Bitcoin Forum
December 11, 2016, 02:02:43 PM *
News: To be able to use the next phase of the beta forum software, please ensure that your email address is correct/functional.
 
   Home   Help Search Donate Login Register  
Pages: « 1 2 3 4 5 6 7 [8]  All
  Print  
Author Topic: Bitcoinica lost 43,554 BTC from Linode compromise, suspicious TXIDs publicized  (Read 52332 times)
dooglus
Legendary
*
Offline Offline

Activity: 2002



View Profile
March 06, 2012, 07:53:52 AM
 #141

Edit: It looks like someone is sending out small amounts of bitcoin to a large number of public addresses in alphabetical order...I think I just got tainted...

But those coins aren't tainted.  At least not from the linode theft.

'Only' these 1062 addresses contain coins from the linode theft: http://privatepaste.com/ce5905880d

My guess would be that this transaction was made by http://dailybitcoins.org/ - do you use them?

dailybitcoins.org:
* sends out their payments around 3am (your transaction was at 2012-03-06 03:55:43)
* mostly sends out 0.001 bitcoins, almost never less, with a few bigger (yours has 55 of 0.001, 24 of 0.005, 1 of 0.015 and some change)
* puts the addresses in alphabetical order
* usually has 81 outputs in their transactions (your transaction in blockexplorer: http://blockexplorer.com/tx/de3177f4e929d4deb1984889aa7ad79fd2e78075e41babbda23315bb5135e71f - has 81 outputs)

I think it's a pretty good guess that it's them.

1481464963
Hero Member
*
Offline Offline

Posts: 1481464963

View Profile Personal Message (Offline)

Ignore
1481464963
Reply with quote  #2

1481464963
Report to moderator
1481464963
Hero Member
*
Offline Offline

Posts: 1481464963

View Profile Personal Message (Offline)

Ignore
1481464963
Reply with quote  #2

1481464963
Report to moderator
1481464963
Hero Member
*
Offline Offline

Posts: 1481464963

View Profile Personal Message (Offline)

Ignore
1481464963
Reply with quote  #2

1481464963
Report to moderator
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
Polvos
Hero Member
*****
Offline Offline

Activity: 597



View Profile
March 06, 2012, 08:12:22 AM
 #142

The more layers of complexity, the less people will use Bitcoins. And remember that the average Joe's Bitcoin client doesn't allow you to select the addresses you are sending from.

LightRider
Legendary
*
Offline Offline

Activity: 1488


I advocate the Zeitgeist Movement & Venus Project.


View Profile WWW
March 06, 2012, 09:18:52 AM
 #143

Edit: It looks like someone is sending out small amounts of bitcoin to a large number of public addresses in alphabetical order...I think I just got tainted...

But those coins aren't tainted.  At least not from the linode theft.

'Only' these 1062 addresses contain coins from the linode theft: http://privatepaste.com/ce5905880d

My guess would be that this transaction was made by http://dailybitcoins.org/ - do you use them?

dailybitcoins.org:
* sends out their payments around 3am (your transaction was at 2012-03-06 03:55:43)
* mostly sends out 0.001 bitcoins, almost never less, with a few bigger (yours has 55 of 0.001, 24 of 0.005, 1 of 0.015 and some change)
* puts the addresses in alphabetical order
* usually has 81 outputs in their transactions (your transaction in blockexplorer: http://blockexplorer.com/tx/de3177f4e929d4deb1984889aa7ad79fd2e78075e41babbda23315bb5135e71f - has 81 outputs)

I think it's a pretty good guess that it's them.

Yes, that is it, thanks! Totally forgot that I tried that site. Apologies for the undue paranoia.

Bitcoin combines money, the wrongest thing in the world, with software, the easiest thing in the world to get wrong.
Visit www.thevenusproject.com and www.theZeitgeistMovement.com.
dooglus
Legendary
*
Offline Offline

Activity: 2002



View Profile
March 06, 2012, 09:23:01 AM
 #144

Yes, that is it, thanks! Totally forgot that I tried that site. Apologies for the undue paranoia.

I use a different receiving address for every site I use.  Then when coins arrive in my wallet I can instantly tell who sent them.  For example, only sealswithclubs.org knows the address I use when I'm withdrawing from sealswithclubs.org, and it's labelled in my wallet as "sealswithclubs.org".  The address in my signature here is only ever in my signature, and is labelled "bitcointalk forum donation".

ram1
Newbie
*
Offline Offline

Activity: 16



View Profile
March 07, 2012, 05:37:20 AM
 #145

Out of curiosity, I analyzed some of the transactions on the blockchain following the theft.  It's my opinion that a small amount of tainted coins (100) were moved to the Virwox exchange shortly after the theft.  Being a Virwox customer, I deduced this through knowledge of typical Virwox transactions, and not with any actual confirmation, so I could be mistaken. 
JoelKatz
Legendary
*
Offline Offline

Activity: 1386


Democracy is vulnerable to a 51% attack.


