Bitcoin Forum
June 21, 2024, 10:25:15 AM *
News: Voting for pizza day contest
 
   Home   Help Search Login Register More  
Pages: [1]
  Print  
Author Topic: Blockchain.info Wallet - Unauthroized Transaction  (Read 1324 times)
leancuisine (OP)
Hero Member
*****
Offline Offline

Activity: 980
Merit: 1000


www.DonateMedia.org


View Profile WWW
April 30, 2014, 08:02:05 PM
 #1

This problem is regarding my Blockchain.info wallet. It seems like before a transaction that I did not initiate happened, but I disregarded it as something I forgot I sent. But this happened again today, in the middle of the night, so I know for sure that it was not by me.

https://blockchain.info/tx/c38a788daaff2f646de0ec32c70e2ecc4b9c145b48a59ea9013649757b54fdd2

0.01845303 BTC was sent, and some of it was also sent to 'StrongCoin', as in the last transaction a few months ago. A fee of 0.001 BTC was used, seems like they were in a bit of a rush for it to be confirmed...

I know that that small amount of BTC is lost, and that I should start fresh with a new wallet, but why is it being sent to StrongCoin and how is this happening? I got no emails regarding any confirmation codes required to access my account. I had two-factor authorization enabled on my wallet.

blacksails
Sr. Member
****
Offline Offline

Activity: 294
Merit: 250


View Profile
April 30, 2014, 09:52:03 PM
 #2

Someone maybe has generated the same private keys as you? It's extremely unlikely, but not impossible!
Otherwise someone has probably gained access to your private keys in some other way, maybe through infecting your computer with malware.
shorena
Copper Member
Legendary
*
Offline Offline

Activity: 1498
Merit: 1520


No I dont escrow anymore.


View Profile WWW
April 30, 2014, 09:55:08 PM
 #3

Someone maybe has generated the same private keys as you? It's extremely unlikely, but not impossible!
Otherwise someone has probably gained access to your private keys in some other way, maybe through infecting your computer with malware.

Thats like finding a buckyball in the earth. Wink *

But these blockchain incidents seem to happen a lot lately.

https://bitcointalk.org/index.php?topic=589609
https://bitcointalk.org/index.php?topic=588644
https://bitcointalk.org/index.php?topic=590090

Some had 2fa enable, some hadnt. Anything unusual the last days?


*
https://bitcointalk.org/index.php?topic=587693.msg6473942#msg6473942

Im not really here, its just your imagination.
circusmidget11
Full Member
***
Offline Offline

Activity: 224
Merit: 100

GOOD Dev


View Profile
April 30, 2014, 09:58:44 PM
 #4

Even if the amount is small, if this "hacker" does it enough times to x amount of wallets then he'd be expecting a big payday. 

GOODcoin - C-Cex Vote - Poloniex Request -
GOOD: GcFTMgVKLGrGjY4Vm1XD8tP4vUsS64uqWw
blacksails
Sr. Member
****
Offline Offline

Activity: 294
Merit: 250


View Profile
April 30, 2014, 10:03:42 PM
 #5

Someone maybe has generated the same private keys as you? It's extremely unlikely, but not impossible!
Otherwise someone has probably gained access to your private keys in some other way, maybe through infecting your computer with malware.

Thats like finding a buckyball in the earth. Wink *

But these blockchain incidents seem to happen a lot lately.

https://bitcointalk.org/index.php?topic=589609
https://bitcointalk.org/index.php?topic=588644
https://bitcointalk.org/index.php?topic=590090

Some had 2fa enable, some hadnt. Anything unusual the last days?


*
https://bitcointalk.org/index.php?topic=587693.msg6473942#msg6473942
Hmm, maybe blockchain.info is compromised? That would explain the recent hacks. However, they seem a bit random to actually be a full scale hack against them. Maybe a malware attack target against bitcoin users would be more realistic?
leancuisine (OP)
Hero Member
*****
Offline Offline

Activity: 980
Merit: 1000


www.DonateMedia.org


View Profile WWW
April 30, 2014, 10:13:35 PM
 #6

The same private key? That seems awfully unlikely, but never thought of that yet. Thanks for the links shorena too, those occurred yesterday and today. I'll just switch from using an online wallet to a desktop one, however I cannot decide between Bitcoin-qt, Electrum, Multibit, and Amory.

blacksails
Sr. Member
****
Offline Offline

Activity: 294
Merit: 250


View Profile
April 30, 2014, 10:16:20 PM
 #7

The same private key? That seems awfully unlikely, but never thought of that yet. Thanks for the links shorena too, those occurred yesterday and today. I'll just switch from using an online wallet to a desktop one, however I cannot decide between Bitcoin-qt, Electrum, Multibit, and Amory.
I personally recommend MultiBit. Lightweight, and really east to use and create new wallets and such stuff! Smiley
jbrnt
Hero Member
*****
Offline Offline

Activity: 672
Merit: 500



View Profile
April 30, 2014, 10:47:10 PM
 #8

There seems to be a lot of theft around blockchain.info in the past couple of days. This is the fourth one I read. I wonder if it has nothing to do with weak passwords, but the browser and phishing sites. I believe blockchain.info admin is already looking into this.

