Bitcoin Forum
March 28, 2024, 08:30:43 AM *
News: Latest Bitcoin Core release: 26.0 [Torrent]
 
   Home   Help Search Login Register More  
Pages: [1]
  Print  
Author Topic: Both LTC and BTC "offline" wallets hacked...  (Read 1108 times)
metallicelmo (OP)
Sr. Member
****
Offline Offline

Activity: 882
Merit: 252



View Profile
October 01, 2013, 03:38:02 PM
 #1

Hey guys,

My "offline" wallets from Litecoin-QT and MultiBit are suddenly empty after I checked this morning.

LTC, BTC are both all gone.
Both wallets were stored on my laptop only. I'm the only one using this laptop. The .wallet files and key files were on my harddrive.
Both wallets protected by a strong password. All coins were transferred out when my laptop was turned OFF, I wasn't there or asleep at night.

here's both transactions:

BTC: http://blockchain.info/tx-index/b1ce29f0ce400cc1532a94ebaa96e607e58a8bff6dd302b115a634efb84f7616
LTC: http://block-explorer.com/tx/e05e45036aaedebd43295aa6413fa39305f055afa0e6683c9c5d5ffbb7fa34f2

Any idea what to do, possible to trace somehow where they went? How on earth would it be possible for someone to do this? My laptop has a virusscanner, scanned with multiple programs, nothing found..

For someone to hack my wallets, do they need the actual files from my harddrive?
"I'm sure that in 20 years there will either be very large transaction volume or no volume." -- Satoshi
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction.
UMP-45
Newbie
*
Offline Offline

Activity: 56
Merit: 0



View Profile
October 01, 2013, 03:40:23 PM
 #2

Maybe he had access to your hard drive and transfered the wallet.dat file to his computer.
What Anti-Virus were you using?
favdesu
Legendary
*
Offline Offline

Activity: 1764
Merit: 1000



View Profile WWW
October 01, 2013, 03:44:02 PM
 #3

an attacker just needs the private keys to swipe your wallet.

someone had physical access to your laptop and knew the passwords. did you write them down?

did you really use the laptop offline? no hidden wifi, lan or anything?

edit: brain wallet maybe?

metallicelmo (OP)
Sr. Member
****
Offline Offline

Activity: 882
Merit: 252



View Profile
October 01, 2013, 03:48:39 PM
 #4

an attacker just needs the private keys to swipe your wallet.

someone had physical access to your laptop and knew the passwords. did you write them down?

did you really use the laptop offline? no hidden wifi, lan or anything?
I use this laptop with internet, but the security is very high I can't believe this happened. I'm a systems administrator for F sake.
The private keys were stored on my laptop in an encrypted 7-zip file...
Question is do I have to reinstall my laptop now? This is so much work Smiley

I can see in the blockchain info that the transaction was broadcasted to the bitcoin network from an IP address in the USA 24.183.53.172
I live in Holland so would this indicate someone from the US stole my key files and wallet?
favdesu
Legendary
*
Offline Offline

Activity: 1764
Merit: 1000



View Profile WWW
October 01, 2013, 03:50:15 PM
 #5

an attacker just needs the private keys to swipe your wallet.

someone had physical access to your laptop and knew the passwords. did you write them down?

did you really use the laptop offline? no hidden wifi, lan or anything?
I use this laptop with internet, but the security is very high I can't believe this happened. I'm a systems administrator for F sake.
The private keys were stored on my laptop in an encrypted 7-zip file...
Question is do I have to reinstall my laptop now? This is so much work Smiley

I can see in the blockchain info that the transaction was broadcasted to the bitcoin network from an IP address in the USA 24.183.53.172
I live in Holland so would this indicate someone from the US stole my key files and wallet?


as a sys admin you should know about VPN and TOR, right? highly unlikely that they used their real ip for this...

trojan/keylogger is my guess

UMP-45
Newbie
*
Offline Offline

Activity: 56
Merit: 0



View Profile
October 01, 2013, 03:53:01 PM
 #6

an attacker just needs the private keys to swipe your wallet.

someone had physical access to your laptop and knew the passwords. did you write them down?

did you really use the laptop offline? no hidden wifi, lan or anything?
I use this laptop with internet, but the security is very high I can't believe this happened. I'm a systems administrator for F sake.
The private keys were stored on my laptop in an encrypted 7-zip file...
Question is do I have to reinstall my laptop now? This is so much work Smiley

I can see in the blockchain info that the transaction was broadcasted to the bitcoin network from an IP address in the USA 24.183.53.172
I live in Holland so would this indicate someone from the US stole my key files and wallet?

Okay, he may have keylogged you.
Intiated a data transfer connection with your PC.
Knew your encrypted 7-Z file password.
Transfered the 7-Z file to his computer.
Opened it with your password.
Got your Private Keys, then took the coins.
Pages: [1]
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!