View Profile WWW
March 07, 2012, 05:44:23 AM
 #146

Here is my question. Why was it ever a good idea to be running a site like this where someone else has access to your machine? These types of operations should be run from locked up racks.
This is what I first thought when I heard about the Linode hack. It stunned me that people would run these kinds of things from low-end virtual servers. But it just happened that I always worked for companies that were ISPs, had ISP businesses, or had server infrastructure that pre-dated easy virtualization. I was quite surprised to find that use of virtual servers for business-critical infrastructure and highly-sensitive information is now quite common. I'm still not sure how I feel about it.

I am an employee of Ripple.
1Joe1Katzci1rFcsr9HH7SLuHVnDy2aihZ BM-NBM3FRExVJSJJamV9ccgyWvQfratUHgN
muyuu
Donator
Legendary
*
Offline Offline

Activity: 924



View Profile
March 07, 2012, 12:40:17 PM
 #147

Here is my question. Why was it ever a good idea to be running a site like this where someone else has access to your machine? These types of operations should be run from locked up racks.
This is what I first thought when I heard about the Linode hack. It stunned me that people would run these kinds of things from low-end virtual servers. But it just happened that I always worked for companies that were ISPs, had ISP businesses, or had server infrastructure that pre-dated easy virtualization. I was quite surprised to find that use of virtual servers for business-critical infrastructure and highly-sensitive information is now quite common. I'm still not sure how I feel about it.

It's not just low-end or high-end VPS. The cloud is just as susceptible to a crime like this, no matter how expensive your instance is.

People seem to have forgotten that some info is private beyond stamping an EULA and saying "you cannot copy this." Let's not get started about the cloud and social networks... the stupidity of the mass is just astonishing. You just have to make something look normal on the surface and they will stop questioning it.

GPG ID: 7294199D - OTC ID: muyuu (470F97EB7294199D)
forum tea fund BTC 1Epv7KHbNjYzqYVhTCgXWYhGSkv7BuKGEU DOGE DF1eTJ2vsxjHpmmbKu9jpqsrg5uyQLWksM CAP F1MzvmmHwP2UhFq82NQT7qDU9NQ8oQbtkQ
pent
Hero Member
*****
Offline Offline

Activity: 490



View Profile
March 08, 2012, 03:28:35 AM
 #148

I wrote how to avoid such sutuations:

https://bitcointalk.org/index.php?topic=67787.0
Matthew N. Wright
Untrustworthy
Hero Member
*****
Offline Offline

Activity: 588


Hero VIP ultra official trusted super staff puppet


View Profile
March 08, 2012, 03:37:12 AM
 #149

I wrote how to avoid such sutuations:

https://bitcointalk.org/index.php?topic=67787.0

Your hindsight is remarkable sir!

stick_theman
Sr. Member
****
Offline Offline

Activity: 372


View Profile
March 08, 2012, 04:20:25 AM
 #150

Hahahahaha.  Thanks for the tips.  Should be bookmarked and stickied!
CIYAM
Legendary
*
Offline Offline

Activity: 1820


Ian Knowles - CIYAM Lead Developer


View Profile WWW
May 28, 2015, 03:40:28 PM
 #151

Sorry to necro a topic but I have had to block Off Topic due to all the rubbish so just wanted to find a topic that mentioned Linode as it is not specific otherwise to this post.

I have recently moved ciyam.org to Linode and have found in doing so that if I attempt Google searches from ciyam.org that they are being blocked by Google.

This is apparently because Linode is blanket banned by Google due to web-scrapers using them, yet Linode denies this (despite many links you can find showing this) and Linode instead blames their customers for any problems that they have trying to use Google (so it should be believable that one is blocked making one single query via Google through a Linode for "some reason" when one is able to do the identical query through other VPS services without being blocked?).

Personally it is not surprising to now see why so much BTC was lost to Linode as this is a company that fails to take *any responsibility* itself but tries to push that all onto its clients.

With CIYAM anyone can create 100% generated C++ web applications in literally minutes.

GPG Public Key | 1ciyam3htJit1feGa26p2wQ4aw6KFTejU
cryptopaths
Hero Member
*****
Offline Offline

Activity: 616

Crypto Knight


View Profile
May 29, 2015, 12:53:27 AM
 #152

I just want to note that after MtGox got severely hacked, it became one of the most secure Bitcoin exchanges out there.

Lol the irony.
jeannemadrigal2
Sr. Member
****
Offline Offline

Activity: 322



View Profile
May 29, 2015, 04:29:10 AM
 #153

Isn't it a little early for Halloween boys?
Pages: « 1 2 3 4 5 6 7 [8]  All
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!