid enough to reuse passwords. I just happen to like Hydrponica more than I do Realsolid/Coinhunter/Notyep/rlh ~BCX~ LOL - Yea, I know. Just responding to the people saying mcx sucks. I've been buying shares like a madman |
|
|
|
FrigidWinter
Newbie
Offline
Activity: 53
Merit: 0
|
|
September 16, 2013, 08:22:58 AM |
|
One simple thing could have prevented it that many other exchanges have already implemented.
Withdrawals only through email verification
Or 2FA. The problem is these people who use the same user/pass at every site typically don't care about enabling extra security features either. But why do you unlike other exchanges not require email verification? Its a major security step the "most secure" exchange should probably have |
|
|
|
|
TheRealSolid (OP)
Member
Offline
Activity: 94
Merit: 10
Operator of mcxNOW | Programmer of MicroCash
|
|
September 16, 2013, 08:24:12 AM |
|
One simple thing could have prevented it that many other exchanges have already implemented.
Withdrawals only through email verification
Or 2FA. The problem is these people who use the same user/pass at every site typically don't care about enabling extra security features either. But why do you unlike other exchanges not require email verification? Its a major security step the "most secure" exchange should probably have I believe emails are an invasion of privacy of my users. I've removed them from the site and now will only support offline second authentication methods such as google auth. |
https://mcxnow.com - Fast and secure coin exchange. Primecoin / Litecoin / Mincoin / Worldcoin / CopperLark
|
|
|
jdebunt
Legendary
Offline
Activity: 1596
Merit: 1010
|
|
September 16, 2013, 08:47:40 AM |
|
well my account is safe, but i'm adding google 2FA this evening just i case, meant to do it over the weekend but got caught up in things  |
|
|
|
|
|
Armchair Miner
|
|
September 16, 2013, 08:55:57 AM |
|
Would you believe that in New York City there are actual jobs (job title "Media Relations") some of which specialize on "character assassination". Here, a character can be a person, an event, a website, or a more abstract term.
The job of these people is to twist words, and spew party line propaganda. Their job is done when sufficient number of media outlets republish their twisted words, making it "the truth".
I used to see a lot of that on Twitter, and now this thread and others are full of similar attempts.
|
|
|
|
smoothie
Legendary
Offline
Activity: 2492
Merit: 1491
LEALANA Bitcoin Grim Reaper
|
|
September 16, 2013, 09:13:48 AM |
|
Can't you just make up nice long totally random passwords to people and tell them their password instead of asking them to make one up?
I guess then though they'll just go use that same one on phishingsite.com ?
-MarkM-
I was thinking the same thing. But of course RS knows everything so I failed to mention it for that reason. |
███████████████████████████████████████
,╓p@@███████@╗╖,
,p████████████████████N,
d█████████████████████████b
d██████████████████████████████æ
,████²█████████████████████████████,
,█████ ╙████████████████████╨ █████y
██████ `████████████████` ██████
║██████ Ñ███████████` ███████
███████ ╩██████Ñ ███████
███████ ▐▄ ²██╩ a▌ ███████
╢██████ ▐▓█▄ ▄█▓▌ ███████
██████ ▐▓▓▓▓▌, ▄█▓▓▓▌ ██████─
▐▓▓▓▓▓▓█,,▄▓▓▓▓▓▓▌
▐▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▌
▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓─
²▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓╩
▀▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▀
²▀▀▓▓▓▓▓▓▓▓▓▓▓▓▀▀`
²²²
███████████████████████████████████████
| . ★☆ WWW.LEALANA.COM My PGP fingerprint is A764D833. History of Monero development Visualization ★☆ .
LEALANA BITCOIN GRIM REAPER SILVER COINS.
|
|
|
|
smoothie
Legendary
Offline
Activity: 2492
Merit: 1491
LEALANA Bitcoin Grim Reaper
|
|
September 16, 2013, 09:15:37 AM |
|
All Fear, Uncertainty, and Doubt aside. I still feel safer with my coins on mcxNOW than a couple of other exchanges.
Let me ask you this: Do you know the true identity of RS? In case he decides to close up shop and run with your coins? BTC-e operates the same way....with anonymity. Perhaps RS can prove me wrong and reveal his personal identity to instill trust that he could be held responsible if he ever decided to close his exchange and run with user deposits? |
███████████████████████████████████████
,╓p@@███████@╗╖,
,p████████████████████N,
d█████████████████████████b
d██████████████████████████████æ
,████²█████████████████████████████,
,█████ ╙████████████████████╨ █████y
██████ `████████████████` ██████
║██████ Ñ███████████` ███████
███████ ╩██████Ñ ███████
███████ ▐▄ ²██╩ a▌ ███████
╢██████ ▐▓█▄ ▄█▓▌ ███████
██████ ▐▓▓▓▓▌, ▄█▓▓▓▌ ██████─
▐▓▓▓▓▓▓█,,▄▓▓▓▓▓▓▌
▐▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▌
▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓─
²▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓╩
▀▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▀
²▀▀▓▓▓▓▓▓▓▓▓▓▓▓▀▀`
²²²
███████████████████████████████████████
| . ★☆ WWW.LEALANA.COM My PGP fingerprint is A764D833. History of Monero development Visualization ★☆ .
LEALANA BITCOIN GRIM REAPER SILVER COINS.
|
|
|
|
smoothie
Legendary
Offline
Activity: 2492
Merit: 1491
LEALANA Bitcoin Grim Reaper
|
|
September 16, 2013, 09:17:25 AM |
|
Now we have Realsolid over on his site claiming Coinbase was the source of the leaked passwords LOL
I guess this has nothing to do with his former dislike of LTC and Coblee who works there now.
