My funds have been stolen!

[Artemis3]

You are seriously not saying that a fully updated windows machine is naturally compromised. Windows machines (and servers) run tons of extremely sensitive data that is constantly under target and attack. This is not an operating systems issue this is a failure of OP who probably downloaded a fake wallet or most likely is just lying to get pitty donation funds.

Well i have seen it before, so that might be so. Even having the system secured and updated is not safe enough. Airgap might help your company server, but you are taking a giant risk. There are zero day exploits, there are "private" exploits now known by few discoverers but kept secret until needed. Usually those are not seen for widespread attacks, but can for targeted attacks. OP might have drawn someone's attention.

This is the fundamental problem of "security by obscurity". By hiding the code, is not like exploits don't exist, they do. And worst of it is they remain hidden for much longer than with open source.

It might be something simple like you say, but its always a good moment to call everyone's attention. Do not fool yourself thinking a well maintained Windows is ever good enough, it isn't. The thing didn't earn its bad fame for free. A better OS also needs maintaining, but its far easier to keep those secure than Windows ever will and this is a rock solid fact backed by decades of experience. Sure, you can make a living maintaining those (maybe thanks for being what it is), but that doesn't mean its any good. Internet is not run by Windows servers, they remain a minority for this very reason.

[zielar]

You are seriously not saying that a fully updated windows machine is naturally compromised. Windows machines (and servers) run tons of extremely sensitive data that is constantly under target and attack. This is not an operating systems issue this is a failure of OP who probably downloaded a fake wallet or most likely is just lying to get pitty donation funds.

Well i have seen it before, so that might be so. Even having the system secured and updated is not safe enough. Airgap might help your company server, but you are taking a giant risk. There are zero day exploits, there are "private" exploits now known by few discoverers but kept secret until needed. Usually those are not seen for widespread attacks, but can for targeted attacks. OP might have drawn someone's attention.

This is the fundamental problem of "security by obscurity". By hiding the code, is not like exploits don't exist, they do. And worst of it is they remain hidden for much longer than with open source.

It might be something simple like you say, but its always a good moment to call everyone's attention. Do not fool yourself thinking a well maintained Windows is ever good enough, it isn't. The thing didn't earn its bad fame for free. A better OS also needs maintaining, but its far easier to keep those secure than Windows ever will and this is a rock solid fact backed by decades of experience. Sure, you can make a living maintaining those (maybe thanks for being what it is), but that doesn't mean its any good. Internet is not run by Windows servers, they remain a minority for this very reason.

You are seriously not saying that a fully updated windows machine is naturally compromised. Windows machines (and servers) run tons of extremely sensitive data that is constantly under target and attack. This is not an operating systems issue this is a failure of OP who probably downloaded a fake wallet or most likely is just lying to get pitty donation funds.

Well i have seen it before, so that might be so. Even having the system secured and updated is not safe enough. Airgap might help your company server, but you are taking a giant risk. There are zero day exploits, there are "private" exploits now known by few discoverers but kept secret until needed. Usually those are not seen for widespread attacks, but can for targeted attacks. OP might have drawn someone's attention.

This is the fundamental problem of "security by obscurity". By hiding the code, is not like exploits don't exist, they do. And worst of it is they remain hidden for much longer than with open source.

It might be something simple like you say, but its always a good moment to call everyone's attention. Do not fool yourself thinking a well maintained Windows is ever good enough, it isn't. The thing didn't earn its bad fame for free. A better OS also needs maintaining, but its far easier to keep those secure than Windows ever will and this is a rock solid fact backed by decades of experience. Sure, you can make a living maintaining those (maybe thanks for being what it is), but that doesn't mean its any good. Internet is not run by Windows servers, they remain a minority for this very reason.

There are plenty of huge companies and businesses running on windows and windows servers, if someone had an exploit that gave them full access to a windows environment they wouldn't be using it to pull off a double spend attack, they would be doing more profitable hacks like those shitty ransom attacks. I think it's obvious what happened was a phishing attack and this resulted in a double spend attack.

I see that most probably did not understand what happened ... There was no double spending here !!! I received the funds at my BTC address (where they were still available for 30 minutes after posting). Wanting to make a payment to the stock exchange -> I realized that these measures have already been taken! There was no double spend attack!

[canamani]

i want to ask something. which version of electrum is safe?

you not recover bitcoin?