Meanwhile, I personally would refrain from logging into blockchain.info itself unless absolutely necessary, but check balances via a blockexplorer. I might be paranoid, but it is better to be safe than sorry.
DeathAndTaxes
Donator
Legendary
*
Offline Offline

Activity: 1218
Merit: 1079


Gerald Davis


View Profile
April 30, 2014, 10:53:46 PM
 #9

Someone maybe has generated the same private keys as you? It's extremely unlikely, but not impossible!

When people jump first to "duplicate private key" it makes me wonder if they jump to the least probable explanation in other scenarios as well.

Say you came home from work early, open the door to your house, and saw your wife having sex with the neighbor.  

Now there are two (well probably more but let keep it simple) possibilities:
a) Your wife really is cheating on you, with your neighbor.  The proof is irrefutable and visibly obvious in front of you. 
OR
b) On your way home from work, unbeknownst to you, you were transported into a parallel dimension.  This dimension for the most part is undetectably similar to "your" dimension, except in this world, you never married your wife.  Due to that fact she actually married the man whom you know as your neighbor.  So in reality the man and women who are having sex, are married, don't even know you, and this is their home.  If they haven't seen you yet you should probably leave before you are arrested for breaking and entering.

I have to wonder when faced with that scenario, if the first words from the "duplicate private key" people would be "Hey are you my wife? I just need to rule out the possibility that I accidentally traveled between dimensions before I get really pissed."
blacksails
Sr. Member
****
Offline Offline

Activity: 294
Merit: 250


View Profile
May 01, 2014, 08:22:35 AM
 #10

Someone maybe has generated the same private keys as you? It's extremely unlikely, but not impossible!

When people jump first to "duplicate private key" it makes me wonder if they jump to the least probable explanation in other scenarios as well.

Say you came home from work early, open the door to your house, and saw your wife having sex with the neighbor.  

Now there are two (well probably more but let keep it simple) possibilities:
a) Your wife really is cheating on you, with your neighbor.  The proof is irrefutable and visibly obvious in front of you.  
OR
b) On your way home from work, unbeknownst to you, you were transported into a parallel dimension.  This dimension for the most part is undetectably similar to "your" dimension, except in this world, you never married your wife.  Due to that fact she actually married the man whom you know as your neighbor.  So in reality the man and women who are having sex, are married, don't even know you, and this is their home.  If they haven't seen you yet you should probably leave before you are arrested for breaking and entering.

I have to wonder when faced with that scenario, if the first words from the "duplicate private key" people would be "Hey are you my wife? I just need to rule out the possibility that I accidentally traveled between dimensions before I get really pissed."
I actually presented the more likely scenario in the line under if you didn't see it.
I see your point with the parallel universe thing though.
Jcw188
Hero Member
*****
Offline Offline

Activity: 546
Merit: 500


Carpe Diem


View Profile
May 01, 2014, 03:20:38 PM
 #11

I was thinking about joining blockchain.info but I've read a few of these horror stories lately...how could someone possibly get through a 2FA account?  I thought you would need the mobiel device to withdraw?



████▄██████████▄
███▄████████████
▄███▀
████
████
████
▀███▄
███▀████████████
████▀██████████▀


▄██████████▄
████████████
███████████▀███▄
████████████████
████████████████
████████████████
▀███▄███████████
████████████████
████▀██████████▀


▄██▄█████████▄██▄
▀████▄█████▄████▀
▀████▄▄████▀
███████████
▄███▀█████▀███▄
█████████████████
█████████████████
█████████████████
▀███████████████▀


▄███████████████▄
█████████████████
████▀███▀██████▀
███████▄█████▀
████▄▄██████████▄
▀▀██████▀███████
▄██████▄███▄████
█████▀██████████
▀██▀███▀████████▀


████▄███████████
████████████████
▄███▀███████████
███████████████
██████████████
████████████████
███████████▄███▀
████████████
▀██████████▀
████████
██
██
██
██
██
██
██
██




██
██
██
██
██

██
██
██
████████
|
.
Listed
on
BINANCE
KUCOIN
Gate.io
|
edd
Donator
Legendary
*
Offline Offline

Activity: 1414
Merit: 1001



View Profile WWW
May 01, 2014, 06:10:04 PM
 #12

I was thinking about joining blockchain.info but I've read a few of these horror stories lately...how could someone possibly get through a 2FA account?  I thought you would need the mobiel device to withdraw?

You have several options for two factor authentication with blockchain.info. You can use SMS, email, Yubikey or Google authenticator.

Using 2FA just means a hacker has to work that much harder to access your account; it doesn't make it impossible.

Still around.
counter
Hero Member
*****
Offline Offline

Activity: 798
Merit: 500


Time is on our side, yes it is!


View Profile
May 02, 2014, 02:12:57 AM
 #13

Seems like the best thing to do after something like this is to go over your protocols for security and tell someone who would have a good understanding of what may or may not have happened.
marife01
Full Member
***
Offline Offline

Activity: 162
Merit: 100


View Profile
May 05, 2014, 01:09:36 PM
 #14

Even if the amount is small, if this "hacker" does it enough times to x amount of wallets then he'd be expecting a big payday. 

Strongly agreed to it. It could me millions a day if done several million times.
I wonder what could be behind that Strongcoin.
Pages: [1]
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!