Bitcoin Forum
March 28, 2024, 06:08:30 PM *
News: Latest Bitcoin Core release: 26.0 [Torrent]
 
   Home   Help Search Login Register More  
Pages: [1] 2 »  All
  Print  
Author Topic: BTCLottery Shut down - now the guy has all our emails  (Read 2293 times)
elements (OP)
Full Member
***
Offline Offline

Activity: 182
Merit: 100


View Profile
August 06, 2011, 07:39:35 AM
 #1

Hi,

the Free BTCLottery which was introduced has already shut down.

1.) I do not understand, why we can't reply on the orginial thread
 
https://bitcointalk.org/index.php?topic=33482.20

2.) Do you realize, that every participiant had to enter his / her email?

It is already closed now and all our email-addresses have been entered.

3.) The guy runs a "Buy mini Bitcoins for PayPal" service

also emails and even verified paypal emails


What's going on here?

Pretty clever trick to get a database of bitcoin useres. Isn't it?


What do you think about that?


»A common mistake that people make when trying to design something completely foolproof was to underestimate the ingenuity of complete fools.« - Douglas Adams
Use the trusted German Bitcoin exchange: https://www.bitcoin.de/de/r/5wcwts
Tips & donations: BTC : 1MAQYNLp2VJ9wWhPYg5BnrbUGzdhGXopZw | CGB: 5bgQivyHJcSWTgvLfVW87Zj23M7mcFCVBF
Unlike traditional banking where clients have only a few account numbers, with Bitcoin people can create an unlimited number of accounts (addresses). This can be used to easily track payments, and it improves anonymity.
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction.
1711649310
Hero Member
*
Offline Offline

Posts: 1711649310

View Profile Personal Message (Offline)

Ignore
1711649310
Reply with quote  #2

1711649310
Report to moderator
1711649310
Hero Member
*
Offline Offline

Posts: 1711649310

View Profile Personal Message (Offline)

Ignore
1711649310
Reply with quote  #2

1711649310
Report to moderator
1711649310
Hero Member
*
Offline Offline

Posts: 1711649310

View Profile Personal Message (Offline)

Ignore
1711649310
Reply with quote  #2

1711649310
Report to moderator
bitrebel
Sr. Member
****
Offline Offline

Activity: 364
Merit: 251


View Profile
August 06, 2011, 07:44:46 AM
 #2

How is this supposed to hurt anyone?   Roll Eyes

Why does Bitrebel have 65+ Ignores?
Because Bitrebel says things that some people do not want YOU to hear.
elements (OP)
Full Member
***
Offline Offline

Activity: 182
Merit: 100


View Profile
August 06, 2011, 07:50:28 AM
 #3

How is this supposed to hurt anyone?   Roll Eyes

- Spamming for other products/services

- Knowing who is a using Bitcoin for the time when it becomes illegal

-....could think of some more but just for starters.

»A common mistake that people make when trying to design something completely foolproof was to underestimate the ingenuity of complete fools.« - Douglas Adams
Use the trusted German Bitcoin exchange: https://www.bitcoin.de/de/r/5wcwts
Tips & donations: BTC : 1MAQYNLp2VJ9wWhPYg5BnrbUGzdhGXopZw | CGB: 5bgQivyHJcSWTgvLfVW87Zj23M7mcFCVBF
bitrebel
Sr. Member
****
Offline Offline

Activity: 364
Merit: 251


View Profile
August 06, 2011, 08:07:33 AM
 #4

How is this supposed to hurt anyone?   Roll Eyes

- Spamming for other products/services

- Knowing who is a using Bitcoin for the time when it becomes illegal

-....could think of some more but just for starters.

and people think I'M paranoid...??.....  Cheesy

Why does Bitrebel have 65+ Ignores?
Because Bitrebel says things that some people do not want YOU to hear.
RandyFolds
Sr. Member
****
Offline Offline

Activity: 448
Merit: 250



View Profile
August 06, 2011, 08:11:07 AM
 #5

You don't use throwaway email addresses, or what?
How is this supposed to hurt anyone?   Roll Eyes

- Spamming for other products/services

- Knowing who is a using Bitcoin for the time when it becomes illegal

-....could think of some more but just for starters.

and people think I'M paranoid...??.....  Cheesy

Seriously. Take your thorazine and lithium and slap that tinfoil hat on...

You were willing to provide that email when the site existed, exposing yourself to every problem listed even while the site still existed. Nothing has changed except your delusional perspective.
westkybitcoins
Legendary
*
Offline Offline

Activity: 980
Merit: 1004

Firstbits: Compromised. Thanks, Android!