~BCX~
What I find odd is how he was such a huge hater of LTC and Coblee and now his exchange supports LTC trading. Volume on LTC as opposed to SC is huge disparity. |
███████████████████████████████████████
,╓p@@███████@╗╖,
,p████████████████████N,
d█████████████████████████b
d██████████████████████████████æ
,████²█████████████████████████████,
,█████ ╙████████████████████╨ █████y
██████ `████████████████` ██████
║██████ Ñ███████████` ███████
███████ ╩██████Ñ ███████
███████ ▐▄ ²██╩ a▌ ███████
╢██████ ▐▓█▄ ▄█▓▌ ███████
██████ ▐▓▓▓▓▌, ▄█▓▓▓▌ ██████─
▐▓▓▓▓▓▓█,,▄▓▓▓▓▓▓▌
▐▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▌
▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓─
²▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓╩
▀▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▀
²▀▀▓▓▓▓▓▓▓▓▓▓▓▓▀▀`
²²²
███████████████████████████████████████
| . ★☆ WWW.LEALANA.COM My PGP fingerprint is A764D833. History of Monero development Visualization ★☆ .
LEALANA BITCOIN GRIM REAPER SILVER COINS.
|
|
|
|
|
smolen
|
|
September 16, 2013, 09:20:01 AM |
|
Unfortunately there isn't much one can do to force users to use a unique username and password at mcxNOW.
Every mcxnow user has a plenty of public/private key pairs  |
Of course I gave you bad advice. Good one is way out of your price range.
|
|
|
smoothie
Legendary
Offline
Activity: 2492
Merit: 1491
LEALANA Bitcoin Grim Reaper
|
|
September 16, 2013, 09:22:38 AM |
|
Unfortunately there isn't much one can do to force users to use a unique username and password at mcxNOW.
Every mcxnow user has a plenty of public/private key pairs Require all users to use a system generated random password of X length etc. Done. |
███████████████████████████████████████
,╓p@@███████@╗╖,
,p████████████████████N,
d█████████████████████████b
d██████████████████████████████æ
,████²█████████████████████████████,
,█████ ╙████████████████████╨ █████y
██████ `████████████████` ██████
║██████ Ñ███████████` ███████
███████ ╩██████Ñ ███████
███████ ▐▄ ²██╩ a▌ ███████
╢██████ ▐▓█▄ ▄█▓▌ ███████
██████ ▐▓▓▓▓▌, ▄█▓▓▓▌ ██████─
▐▓▓▓▓▓▓█,,▄▓▓▓▓▓▓▌
▐▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▌
▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓─
²▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓╩
▀▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▀
²▀▀▓▓▓▓▓▓▓▓▓▓▓▓▀▀`
²²²
███████████████████████████████████████
| . ★☆ WWW.LEALANA.COM My PGP fingerprint is A764D833. History of Monero development Visualization ★☆ .
LEALANA BITCOIN GRIM REAPER SILVER COINS.
|
|
|
|
|
drummerjdb666
|
|
September 16, 2013, 09:33:30 AM |
|
All Fear, Uncertainty, and Doubt aside. I still feel safer with my coins on mcxNOW than a couple of other exchanges.
Let me ask you this: Do you know the true identity of RS? In case he decides to close up shop and run with your coins? BTC-e operates the same way....with anonymity. Perhaps RS can prove me wrong and reveal his personal identity to instill trust that he could be held responsible if he ever decided to close his exchange and run with user deposits? I'm sorry, but I have read through the old coinhunter drama.. doesn't phase me a bit. I'm new to the community and have watched rs talk in chat for months now. I don't believe that's going to happen, nor is it the reason for this thread. You guys should quit trolling so damn hard. The guy doesn't wanna tell you who he is. Get over it. |
|
|
|
|
|
shields
|
|
September 16, 2013, 01:36:30 PM |
|
One simple thing could have prevented it that many other exchanges have already implemented.
Withdrawals only through email verification
Except if Joe-one-password is also using the same password for their email, which is not so unlikely since we already know they don't use a different password for every service. |
If you liked this post -> 1KRYhandiYsjecZw7mtdLnoeuKUYoGRkH4
|
|
|
mistercoin
Legendary
Offline
Activity: 1059
Merit: 1000
Rent Me!
|
|
September 16, 2013, 01:57:27 PM |
|
All fud aside I think the other exchange owners should keep up with this shit!!! This is the third event I have seen in two weeks now!
Btx as much of an asshole as you are sir I wouldn't doubt if it was somebody like you doing this bullshit!
It's fucking bad enough our world leaders can barely get along..
Why can't people in crypto get along either? Why so much hate?
I'm not condoning the "attacker" if indeed that is what happened. You need to do some reading of Coinhunter/Realsolid going back to August 2011. Come back and let's discuss. +1 |
|
|
|
mistercoin
Legendary
Offline
Activity: 1059
Merit: 1000
Rent Me!
|
|
September 16, 2013, 02:00:36 PM |
|
All Fear, Uncertainty, and Doubt aside. I still feel safer with my coins on mcxNOW than a couple of other exchanges.
Let me ask you this: Do you know the true identity of RS? In case he decides to close up shop and run with your coins? BTC-e operates the same way....with anonymity. Perhaps RS can prove me wrong and reveal his personal identity to instill trust that he could be held responsible if he ever decided to close his exchange and run with user deposits? I second this. Any company that offers shares (including BTCTC) most always shows who they really are, in case of this exact reason. He could close up the site and walk away with a fortune and there would be nothing you could do about it. |
|
|
|
|