[btc78]

I am always concerning about victims of this kind of may i say hacking?because i also a victim back days when i am still active in online gaming where 2 of my accounts was hacked and did not manage to get them back having big amount of items that can be convert into fiat.

But like what many of members says above that moving on is the best key and we need to use this scenarios to prevent same issues again,0.4btc is a big amount specially now that the market is recovering and starting to be bullish again.
Hope you will find another way of profiting and this time must be full of secure and manage rightfully.

[Debonaire217]

In terms of computer security features specifically from the electrum, it is impossible for them to compromise your funds and take it away unless the problem relies on your system it self, the only safe storage I know is the hardware wallets where the private keys are hidden, because basically using other software where you could see your private keys will expose it, malware could probably screen capture your monitor and if they see information about your wallet then, that is the vulnerability you need to consider.

[krogoth]

  So sorry to hear about your misfortunes in the theft of your bitcoin. This has happened many times and you can read about such a case here...

https://www.ccn.com/kaspersky-lab-discovers-new-malware-that-stole-140000-worth-of-bitcoin/

  You have learned the hard way. Here is what I would do with my BTCitcoin to keep it safe.

  1) Never leave it on a hot wallet. Computer or phone. If I do have any on my phone Mycelium I keep only $100 worth of Bitcoin.

  2) Never leave it on any exchange, exchanges get hacked all the time. Also the saying NOT YOUR KEYS, NOT YOUR COIN applies here.

  3) Buy a hardware wallet. I recommend a Trezor. I think its the best out there, and even if your computer gets infected you are still safe.

  4) I also use paper wallets to store my BTC. But don't do it if you cannot generate one in a air gapped computer and know what your doing. If no, then suggestion 3 is the best.

 

[imstillthebest]

In terms of computer security features specifically from the electrum, it is impossible for them to compromise your funds and take it away unless the problem relies on your system it self, the only safe storage I know is the hardware wallets where the private keys are hidden, because basically using other software where you could see your private keys will expose it, malware could probably screen capture your monitor and if they see information about your wallet then, that is the vulnerability you need to consider.

really ? i didnt know that a malware can secretly make a screenshot of the seeds or the recovery of our wallet but i thought malware on works like pasting different address or different text once you copied something on your computer  .

we still need to double check what paste tho just to be sure that its our wallet address we have typed in  . wallets like electrum are also known to be secure  . once you got your keys , they cant already have a control of your account  .  

[GmAdvice]

I think your computer is attacked by malware, there are many malware which takes screen shoy of your seed words or else you have downloaded the electrum wallet from a fake or scammed website, make sure that next time when ever you are downloading any wallet or any application double check the link of website from where you are downloading...

[Google+]

In terms of computer security features specifically from the electrum, it is impossible for them to compromise your funds and take it away unless the problem relies on your system it self, the only safe storage I know is the hardware wallets where the private keys are hidden, because basically using other software where you could see your private keys will expose it, malware could probably screen capture your monitor and if they see information about your wallet then, that is the vulnerability you need to consider.

well maybe his computer has been infected with various viruses and maybe he has logged into an improper site or phishing and maybe he has also installed various add ons where there are many gaps that can be used to get a lot of data stored in his search engine, so it's better when it happens like that then reinstall your computer and backup all the keys that you think are important.

[zielar]

In terms of computer security features specifically from the electrum, it is impossible for them to compromise your funds and take it away unless the problem relies on your system it self, the only safe storage I know is the hardware wallets where the private keys are hidden, because basically using other software where you could see your private keys will expose it, malware could probably screen capture your monitor and if they see information about your wallet then, that is the vulnerability you need to consider.

well maybe his computer has been infected with various viruses and maybe he has logged into an improper site or phishing and maybe he has also installed various add ons where there are many gaps that can be used to get a lot of data stored in his search engine, so it's better when it happens like that then reinstall your computer and backup all the keys that you think are important.

All the keys that I had the opportunity to see go to the trash! I ALWAYS use the latest Chrome to browse the pages, and in addition - every time in incognito mode ... From plugins I have only ABP and WebRTC ... Ultimately, I remove even basic garbage from Google such as sheets, offline documents, etc. ... is undermining your bad luck. I am so experienced with Internet users that no phishing is possible. As for advice on not keeping large sums on hot wallets and exchanges - I AGREE ... I just remind you that it was the receipt of funds intended for payment to the stock exchange ... these funds disappeared after two confirmation of the payment transaction, so it was not "holding means "= no part of this knowledge would be applicable here ... although I believe that the less experienced thanks to this knowledge will protect their means against unauthorized hands.