View Profile
August 06, 2011, 08:45:00 AM
 #6

Was there a password required to go with the email?

Bitcoin is the ultimate freedom test. It tells you who is giving lip service and who genuinely believes in it.
...
...
In the future, books that summarize the history of money will have a line that says, “and then came bitcoin.” It is the economic singularity. And we are living in it now. - Ryan Dickherber
...
...
ATTENTION BFL MINING NEWBS: Just got your Jalapenos in? Wondering how to get the most value for the least hassle? Give BitMinter a try! It's a smaller pool with a fair & low-fee payment method, lots of statistical feedback, and it's easier than EasyMiner! (Yes, we want your hashing power, but seriously, it IS the easiest pool to use! Sign up in seconds to try it!)
...
...
The idea that deflation causes hoarding (to any problematic degree) is a lie used to justify theft of value from your savings.
wumpus
Hero Member
*****
Offline Offline

Activity: 812
Merit: 1022

No Maps for These Territories


View Profile
August 06, 2011, 08:53:34 AM
 #7

He had all your emails *before* he shut down. If you're worried you should simply not give out your main mail address to strangers.

Bitcoin Core developer [PGP] Warning: For most, coin loss is a larger risk than coin theft. A disk can die any time. Regularly back up your wallet through FileBackup Wallet to an external storage or the (encrypted!) cloud. Use a separate offline wallet for storing larger amounts.
bitrebel
Sr. Member
****
Offline Offline

Activity: 364
Merit: 251


View Profile
August 06, 2011, 09:04:54 AM
 #8

He had all your emails *before* he shut down. If you're worried you should simply not give out your main mail address to strangers.


One of my greatest security blunders was when I gave out my e-mail and someone sent me spam.
My whole life changed after that. From Viagra to Enlargers, and even a a long lost friend from Nigeria, who happened to remember my e-mail when he ran into some trouble and needed money.  Grin

Why does Bitrebel have 65+ Ignores?
Because Bitrebel says things that some people do not want YOU to hear.
wumpus
Hero Member
*****
Offline Offline

Activity: 812
Merit: 1022

No Maps for These Territories


View Profile
August 06, 2011, 09:28:24 AM
 #9

One of my greatest security blunders was when I gave out my e-mail and someone sent me spam.
My whole life changed after that. From Viagra to Enlargers, and even a a long lost friend from Nigeria, who happened to remember my e-mail when he ran into some trouble and needed money.  Grin
I used to have a wildcard catchall address at a domain, but at a certain moment that got me so much spam (spammers bruteforce mailing a@domain, b@domain, c@domain) which became too much bother to manage. So I switched to a simple gmail address. It rarely gets spam in the inbox, their spam filter works very well, though there have been some false positives, especially with confirmation mails etc.


Bitcoin Core developer [PGP] Warning: For most, coin loss is a larger risk than coin theft. A disk can die any time. Regularly back up your wallet through FileBackup Wallet to an external storage or the (encrypted!) cloud. Use a separate offline wallet for storing larger amounts.
the founder (Bitcoin)
Newbie
*
Offline Offline

Activity: 14
Merit: 0


View Profile
August 06, 2011, 09:29:52 AM
 #10

Chill, he's a 15 year old boy (from what I've heard), there's not much he can do with our email addresses. Tongue
BitcoinPorn
Hero Member
*****
Offline Offline

Activity: 630
Merit: 500


Posts: 69


View Profile WWW
August 06, 2011, 10:47:03 AM
 #11

TheBitMan, his current name.  Is a pretty long standing member.  I fully question a lot of his sites intentions, but he is has always been improving and helps the community in various ways.   That doesn't mean shit as far as full trust and etc.  And in fact that makes it that much better of a scam.   Still, I got an error message leading me to think that you should just give this a little time, I think the site is down.

TheBitMan
Sr. Member
****
Offline Offline

Activity: 280
Merit: 250



View Profile
August 06, 2011, 05:34:36 PM
 #12

I deleted all of the emails, I can show you a screen shot.
TheBitMan
Sr. Member
****
Offline Offline

Activity: 280
Merit: 250



View Profile
August 06, 2011, 05:35:35 PM
 #13

Please PM me before you accuse me of being a scammer.
TheBitMan
Sr. Member
****
Offline Offline

Activity: 280
Merit: 250



View Profile
August 06, 2011, 05:37:46 PM
 #14

TheBitMan, his current name.  Is a pretty long standing member.  I fully question a lot of his sites intentions, but he is has always been improving and helps the community in various ways.   That doesn't mean shit as far as full trust and etc.  And in fact that makes it that much better of a scam.   Still, I got an error message leading me to think that you should just give this a little time, I think the site is down.
I didn't give that good of an explanation I guess. Bitcoinduit.com ruined the pyramid/ponzi game for all of us. So I shut down multiplymybtc.com And I shut down the free lottery because that's A LOT of work for me who would of made 0.03 BTC that month.. So it's shut down for good and I deleted all emails.
Yuusha
Full Member
***
Offline Offline

