elements (OP)
|
|
August 06, 2011, 07:39:35 AM |
|
Hi, the Free BTCLottery which was introduced has already shut down. 1.) I do not understand, why we can't reply on the orginial thread https://bitcointalk.org/index.php?topic=33482.202.) Do you realize, that every participiant had to enter his / her email? It is already closed now and all our email-addresses have been entered. 3.) The guy runs a "Buy mini Bitcoins for PayPal" service also emails and even verified paypal emails What's going on here? Pretty clever trick to get a database of bitcoin useres. Isn't it? What do you think about that?
|
»A common mistake that people make when trying to design something completely foolproof was to underestimate the ingenuity of complete fools.« - Douglas Adams Use the trusted German Bitcoin exchange: https://www.bitcoin.de/de/r/5wcwtsTips & donations: BTC : 1MAQYNLp2VJ9wWhPYg5BnrbUGzdhGXopZw | CGB: 5bgQivyHJcSWTgvLfVW87Zj23M7mcFCVBF
|
|
|
bitrebel
|
|
August 06, 2011, 07:44:46 AM |
|
How is this supposed to hurt anyone?
|
Why does Bitrebel have 65+ Ignores? Because Bitrebel says things that some people do not want YOU to hear.
|
|
|
elements (OP)
|
|
August 06, 2011, 07:50:28 AM |
|
How is this supposed to hurt anyone? - Spamming for other products/services - Knowing who is a using Bitcoin for the time when it becomes illegal -....could think of some more but just for starters.
|
»A common mistake that people make when trying to design something completely foolproof was to underestimate the ingenuity of complete fools.« - Douglas Adams Use the trusted German Bitcoin exchange: https://www.bitcoin.de/de/r/5wcwtsTips & donations: BTC : 1MAQYNLp2VJ9wWhPYg5BnrbUGzdhGXopZw | CGB: 5bgQivyHJcSWTgvLfVW87Zj23M7mcFCVBF
|
|
|
bitrebel
|
|
August 06, 2011, 08:07:33 AM |
|
How is this supposed to hurt anyone? - Spamming for other products/services - Knowing who is a using Bitcoin for the time when it becomes illegal -....could think of some more but just for starters. and people think I'M paranoid...??.....
|
Why does Bitrebel have 65+ Ignores? Because Bitrebel says things that some people do not want YOU to hear.
|
|
|
RandyFolds
|
|
August 06, 2011, 08:11:07 AM |
|
You don't use throwaway email addresses, or what? How is this supposed to hurt anyone? - Spamming for other products/services - Knowing who is a using Bitcoin for the time when it becomes illegal -....could think of some more but just for starters. and people think I'M paranoid...??..... Seriously. Take your thorazine and lithium and slap that tinfoil hat on... You were willing to provide that email when the site existed, exposing yourself to every problem listed even while the site still existed. Nothing has changed except your delusional perspective.
|
|
|
|
westkybitcoins
Legendary
Offline
Activity: 980
Merit: 1004
Firstbits: Compromised. Thanks, Android!
|
|
August 06, 2011, 08:45:00 AM |
|
Was there a password required to go with the email?
|
Bitcoin is the ultimate freedom test. It tells you who is giving lip service and who genuinely believes in it.
... ... In the future, books that summarize the history of money will have a line that says, “and then came bitcoin.” It is the economic singularity. And we are living in it now. - Ryan Dickherber... ... ATTENTION BFL MINING NEWBS: Just got your Jalapenos in? Wondering how to get the most value for the least hassle? Give BitMinter a try! It's a smaller pool with a fair & low-fee payment method, lots of statistical feedback, and it's easier than EasyMiner! (Yes, we want your hashing power, but seriously, it IS the easiest pool to use! Sign up in seconds to try it!)... ... The idea that deflation causes hoarding (to any problematic degree) is a lie used to justify theft of value from your savings.
|
|
|
wumpus
|
|
August 06, 2011, 08:53:34 AM |
|
He had all your emails *before* he shut down. If you're worried you should simply not give out your main mail address to strangers.
|
Bitcoin Core developer [PGP] Warning: For most, coin loss is a larger risk than coin theft. A disk can die any time. Regularly back up your wallet through File → Backup Wallet to an external storage or the (encrypted!) cloud. Use a separate offline wallet for storing larger amounts.
|
|
|
bitrebel
|
|
August 06, 2011, 09:04:54 AM |
|
He had all your emails *before* he shut down. If you're worried you should simply not give out your main mail address to strangers.
One of my greatest security blunders was when I gave out my e-mail and someone sent me spam. My whole life changed after that. From Viagra to Enlargers, and even a a long lost friend from Nigeria, who happened to remember my e-mail when he ran into some trouble and needed money.
|
Why does Bitrebel have 65+ Ignores? Because Bitrebel says things that some people do not want YOU to hear.
|
|
|
wumpus
|
|
August 06, 2011, 09:28:24 AM |
|
One of my greatest security blunders was when I gave out my e-mail and someone sent me spam. My whole life changed after that. From Viagra to Enlargers, and even a a long lost friend from Nigeria, who happened to remember my e-mail when he ran into some trouble and needed money. I used to have a wildcard catchall address at a domain, but at a certain moment that got me so much spam (spammers bruteforce mailing a@domain, b@domain, c@domain) which became too much bother to manage. So I switched to a simple gmail address. It rarely gets spam in the inbox, their spam filter works very well, though there have been some false positives, especially with confirmation mails etc.
|
Bitcoin Core developer [PGP] Warning: For most, coin loss is a larger risk than coin theft. A disk can die any time. Regularly back up your wallet through File → Backup Wallet to an external storage or the (encrypted!) cloud. Use a separate offline wallet for storing larger amounts.
