The reason I shrugged off the possible compromise is because both machines are brand new installation that get automated AV, rootkit, and secondary spyware scans weekly. No extra programs get put on them (other than MS Office, which some would argue are viruses by themselves
), for just the reason of preventing a possible compromise. Both have firewalls locally and at a router/gateway level. And I am the only one with any sort of logon access to them. Yes I am quite "retentive" about anything regarding password security.
Can't give any response to the Cloudflare comment as I have yet to be invited to one of their parties
All that aside, it has been definitely verified that I do not have api access, so that leaves web access. Assuming my machine was compromised, the order of things necessary to do what was done would be this:
1. Login to computer or use something like RAT to control system.
2. Open web browser and login to CampBX with the weekly, unique-to-that-site, 14 char alpha/num/special character password.
3. Get my phone and enter the 2FA code to finish login.
4. Cancel all pending orders/withdrawal/ACH transfers.
5. Convert all assets into BTC.
5. Transfer BTC to alternate address and verify it using 2FA again.
So unless I was sleep trading and sending my BTC to random address that were getting a lot of other BTC funneled into them, it is unlikely anyone could pull off this kind of withdrawal.
Even if I logged into my account, sold off everything, sat a hacker down at my computer, took them to the transfer screen, and told them to take my BTC, they still would not have been able to perform a BTC-SendTo without physical access to my phone which has my 2FA auth on it. And no, I sincerely doubt someone has cloned my phone, apps and all.
As for timing on login, my last login was roughly 10.5 hours before this happened, and the whole thing happened in a timeframe of about 12 minutes. The withdrawl was to another BTC address, so it was a fast situation. I did not logon again until late the next day to find the issue.