Alternative Block Chains : be safe!

[HBBZ]

It is not wrong to be conservative. The possibility is that people miss a lot of fun and chances of profit by adopting this attitude. Specifically, it is right not to install risky software on real personal computer.

[Scepto]

I agree with this completely. I have a computer that I was given that I use for nothing but altcoin mining.

[Spoetnik]

in the last month alone i have seen two new altcoins posted with a trojan / keylogger
a well known coin by a well known coin spammer and coin cloner for hire also added one to his last wallet version..
so yeah they are out in force !

the guy mentioned earlier how easy it would be and he's right..

a lot of thee guy don't even make the coins.. and often they get premined as they are delivered

the more you dig the more you find.. there is no limit to the scummy greedy behavior in this scene

i today found yet another fake malware bundle uploaded to torrent sites..
some guy has been at it hard.. i have flagged about 6 uploads he has done (all Bitcoin related or Altcoin related) last few months

and miners are commonly flagged as malware by AV software and rightfully so because the code may be clean but its bundled with malware
and has been for years.. the two most popular things for malware coders these days is to infect you to jack your machine for mining or just steal wallets
or even to get Facebook likes.

so yeah i could go on and on forever citing examples but who cares ?

maybe rather than posting stupid little stickied warnings the admins here could expose the little pricks doing it..
after all they should be able to see they are being posted from the same ip's (many of these guys prob have a 100 accounts here)
all they do is lock and delete the topic.. and let the douches keep doing it

[Amph]

as long as there is the source code, they are safe

[William Whiston]

Lucasian Professor of Mathematics

[murderouskirk]

in the last month alone i have seen two new altcoins posted with a trojan / keylogger
a well known coin by a well known coin spammer and coin cloner for hire also added one to his last wallet version..
so yeah they are out in force !

the guy mentioned earlier how easy it would be and he's right..

a lot of thee guy don't even make the coins.. and often they get premined as they are delivered

the more you dig the more you find.. there is no limit to the scummy greedy behavior in this scene

i today found yet another fake malware bundle uploaded to torrent sites..
some guy has been at it hard.. i have flagged about 6 uploads he has done (all Bitcoin related or Altcoin related) last few months

and miners are commonly flagged as malware by AV software and rightfully so because the code may be clean but its bundled with malware
and has been for years.. the two most popular things for malware coders these days is to infect you to jack your machine for mining or just steal wallets
or even to get Facebook likes.

so yeah i could go on and on forever citing examples but who cares ?

maybe rather than posting stupid little stickied warnings the admins here could expose the little pricks doing it..
after all they should be able to see they are being posted from the same ip's (many of these guys prob have a 100 accounts here)
all they do is lock and delete the topic.. and let the douches keep doing it

Wow I didn't realize things were that bad in the altcoin scene. Would be great to have a thread that exposes scammy behavior so people are aware of the known tricks.

[justmyname]

in the last month alone i have seen two new altcoins posted with a trojan / keylogger
a well known coin by a well known coin spammer and coin cloner for hire also added one to his last wallet version..
so yeah they are out in force !

the guy mentioned earlier how easy it would be and he's right..

a lot of thee guy don't even make the coins.. and often they get premined as they are delivered

the more you dig the more you find.. there is no limit to the scummy greedy behavior in this scene

i today found yet another fake malware bundle uploaded to torrent sites..
some guy has been at it hard.. i have flagged about 6 uploads he has done (all Bitcoin related or Altcoin related) last few months

and miners are commonly flagged as malware by AV software and rightfully so because the code may be clean but its bundled with malware
and has been for years.. the two most popular things for malware coders these days is to infect you to jack your machine for mining or just steal wallets
or even to get Facebook likes.

so yeah i could go on and on forever citing examples but who cares ?

maybe rather than posting stupid little stickied warnings the admins here could expose the little pricks doing it..
after all they should be able to see they are being posted from the same ip's (many of these guys prob have a 100 accounts here)
all they do is lock and delete the topic.. and let the douches keep doing it

I wish you'd be more specific about which clients have malware or trojans on them. Like for example off this site which ones if any?

http://coinmarketcap.com/



 

[Don007]

3) Downloaded and skimmed the source code to see if it looked vulnerable to buffer overflow or other remotely exploitable attacks.

Does anyone has a few tips to do this? As most of the people here probably don't understand the source code well I guess.

