Hackers steal data from MtGox server and release it with Mark's reddit account.

[DeathAndTaxes]

http://www.reddit.com/r/Bitcoin/comments/1zz21j/mtgox_2014_hack_database_revealed_live_from_mark/

(oh and the dump is hosted on Mark's blog).

WARNING:  I haven't verified or scanned the files.  It is at least possible they contain malware including the bitcoin stealing kind.   BE SMART and take precautions when downloading unknown files from self described hackers.

On edit: the exe in the zip file a wallet stealer.  Don't run unless you have too many bitcoins and then it will solve that problem for you.

[1715490677]

1715490677

[1715490677]

1715490677

[1715490677]

1715490677

[Definit]

they just removed his post.

[Beliathon]

they just removed his post.

Well that was fast.

[Moebius327]

Mod note: be careful with the executable, run it only on an isolated virtual machine

Files are legit. I verified them myself with my account balance. Be careful with .exe and .pdf (didn't take a look at that)

Edit: Here is the leak http://pastebin.com/f7DPskc7

the hackers removed december, january and february, but the user endbalances are right.

[dserrano5]

they just removed his post.

Well that was fast.

Mod note: be careful with the executable, run it only on an isolated virtual machine

Copy: http://pastebin.com/f7DPskc7

[bitjoint]

It's back...

http://www.reddit.com/r/Bitcoin/comments/1zz21j/mtgox_2014_hack_database_revealed_live_from_mark/cfya4jg

[Moebius327]

It seems gox were 450 000 btc short, but still had around 501 000 btc in storage. So this is getting interesting.

[Kenshin]

Mod note: be careful with the executable, run it only on an isolated virtual machine

You can still get them from here:

http://blog.magicaltux.net/wp-content/uploads/2014/03/MtGox2014Leak.zip [1] (716MB)

http://89.248.171.30/MtGox2014Leak.zip [2]

http://pastebin.com/f7DPskc7 [3]

http://burnbit.com/download/280433/MtGox2014Leak_zip

https://mega.co.nz/#!0VliDQBA!4Ontdi2MsLD4J5dV1-sr7pAgEYTSMi8rNeEMBikEhAs

The magnetlink is:

magnet:?xt=urn:btih:b6545ecc7db8d44c8cbc4e93989edf8221af75f5&dn=MtGox2014Leak.zip&tr=udp%3A%2F%2Ftracker.openbittorrent.com%3A80&tr=udp%3A%2F%2Ftracker.openbittorrent.com%3A80&tr=udp%3A%2F%2Ftracker.ccc.de%3A80&tr=udp%3A%2F%2Ftracker.istole.it%3A80&tr=udp%3A%2F%2Ftracker.publicbt.com%3A80&ws=http%3A%2F%2Fblog.magicaltux.net%2Fwp-content%2Fuploads%2F2014%2F03%2FMtGox2014Leak.zip

[encrypto]

UPDATE: Guys on irc confirmed that the dump is legit!!!

*To check your balance, you need your Mtgox USER ID, from your first email of registration at MtGox.

[broolstoryco]

The posts keep disappearing off /r/bitcoin. this is some serious bullshit

[BitCoinDream]

Insane !!! How they got access to even Mark's personal blog ?

[leopard2]

It seems gox were 450 000 btc short, but still had around 501 000 btc in storage. So this is getting interesting.

so hackers manage to do this piece of bookkeeping in their free time

the guys who own Gox had 365 days a year to do it, and never noticed that coins were missing?

absolutely fucking ridiculous and it stinks to the moon.

[stsbrad]

So user data is in the zip? Ugh

[Taras]

 I'll proceed to make cool visualizations with this zip.

[Remember remember the 5th of November]

So user data is in the zip? Ugh

No sensitive user data, I believe.

[WindMaster]

*To check your balance, you need your Mtgox USER ID, from your first email of registration at MtGox.

For anyone curious, here's how to find your balance.  For example, my original account creation Email from Gox looks about like this (with some numbers redacted):

Welcome to Mt.Gox!

Thank you for creating your account with us.

Your login: ZZZZZZZ

In order to enable your account, you need to enter your validation code on the Mt.Gox website.

Your confirmation code: ZZZZZZZZZZZZZZZZ

Alternatively you can click on or copy it into your browser via this url:
https://mtgox.com/signup/validate?ID=00000000-0000-0000-0000-000000000000&Code=ZZZZZZZZZZZZZZZZ


Best regards,
The Mt.Gox Team
info@mtgox.com
https://mtgox.com/

Note the bolded portion above.  I've replaced mine with 0's in the above, but yours will have a UUID-looking string of hexadecimal groups of numbers separated by hyphens.  Cross-reference this with the "mtgox_balances" file from the leak.  Your user ID will match the "User__" column.

I can confirm my BTC balance shown there matches what it was when Gox shut down, so this is recent data and appears to be a legit database dump.

[WindMaster]

No sensitive user data, I believe.

While true, I'm sufficiently convinced (by checking my own account and BTC balance) that it's a legit database dump, so I'm also convinced Gox was pretty thoroughly owned and it is likely that all data Gox had was compromised.  That means everyone's sensitive user data is probably out there *somewhere*, just not necessarily included in this particular set of leaked files.

[crazynoggin]

While these guys who released the files likely are doing it for the good of the community, there is that possibility that sensitive files are out there and you might want to assume that is the case and do all you can to protect yourself.

[leopard2]

Yikes. Sure I would not want to be in M.K.'s shoes these days.  

[DeathAndTaxes]

Since the data seems to have been stolen around the time MtGox shutdown or later the question would be ... why would you keep this information on a webserver if you aren't actively using it anymore?