As for the case itself:
Until now I haven't got the answer what really happened.
I know that no one in my computer personally rummaged because there is nobody [even in my absence]. The review of event logs in Windows also did not show any suspicious activity. Hash Electrum from the official website is consistent with the hash of the version used while I lost funds ... two conclusions can be drawn:

- a Trojan not yet detectable by anti-viruses has been used on my equipment
- the official version of Electrum is leaky

There are no more options.

In general, for readers who want to avoid adventures like me - I recommend from experience - (if you haven't already done so):

- check your computers regularly for viruses
- if you use the addresses generated in Electrum / by any site / BrainWallet / and have seen at least once your private key assigned to your wallet -> abandon them immediately and transfer funds to your hardware wallets. I personally had Trezor in my closet all the time, because I got it from the stock exchange for trading, but I didn't use it because I didn't see such a need ... oh, I regret it!
- ALWAYS install system updates from Microsoft if you use Windows!

Regards

[reallester]

Hello,
I have a crisis! I have withdrawn (for the seventh time) to my BTC wallet.
After posting the funds (and obtaining two confirmations) - there was an outgoing transaction that was not authorized by me !! The transaction was released twenty minutes after the first confirmation - to some fresh address with no transaction history and is an RBF transaction. It's exactly a transaction at 0.4BTC.
My BTC address from which the funds were stolen: 1CCEQxuUkb6RKQM4TDYbQemBVs2ihe45ps
Address to which funds were sent:
3DTjnTxjPnePfvg3haTyUQQeFK2riuZ1Fr
Unauthorized transaction ID: 2f79dda8aea3f06400be07f04f65b6045ba2e0235efa0bba0f6d9d6375da421c

The transaction is marked as RBF!
I use client Electrum 3.3.8
There is no option for someone to steal a private key from your computer because I watch security all the time!

Is it going to somehow stop the flow of funds or recover them?
I am desperate because these funds were supposed to be for my mother's health.

Sorry for losing your funds to scammers. But unfortunately, nothing can be done about it again because the transaction has recorded some confirmations. Did you ever tried your private key on any DeX exchange? Or does anyone have access to it? On daily basis these hackers devise new techniques to hacking it's high time we stopped feeding.
1. Dont ever store your funds in an exchange.
2. Store your funds in secured wallets with extra 2FA
3. Do not share your private key with a second party and lots more. Its every ones responsibility to keep ones funds safe. Not your keys, not your bitcoin.

[KnightElite]

Hello,
I have a crisis! I have withdrawn (for the seventh time) to my BTC wallet.
After posting the funds (and obtaining two confirmations) - there was an outgoing transaction that was not authorized by me !! The transaction was released twenty minutes after the first confirmation - to some fresh address with no transaction history and is an RBF transaction. It's exactly a transaction at 0.4BTC.
My BTC address from which the funds were stolen: 1CCEQxuUkb6RKQM4TDYbQemBVs2ihe45ps
Address to which funds were sent:
3DTjnTxjPnePfvg3haTyUQQeFK2riuZ1Fr
Unauthorized transaction ID: 2f79dda8aea3f06400be07f04f65b6045ba2e0235efa0bba0f6d9d6375da421c

The transaction is marked as RBF!
I use client Electrum 3.3.8
There is no option for someone to steal a private key from your computer because I watch security all the time!

Is it going to somehow stop the flow of funds or recover them?
I am desperate because these funds were supposed to be for my mother's health.

Sorry for losing your funds to scammers. But unfortunately, nothing can be done about it again because the transaction has recorded some confirmations. Did you ever tried your private key on any DeX exchange? Or does anyone have access to it? On daily basis these hackers devise new techniques to hacking it's high time we stopped feeding.
1. Dont ever store your funds in an exchange.
2. Store your funds in secured wallets with extra 2FA
3. Do not share your private key with a second party and lots more. Its every ones responsibility to keep ones funds safe. Not your keys, not your bitcoin.