[Fandekasp]

Damn, I've been installing a lot of new wallets those past days, and now I feel silly... I've lost myself in the fever of new coins and giveaways, and my computer could be infected by a scam coin...
Will have to clean all that soon Thanks for the tips !

[XCASH]

Is the zipped doge blockchain download link below OK, or has anyone heard anything dodgy about it? I am just a noob asking the experts.

http://doge.rstreefland.com/

[malevolent]

as long as there is the source code, they are safe

Doesn't matter when most people don't even check the source code.

[Spoetnik]

exactly !
and sometimes such as CENT, it was posted with no updated source code and a keylogger was added to it..
see this
https://www.virustotal.com/en/file/824864222d7d7997ce4b7f6dc2d289b9764185d2f8a0c9d8a0e3b89743aba86c/analysis/1391352958/
that is the last CENT wallet that dev Shakezulu posted at his own web site with no updated source code and he later removed all traces of it of course
and the guy has released TONS of other coins and is good buddies with Cryptsy staff etc
back room "scammer" buddies lol

i would just try and stay away until more skilled guys can vouch for it being clean or maybe try running the wallet in a Virtual machine ?
your taking a serious risk downloading and running a Wallet.exe that was just posted..
the risk is rather obvious but if you have numerous accounts and other wallets we have seen malware posted that steals coins from many wallets, so be careful.

although no one cares it would seem, i myself ask one thing first when a new coin comes along..
WHO MADE IT ?
If it's a user with a name that match's the coin.. i pass on it.
There is no real reason for cowards to hide who they are.
And i will not support these *handful of coin spammers that want to change their user names and
update the coin name and icon and re-upload a Brand new currencies every few minutes..

Doge, Cat, Moose, Rat, Pig, Elephant, Squirrel, Snake COOOOIIIINNNNN FTW

much yes ?

uhhh, much dumb.... yes

[Dirt9000]

This is a very good writeup!

[Pacheco]

I think blockchain is good with people use it.

[shadyz]

I haven't seen anybody post about what would be my biggest worry if I were trying out alternative block chains. I realize this may be perceived as "Gavin is FUD'ding anything that isn't bitcoin!"  (FUD == Fear, Uncertainty and Doubt)  But I think some of you might be forgetting some basic computer security fundamentals in the excitement to be early adopters.

When I first heard about bitcoin, my questions were:

1) Can it possibly work (do the ideas for how it works make sense)?
2) Is it a scam?
3) If it is not a scam, could it open my computer up to viruses/trojans if I run it?

I answered those questions by:

1) Reading and understanding Satoshi's whitepaper.  Then thinking about it for a day or two and reading it again.
2) Finding out everything I could about the project.  I read every forum thread here (there were probably under a hundred threads back then) and read Satoshi's initial postings on the crypto mailing list.
3) Downloaded and skimmed the source code to see if it looked vulnerable to buffer overflow or other remotely exploitable attacks.

If I were going to experiment with an alternative block-chain, I'd go through the same process again. But I'm an old conservative fuddy-duddy.

If you want to take a risk on a brand-new alternative block-chain, I'd strongly suggest that you:

1) Run the software in a virtual machine or on a machine that doesn't contain anything valuable.
2) Don't invest more money or time than you can afford to lose.
3) Use a different passphrase at every exchange site.

Multi-factor authentication for all please. Yubikey+Password, Cellphone+Password, Smartcard+Password, Biometric+Password.

Never trust a site which wants you to use a password alone. Never trust your keyboard or your operating system. Biometric hardware wallets will become increasingly important for security of crypto-finance in the future and I wish there were more robust hardware and API's for it.

I know Bitcoin is intending to support two-factor authentication but please consider supporting the latest biometric technology as well due to the ease of use factor.

People will probably find a way to hack those as well ,no?

[triplexoid]

Using altcoins will never be safe, cause it's almost impossible to analyse all the code, best effort would be to understand the risk and be ready for trouble.

[MakeBelieve]

Using altcoins will never be safe, cause it's almost impossible to analyse all the code, best effort would be to understand the risk and be ready for trouble.

Bitcoin once was like that and now look at what it has become.

[triplexoid]

Is there some list of indicators that certain altcoin is scam and other is not? (Except Premining, and Instamining?)

[SkillRoad]

Is there some list of indicators that certain altcoin is scam and other is not? (Except Premining, and Instamining?)

You'll never know it's a scam or not, it all depends on the integrity of the developer. code also needs to be well analyzed for invulnerability

[666#666]

first time to reply on a post written by hero member,  it's my honor