|
|
|
the founder (Bitcoin)
Newbie
Offline
Activity: 14
Merit: 0
|
|
August 06, 2011, 09:29:52 AM |
|
Chill, he's a 15 year old boy (from what I've heard), there's not much he can do with our email addresses.
|
|
|
|
BitcoinPorn
|
|
August 06, 2011, 10:47:03 AM |
|
TheBitMan, his current name. Is a pretty long standing member. I fully question a lot of his sites intentions, but he is has always been improving and helps the community in various ways. That doesn't mean shit as far as full trust and etc. And in fact that makes it that much better of a scam. Still, I got an error message leading me to think that you should just give this a little time, I think the site is down.
|
|
|
|
TheBitMan
|
|
August 06, 2011, 05:34:36 PM |
|
I deleted all of the emails, I can show you a screen shot.
|
|
|
|
TheBitMan
|
|
August 06, 2011, 05:35:35 PM |
|
Please PM me before you accuse me of being a scammer.
|
|
|
|
TheBitMan
|
|
August 06, 2011, 05:37:46 PM |
|
TheBitMan, his current name. Is a pretty long standing member. I fully question a lot of his sites intentions, but he is has always been improving and helps the community in various ways. That doesn't mean shit as far as full trust and etc. And in fact that makes it that much better of a scam. Still, I got an error message leading me to think that you should just give this a little time, I think the site is down.
I didn't give that good of an explanation I guess. Bitcoinduit.com ruined the pyramid/ponzi game for all of us. So I shut down multiplymybtc.com And I shut down the free lottery because that's A LOT of work for me who would of made 0.03 BTC that month.. So it's shut down for good and I deleted all emails.
|
|
|
|
Yuusha
|
|
August 06, 2011, 05:39:52 PM |
|
The reason it shut down was probably because he didn't see it as profitable. He was only charging 0.3 BTC per month to advertise, and only got two advertisers in the time the site was up. This is 0.6 BTC per month, and it seemed like he took a 5% fee... which is only 0.03 BTC per month.
So I don't think this is a way for him to run off with all your emails. Most likely he just didn't see the business model as particularly profitable and chose to try something different instead.
EDIT: Aaaand... my suspicions were confirmed in the above post.
|
|
|
|
TheBitMan
|
|
August 06, 2011, 05:49:14 PM |
|
Was there a password required to go with the email?
No I simply asked for there btc address and there email so people didn't spam the system
|
|
|
|
fcmatt
Legendary
Offline
Activity: 2072
Merit: 1001
|
|
August 06, 2011, 06:01:01 PM |
|
what a person can do with email addresses of known users of BTC is to try to brute force the password. then simply use imap to watch those emails until something juicy comes in. for example, realizing the user has a mtgox account. then reset the password via mtgox, get the email they send, login to mtgox, and profit.
naturally this assumes the user put in an email account that he uses for most everything.. like 99% of us do.
with that said... a good majority of BTC related websites look like hobbyist stuff that i would not trust to use, ever. especially "lottery/gambling/pyramid/etc" things. those just scream lame to me.
|
|
|
|
Yuusha
|
|
August 06, 2011, 06:03:20 PM |
|
what a person can do with email addresses of known users of BTC is to try to brute force the password. then simply use imap to watch those emails until something juicy comes in. for example, realizing the user has a mtgox account. then reset the password via mtgox, get the email they send, login to mtgox, and profit.
naturally this assumes the user put in an email account that he uses for most everything.. like 99% of us do.
with that said... a good majority of BTC related websites look like hobbyist stuff that i would not trust to use, ever. especially "lottery/gambling/pyramid/etc" things. those just scream lame to me.
Brute forcing is not possible on the majority of sites today.
|
|
|
|
markm
Legendary
Offline
Activity: 2968
Merit: 1102
|
|
August 06, 2011, 06:07:34 PM |
|
Brute force the password of someone's gmail or yahoo or hotmail etc ("email") account?
I naively imagined somehow that part of how gmail, yahoo, hotmail etc became so popular was they they were huge enough and rich enough to somehow resist such attacks better than smaller players in the field might be able to afford to?
-MarkM-
|
|
|
|
fcmatt
Legendary
Offline
Activity: 2072
Merit: 1001
|
|
August 06, 2011, 06:07:47 PM |
|
what a person can do with email addresses of known users of BTC is to try to brute force the password. then simply use imap to watch those emails until something juicy comes in. for example, realizing the user has a mtgox account. then reset the password via mtgox, get the email they send, login to mtgox, and profit.
naturally this assumes the user put in an email account that he uses for most everything.. like 99% of us do.
with that said... a good majority of BTC related websites look like hobbyist stuff that i would not trust to use, ever. especially "lottery/gambling/pyramid/etc" things. those just scream lame to me.
Brute forcing is not possible on the majority of sites today. If i were to guess, I would bet a lot of those users have email accounts on linux boxes running pop3/imap that have no brute force protection at all. Just toss out the gmail or whatever addresses you know have brute force protection and concentrate on the rest. A small percentage will have a weak or short password. It is not about cracking them all.. but the low hanging fruit that could lead to a possible reward with minimal effort. Or how about sending a pdf to users that abused a security flaw in abode reader that is craftily made? Or how about... the list is endless. Proven ways that have worked in the past to own someone. Some people are really really into infosec/hacking/cracking and practice this stuff every day for years in the wild. The best know how to find holes, craft their own exploits, have contacts who can provide more tools/sploits, and otherwise not be considered a script kid. But this is all speculation on what a person might do with an email list of known BTC users. Just idle talk.
|
|
|
|
|