For those who have stolen funds, there is nothing you can do to regain it but there is something that you could change. You should find the lesson after you lose your money, you shouls now focus on protecting your funds. I'm using online bitcoin wallet and also a hardware wallet but most of my funds are in hardware wallet. I do not also store my funds in an exchange because it is risky due to the vulnerability to the hackers.

[kotajikikox]

                               ~snip~

Sorry for losing your funds to scammers. But unfortunately, nothing can be done about it again because the transaction has recorded some confirmations. Did you ever tried your private key on any DeX exchange? Or does anyone have access to it? On daily basis these hackers devise new techniques to hacking it's high time we stopped feeding.
1. Dont ever store your funds in an exchange.
2. Store your funds in secured wallets with extra 2FA
3. Do not share your private key with a second party and lots more. Its every ones responsibility to keep ones funds safe. Not your keys, not your bitcoin.

i am very sad about the proceeds of the Money,it is for His mothers Health so i think there is a much need,either His mother is sick or very old now i hate this hackers .

but nothing we can do about it because the confirmation are already there so surely the hacker is now celebrating and hope this will happen to His mother also.

maybe for Op this will serve a lesson not to make the same mistakes again.

[sapnu]

Hello,
I have a crisis! I have withdrawn (for the seventh time) to my BTC wallet.
After posting the funds (and obtaining two confirmations) - there was an outgoing transaction that was not authorized by me !! The transaction was released twenty minutes after the first confirmation - to some fresh address with no transaction history and is an RBF transaction. It's exactly a transaction at 0.4BTC.
My BTC address from which the funds were stolen: 1CCEQxuUkb6RKQM4TDYbQemBVs2ihe45ps
Address to which funds were sent:
3DTjnTxjPnePfvg3haTyUQQeFK2riuZ1Fr
Unauthorized transaction ID: 2f79dda8aea3f06400be07f04f65b6045ba2e0235efa0bba0f6d9d6375da421c

The transaction is marked as RBF!
I use client Electrum 3.3.8
There is no option for someone to steal a private key from your computer because I watch security all the time!

Is it going to somehow stop the flow of funds or recover them?
I am desperate because these funds were supposed to be for my mother's health.

Sorry for losing your funds to scammers. But unfortunately, nothing can be done about it again because the transaction has recorded some confirmations. Did you ever tried your private key on any DeX exchange? Or does anyone have access to it? On daily basis these hackers devise new techniques to hacking it's high time we stopped feeding.
1. Dont ever store your funds in an exchange.
2. Store your funds in secured wallets with extra 2FA
3. Do not share your private key with a second party and lots more. Its every ones responsibility to keep ones funds safe. Not your keys, not your bitcoin.

For those who have stolen funds, there is nothing you can do to regain it but there is something that you could change. You should find the lesson after you lose your money, you shouls now focus on protecting your funds. I'm using online bitcoin wallet and also a hardware wallet but most of my funds are in hardware wallet. I do not also store my funds in an exchange because it is risky due to the vulnerability to the hackers.

Absolutely, there is nothing you can do if your money is being stolen here. We are in a digital world and we are earning and using digital money, one single mistake, you can lose all of your money. That is why we should study and think twice before making any decisions. You should be well informed before investing or buying tokens for you to secure your money, so that you can reach your goal being involved with crypto and that is to earn money.

In my opinion, your bitcoin's amount have been stolen because  your private key was not secured well and unfortunately, you have nothing to do, it is impossible to recover your funds. Accept this loss and deal with it, complaining and crying will change nothing, try to find  a way to earn BTC, there are many opportunities, just use your mind smartly. Remember that security is essential in order to make your wallet safe without it  you will get stolen again.

This might help. Try to secure important information that includes your wallet information. And do not share that information to anyone. Do not trust anybody. There are actually lots of ways to secure your account. That should be a lesson to you that you should be careful in every move or decision you make.

[abel1337]

                               ~snip~

Sorry for losing your funds to scammers. But unfortunately, nothing can be done about it again because the transaction has recorded some confirmations. Did you ever tried your private key on any DeX exchange? Or does anyone have access to it? On daily basis these hackers devise new techniques to hacking it's high time we stopped feeding.
1. Dont ever store your funds in an exchange.
2. Store your funds in secured wallets with extra 2FA
3. Do not share your private key with a second party and lots more. Its every ones responsibility to keep ones funds safe. Not your keys, not your bitcoin.

i am very sad about the proceeds of the Money,it is for His mothers Health so i think there is a much need,either His mother is sick or very old now i hate this hackers .

but nothing we can do about it because the confirmation are already there so surely the hacker is now celebrating and hope this will happen to His mother also.

maybe for Op this will serve a lesson not to make the same mistakes again.

