Bitcoin Forum
November 02, 2024, 06:39:16 PM *
News: Latest Bitcoin Core release: 28.0 [Torrent]
 
   Home   Help Search Login Register More  
Pages: [1]
  Print  
Author Topic: WARNING! Someone just took my Bitcoin from my blockchain.info account  (Read 831 times)
BruceWayne (OP)
Newbie
*
Offline Offline

Activity: 41
Merit: 0


View Profile
January 23, 2014, 04:37:33 PM
 #1

Please see last transaction from this address:

1MGy5KEAnQ1FJWDq4e6HjKGbrv6ccJdSRc


1. I received an eMail from Blockchain.info, i opened it.
2. msg was deleted and it was replaced with a "Bitcoin Payment Sent" !!


I will add that i did had  2 factor authentication

Happened to anyone?

 
joeysupra
Member
**
Offline Offline

Activity: 78
Merit: 10


View Profile
January 23, 2014, 04:49:56 PM
 #2

You Probably got what they call a "phishing email" looks like the real website, but its a fraud site.


be more careful next time and view the address on top to make sure its the actual site, never click on email links. NEVER
BruceWayne (OP)
Newbie
*
Offline Offline

Activity: 41
Merit: 0


View Profile
January 23, 2014, 04:51:58 PM
 #3

You Probably got what they call a "phishing email" looks like the real website, but its a fraud site.


be more careful next time and view the address on top to make sure its the actual site, never click on email links. NEVER

I didnt clicked on anything... that is the thing.
I just opened the email.
BurtW
Legendary
*
Offline Offline

Activity: 2646
Merit: 1137

All paid signature campaigns should be banned.


View Profile WWW
January 23, 2014, 04:55:43 PM
 #4

Coins are now here:

https://blockchain.info/address/1ASzhmigL24UtZXPuoDMPwXdAxqygsg4WQ

Have not moved yet.

I guess you should forward the email to someone here who is brave enough to look into it (not me - not my area of expertise).

Would anyone care to see if they can find out anyting about the email?

Our family was terrorized by Homeland Security.  Read all about it here:  http://www.jmwagner.com/ and http://www.burtw.com/  Any donations to help us recover from the $300,000 in legal fees and forced donations to the Federal Asset Forfeiture slush fund are greatly appreciated!
x86Daddy
Full Member
***
Offline Offline

Activity: 216
Merit: 250



View Profile
January 23, 2014, 05:11:43 PM
 #5

Please see last transaction from this address:

1MGy5KEAnQ1FJWDq4e6HjKGbrv6ccJdSRc


1. I received an eMail from Blockchain.info, i opened it.
2. msg was deleted and it was replaced with a "Bitcoin Payment Sent" !!


I will add that i did had  2 factor authentication

Happened to anyone?

 
What email client did you use to open that message?  If web-based, which site and which browser?
BruceWayne (OP)
Newbie
*
Offline Offline

Activity: 41
Merit: 0


View Profile
January 23, 2014, 05:15:40 PM
 #6

Please see last transaction from this address:

1MGy5KEAnQ1FJWDq4e6HjKGbrv6ccJdSRc


1. I received an eMail from Blockchain.info, i opened it.
2. msg was deleted and it was replaced with a "Bitcoin Payment Sent" !!


I will add that i did had  2 factor authentication

Happened to anyone?

 
What email client did you use to open that message?  If web-based, which site and which browser?

Gmail, Chrome
BurtW
Legendary
*
Offline Offline

Activity: 2646
Merit: 1137

All paid signature campaigns should be banned.


View Profile WWW
January 23, 2014, 05:22:47 PM
 #7

Were you logged into your blockchain.info account already today (already entered the 2FA for today)?

[Hmmm.  Maybe I will change my 2FA to "every time" instead of "once per day" - now that I think about this]

Our family was terrorized by Homeland Security.  Read all about it here:  http://www.jmwagner.com/ and http://www.burtw.com/  Any donations to help us recover from the $300,000 in legal fees and forced donations to the Federal Asset Forfeiture slush fund are greatly appreciated!
BruceWayne (OP)
Newbie
*
Offline Offline

Activity: 41
Merit: 0


View Profile
January 23, 2014, 05:27:08 PM
 #8

Were you logged into your blockchain.info account already today (already entered the 2FA for today)?

[Hmmm.  Maybe I will change my 2FA to "every time" instead of "once per day" - now that I think about this]

No, haven't logged in for a month or so.
not.you
Legendary
*
Offline Offline

Activity: 1726
Merit: 1018


View Profile
January 23, 2014, 06:40:47 PM
 #9

I have speculated on a possible explanation: https://bitcointalk.org/index.php?topic=405411.msg4391686#msg4391686 although if you haven't logged into it for a month this is probably not the case here.

Seen quite a few similar sounding stories around here lately though.
U1TRA_L0RD
Full Member
***
Offline Offline

Activity: 126
Merit: 100

CAUTION: Angry Man with Attitude.


View Profile
January 25, 2014, 06:14:27 AM
 #10

It seems he used a proxy.

https://blockchain.info/inv/8413ac7630b13b95cf35622b1b22235bdd107914bf42cebb0c4519d9f245fa49
U1TRA_L0RD
Full Member
***
Offline Offline

Activity: 126
Merit: 100

CAUTION: Angry Man with Attitude.


View Profile
January 25, 2014, 06:16:39 AM
 #11

Wait send me that email, I don't have BTC. I might be able to trace that email.
Sonny
Hero Member
*****
Offline Offline

Activity: 868
Merit: 1000


View Profile
January 25, 2014, 01:39:07 PM
 #12


Those IPs may not be the IP of the thief, but the nodes that relayed the tx.
U1TRA_L0RD
Full Member
***
Offline Offline

Activity: 126
Merit: 100

CAUTION: Angry Man with Attitude.


View Profile
January 26, 2014, 02:13:39 AM
 #13


Those IPs may not be the IP of the thief, but the nodes that relayed the tx.
I know, That is why I need the email, The header might have his actual I.P.
letunovskeye
Newbie
*
Offline Offline

Activity: 29
Merit: 0


View Profile
January 26, 2014, 03:25:56 AM
 #14

^^ Thief could have been connected to proxy when sending the email, seems unlikely that they would be so foolish as to connect with their real IP.  That said, what do you have in mind to trace the sender?
U1TRA_L0RD
Full Member
***
Offline Offline

Activity: 126
Merit: 100

CAUTION: Angry Man with Attitude.


View Profile
January 26, 2014, 03:29:50 AM
 #15

^^ Thief could have been connected to proxy when sending the email, seems unlikely that they would be so foolish as to connect with their real IP.  That said, what do you have in mind to trace the sender?
It is worth trying, Unless you can sue the proxy company for  giving a fraudster asylum.
Pages: [1]
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!