Activity: 196
Merit: 100



View Profile
August 06, 2011, 05:39:52 PM
 #15

The reason it shut down was probably because he didn't see it as profitable. He was only charging 0.3 BTC per month to advertise, and only got two advertisers in the time the site was up. This is 0.6 BTC per month, and it seemed like he took a 5% fee... which is only 0.03 BTC per month.

So I don't think this is a way for him to run off with all your emails. Most likely he just didn't see the business model as particularly profitable and chose to try something different instead.

EDIT: Aaaand... my suspicions were confirmed in the above post.
TheBitMan
Sr. Member
****
Offline Offline

Activity: 280
Merit: 250



View Profile
August 06, 2011, 05:49:14 PM
 #16

Was there a password required to go with the email?

No I simply asked for there btc address and there email so people didn't spam the system
fcmatt
Legendary
*
Offline Offline

Activity: 2058
Merit: 1001


View Profile
August 06, 2011, 06:01:01 PM
 #17

what a person can do with email addresses of known users of BTC is to try to brute force the password.
then simply use imap to watch those emails until something juicy comes in. for example, realizing the user
has a mtgox account. then reset the password via mtgox, get the email they send, login to mtgox, and profit.

naturally this assumes the user put in an email account that he uses for most everything.. like 99% of us do.

with that said... a good majority of BTC related websites look like hobbyist stuff that i would not trust to use, ever.
especially "lottery/gambling/pyramid/etc" things. those just scream lame to me.
Yuusha
Full Member
***
Offline Offline

Activity: 196
Merit: 100



View Profile
August 06, 2011, 06:03:20 PM
 #18

what a person can do with email addresses of known users of BTC is to try to brute force the password.
then simply use imap to watch those emails until something juicy comes in. for example, realizing the user
has a mtgox account. then reset the password via mtgox, get the email they send, login to mtgox, and profit.

naturally this assumes the user put in an email account that he uses for most everything.. like 99% of us do.

with that said... a good majority of BTC related websites look like hobbyist stuff that i would not trust to use, ever.
especially "lottery/gambling/pyramid/etc" things. those just scream lame to me.
Brute forcing is not possible on the majority of sites today.
markm
Legendary
*
Offline Offline

Activity: 2940
Merit: 1090



View Profile WWW
August 06, 2011, 06:07:34 PM
 #19

Brute force the password of someone's gmail or yahoo or hotmail etc ("email") account?

I naively imagined somehow that part of how gmail, yahoo, hotmail etc became so popular was they they were huge enough and rich enough to somehow resist such attacks better than smaller players in the field might be able to afford to?

-MarkM-

Browser-launched Crossfire client now online (select CrossCiv server for Galactic  Milieu)
Free website hosting with PHP, MySQL etc: http://hosting.knotwork.com/
fcmatt
Legendary
*
Offline Offline

Activity: 2058
Merit: 1001


View Profile
August 06, 2011, 06:07:47 PM
 #20

what a person can do with email addresses of known users of BTC is to try to brute force the password.
then simply use imap to watch those emails until something juicy comes in. for example, realizing the user
has a mtgox account. then reset the password via mtgox, get the email they send, login to mtgox, and profit.

naturally this assumes the user put in an email account that he uses for most everything.. like 99% of us do.

with that said... a good majority of BTC related websites look like hobbyist stuff that i would not trust to use, ever.
especially "lottery/gambling/pyramid/etc" things. those just scream lame to me.
Brute forcing is not possible on the majority of sites today.

If i were to guess, I would bet a lot of those users have email accounts on linux boxes running pop3/imap that
have no brute force protection at all. Just toss out the gmail or whatever addresses you know have brute force
protection and concentrate on the rest. A small percentage will have a weak or short password. It is not about
cracking them all.. but the low hanging fruit that could lead to a possible reward with minimal effort.

Or how about sending a pdf to users that abused a security flaw in abode reader that is craftily made?

Or how about... the list is endless. Proven ways that have worked in the past to own someone.

Some people are really really into infosec/hacking/cracking and practice this stuff every day for years in the wild.
The best know how to find holes, craft their own exploits, have contacts who can provide more tools/sploits, and
otherwise not be considered a script kid.

But this is all speculation on what a person might do with an email list of known BTC users. Just idle talk.
Pages: [1] 2 »  All
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!