Hackers do not care whether you are on any kind of situation as long as they can take over your assets or personal belongings, they might not know the situation you are having since we are on an anonymous state when using crypto. The only thing we need to do is to prevent them from making our security more harder for them to bypass. Once you are hacked it's almost impossible to regain your funds, Toughen up your security will make you more confident that no one will able to hack or to take advantage of you.

[Artemis3]

In terms of computer security features specifically from the electrum, it is impossible for them to compromise your funds and take it away unless the problem relies on your system it self, the only safe storage I know is the hardware wallets where the private keys are hidden, because basically using other software where you could see your private keys will expose it, malware could probably screen capture your monitor and if they see information about your wallet then, that is the vulnerability you need to consider.

really ? i didnt know that a malware can secretly make a screenshot of the seeds or the recovery of our wallet but i thought malware on works like pasting different address or different text once you copied something on your computer  .

we still need to double check what paste tho just to be sure that its our wallet address we have typed in  . wallets like electrum are also known to be secure  . once you got your keys , they cant already have a control of your account  .  

There are various ways to do it, at wallet creation they can take the seeds, or when opening the wallet, they can take the password the moment you type it. If they take the password they also need the wallet file as well. There is also that silly method that replaces the copy pasted address, but you can always hit the preview button and ensure the correct address is used.

In short you don't want malware running alongside your wallet...

[Abdulowad]

Hello,
I have a crisis! I have withdrawn (for the seventh time) to my BTC wallet.
After posting the funds (and obtaining two confirmations) - there was an outgoing transaction that was not authorized by me !! The transaction was released twenty minutes after the first confirmation - to some fresh address with no transaction history and is an RBF transaction. It's exactly a transaction at 0.4BTC.
My BTC address from which the funds were stolen: 1CCEQxuUkb6RKQM4TDYbQemBVs2ihe45ps
Address to which funds were sent:
3DTjnTxjPnePfvg3haTyUQQeFK2riuZ1Fr
Unauthorized transaction ID: 2f79dda8aea3f06400be07f04f65b6045ba2e0235efa0bba0f6d9d6375da421c

The transaction is marked as RBF!
I use client Electrum 3.3.8
There is no option for someone to steal a private key from your computer because I watch security all the time!

Is it going to somehow stop the flow of funds or recover them?
I am desperate because these funds were supposed to be for my mother's health.

i am really sorry to say this but the easiest way to put this is that someone else has access to your private key or seed phrase and has a stand-by alert for anytime you want to perform a transaction then used the Replace By Fee method to change the destination of your funds.

[barumbado]

Thats happen to me also.You can do nothing to that as the transactions cannot be reverse anymore.Better find a way on how to secure your funds more.Be careful next time.

[SUMBI99]

Hello,
I have a crisis! I have withdrawn (for the seventh time) to my BTC wallet.
After posting the funds (and obtaining two confirmations) - there was an outgoing transaction that was not authorized by me !! The transaction was released twenty minutes after the first confirmation - to some fresh address with no transaction history and is an RBF transaction. It's exactly a transaction at 0.4BTC.
My BTC address from which the funds were stolen: 1CCEQxuUkb6RKQM4TDYbQemBVs2ihe45ps
Address to which funds were sent:
3DTjnTxjPnePfvg3haTyUQQeFK2riuZ1Fr
Unauthorized transaction ID: 2f79dda8aea3f06400be07f04f65b6045ba2e0235efa0bba0f6d9d6375da421c

The transaction is marked as RBF!
I use client Electrum 3.3.8
There is no option for someone to steal a private key from your computer because I watch security all the time!

Is it going to somehow stop the flow of funds or recover them?
I am desperate because these funds were supposed to be for my mother's health.

Sorry for that loss I hope you are honest with this issue  happened to you, although it's difficult to return those Btc as the process is irreversible

[nosferzd]

The worst thing is that it is impossible to predict where the threat of the theft of your funds might come from. Hackers can change your browser settings and calmly learn passwords from your wallets. Yes, it is very frustrating, but the bitter experience is also an experience. Be vigilant in using your cryptocurrency wallet