Cryptopia Exchange Failed Login Attempt

[harizen]

 
This was happened last March 16, March 17 and today. Failed login attempt that lead to my account to be locked (well just for 15 minutes).

IP address concerned are:

5.101.218.30
114.109.15.124
42.114.165.198

Ok so how it is possible for that "users or group" involved on that knows and learn the email address list that registered on Cryptopia? (I do have a knowledge of basic security and enhancements so please stick to my question and don't tell me to put 2FA or something etc. etc.)

Image loading....

[1714676546]

1714676546

[1714676546]

1714676546

[1714676546]

1714676546

[1714676546]

1714676546

[1714676546]

1714676546

[richardsNY]

In most cases this is the result of a database hack concerning one of the sites (e.g. faucets, forums, mailing list) you registered your email address with. With these emails and *potentially hacked passwords* they try to gain access to crypto sites and whatnot, which might very well explain your case. If the aforementioned isn't the case, then it may very well be that Cryptopia's database has been hacked, where the hackers who tried to log into your account, likely couldn't decrypt the passwords or something. Either way, it's probably a good idea to change passwords.

[Zocadas]

I had the same failed login attempts the same days as you with the the first IP and another one. Yes, maybe it is from a faucet as I also had failed login attempts on another service (faucet). Fortunately I am not anymore lazy to use same password for different services or passwordmanager, that doesn't work anymore, when phone is broken.
Anyway, I blocked my account to avoid more tries. Changed also my email password earlier as usual.
But the passwords seem not to be hacked, because login attempt failed, or did I get that wrong?

[jhenfelipe]

I'm not sure how did they know that the email addresses were used in Cryptopia. If you have used your email address in other crypto related sites, it's possible that it's the reason why they thought that it might have been used in an exchange.

Cryptopia claimed that there was no hacked nor breached happened in their end. As they stated here, if you've used your address in other sites, you should check it at haveibeenpwned.com to know whether it has been compromised in a data breach.

On the other hand, what I was wondering is that, why would a unique email address used only for Cryptopia received a failed log in attempt email at the same date with this? (I saw some comments like this in their Reddit post). What a coincidence, isn't it? Anyway, if that's the case, you should message them on Facebook

[mobnepal]

Same here

Account Locked

 
 
This is an automated email, direct replies are not monitored.

 
 
 
 
Hi mobnepal,

 

Your account has been locked out due to failed login attempts from the following IP address: 88.241.41.197

Your account will unlock automatically in 15 minutes - Cryptopia support cannot bypass this lock.

Cryptopia Secuirity Recommendations:

Use a unique and strong password
Ensure Two Factor Authentication is turned on
Create an email address for exclusive use with your Cryptopia account
 

- I have used unique and strong password
- I have 2FA turned on

But I am using same address in different other sites, and even in some of the faucets in my early days. I think my email got leaked from one of those sites. Hackers might be only trying to make login with our email and random password. So I don't think I have to worry, Do I 

[harizen]

I'm not sure how did they know that the email addresses were used in Cryptopia. If you have used your email address in other crypto related sites, it's possible that it's the reason why they thought that it might have been used in an exchange.

Cryptopia claimed that there was no hacked nor breached happened in their end. As they stated here, if you've used your address in other sites, you should check it at haveibeenpwned.com to know whether it has been compromised in a data breach.

On the other hand, what I was wondering is that, why would a unique email address used only for Cryptopia received a failed log in attempt email at the same date with this? (I saw some comments like this in their Reddit post). What a coincidence, isn't it? Anyway, if that's the case, you should message them on Facebook

Hmm I see so the failed login attempt is currently experiencing by majority of Crytopia users based on the date on the link you provided (Reddit).

But for me as pointing to your last statement, even Cryptopia claimed that no database leaked from their side, it's quite impossible for a "hacker" that they will just do a random guess of email that came from crypto related site as an attempt to login on Cryptopia. There are really lots so it will be a so much time consuming activity with low chance that they can breached even one, or maybe they have a special program that will do the work lol.. Well just a guess.

P.S The email address registered on my Crytopia account is tagged as Pawned by haveibeenpwned.com during Bitcointalk forum data breached last May 2015. Maybe that was the hackers source but just still surprised here because my Cryptopia account with that email only registered last January 2018.

[tora]

For the last few days I have been receiving emails stating there have been failed log in attempts and my account is locked. I do not use the site,never have, so I always think they are phishing emails.

[harizen]

For the last few days I have been receiving emails stating there have been failed log in attempts and my account is locked. I do not use the site,never have, so I always think they are phishing emails.

In your case maybe it was a phishing email because how come you can get a Cryptopia Failed Log In attempts if you are not registered there. You can also check the email address used on that mail.

In my case, the email sender was noreply@cryptopia.co.nz which is the usual email address used by Crytopia when doing automated mails for e.g when Im logging in successfully at their site etc.

[tora]

I received ten emails today stating site was either locked or failed log in attempt. I will check email address next time I receive. I have never responded to the emails or tried to log into account after receiving them.

[Zocadas]

Now I also believe, that cryptopia database was hacked, but not the passwords. I wouldn't suggest to trade with large amounts there actually as also the support seems to have delays and more and more complaints against cryptopia are posted. I hope, they will soon return to their old great service.