alexred (OP)
Newbie
 Offline
Activity: 3
Merit: 0
|
 |
July 18, 2014, 02:27:39 AM
Last edit: July 25, 2014, 07:02:03 AM by alexred |
|
Its been over 7 months! I would like my password reset buy cannot remember my security question.
01/03/2014 5:43 pm
Your security question is:
What was your first phone number?
If you answer this correctly we will reset the password for you.
01/03/2014 7:34 pm John M
dear crypto-trade support, this is 7 months later. i would like to access my account, i have no idea what the number i put down for the secQ please understand there must be some way to access my funds as i have a need for them at this time. i hope we can reach something out.
07/12/2014 4:21 pm
Sorry without the answer to the security question your password cannot be reset.
Please answer your security question
What was your first phone number?
Hint:The answer has no numbers & starts with "*"
07/13/2014 4:33 pm John M
my best guess is something like "****". i don't know. please there must be another way to access my funds
07/17/2014 1:06 am
Sorry there is no other way.
You need to answer the security question.
Your answer was close but not correct.
07/17/2014 6:58 am John M
I want my money!!! -------------------- Update: after disclosing the balance of my account they Helpdesk people reset my password. |
|
|
|
|
roslinpl
Legendary
Offline
Activity: 2212
Merit: 1199
|
|
July 18, 2014, 12:11:09 PM |
|
Lol! When I forgot my security question @mintpal they just asked me
"How many coins do you hold @mintpal".
My answer was "none 0 ballance" and they did reset my password.
This what you are talking about is kinda sick. .
I hope they will read this thread and think a little bit.
Good luck.
|
|
|
|
|
IanFoxley
Legendary
Offline
Activity: 910
Merit: 1000
|
|
July 18, 2014, 02:17:44 PM |
|
Lol! When I forgot my security question @mintpal they just asked me
"How many coins do you hold @mintpal".
My answer was "none 0 ballance" and they did reset my password.
This what you are talking about is kinda sick. .
I hope they will read this thread and think a little bit.
Good luck.
I wouldn't have had a clue how many coins I hold at an exchange. I would have been screwed. |
|
|
|
|
AliceWonder
|
|
July 18, 2014, 02:37:32 PM |
|
Yet another reason to avoid pseudo-exchanges.
A proper exchange will require that you demonstrate who you are for FinCEN regulations. At least in US.
From that you can recover by proving you are who you demonstrated you were.
-=-
The exchange has no way to know this isn't a social engineering attack to take the persons funds.
You could have hacked the real persons e-mail and set up a filter on their imap server (or mail client) that hides the e-mails from exchange so the real person doesn't even know it.
Giving you the hint that it started with a * and has no numbers was wrong, they shouldn't have done that.
Not sure what you can do, but trade w/o an exchange or use an exchange where you are required to document who you are.
When grandma died, we were able to get some of her assets by showing a death certificate.
If you died, could your next of kin get your assets from an exchange / web wallet that doesn't even know who you are?
|
|
|
|
crunck
Legendary
Offline
Activity: 1176
Merit: 1005
crunck
|
|
July 18, 2014, 02:41:56 PM |
|
I find this thread funny.
So you cant remember your phone number ? Ok you could have changed phones, but someone somewhere that you know will still have your old number.
Then on on top of that lets flip this.
This security is there for YOU I suspect had someone taken control of your account because of piss poor security measures you would still be on here, but shouting and moaning about the lack of security.
Its YOUR issue if you cant remember your login details and/or security pass's
LMAO at this
|
|
|
|
|
Golph
|
|
July 18, 2014, 03:22:44 PM |
|
lolz, the title is misleading.
|
|
|
|
hellscabane
Legendary
Offline
Activity: 896
Merit: 1000
|
|
July 18, 2014, 03:45:19 PM |
|
Seriously, you can't remember the answer to your security question and you expect them to hand you over the keys to some funds? If you can't prove that you own the account, why should they give you access to that account? For all they know you could just be trying to break in to someone else's account.
If anything, it is disappointing to see them give you a hint to the security question (unless it is something you would have usually seen).
No one stole anything; nothing to see here.
|
|
|
|
|
|
AliceWonder
|
|
July 18, 2014, 03:59:44 PM |
|
Perhaps these exchanges could ask new people to send them a public GPG key instead of a hint question.
You then provide a signed request they can verify in order to reset the password.
I never liked the hint mechanism, always seemed insecure.
My cable company requires it and anytime I change service options by phone I have to answer it. It's bullshit and I picked a bullshit answer because the real answer is something someone could figure out.
But a GPG key would be acceptable.
|
|
|
|
|
spud21
|
|
July 18, 2014, 06:33:07 PM |
|
I routinely give bullshit answers I cannot remember to security questions. I would be screwed in the same situation. I know I should learn a lesson from this and note down all the sign up information I give in the future, but I probably won't bother because it's too much hassle.
|
|
|
|
|
|
KimNam
|
|
July 18, 2014, 06:43:05 PM |
|
lol, that's funny  you can't remember your first phone that you put there? you must be put your phone number randomly when sign up  Maybe you ever withdraw from that exchange? so you can sign message using that withdrawal address |
|
|
|
|
|
spud21
|
|
July 18, 2014, 07:09:15 PM |
|
I found that if I give out my phone number just once I get deluged with sales calls and the only way I can stop them is to change my phone number. That's why I usually make up one for online forms.
|
|
|
|
|
|
BitJohn
|
|
July 18, 2014, 08:01:53 PM |
|
Dealing with this issue myself AliceWonder has the best answer though most crypto folks do not like it. If you cannot provide the information you provided as to who you are then how can exchanges protect your money from anyone else who says they are you...
Verified users this is not an issue.
I think you would be just as mad if they gave your account info to someone else claiming to be you who guessed close to your security question. People try this all the time so close just cannot cut it.
|
|
|
|
|
|
spud21
|
|
July 18, 2014, 08:06:56 PM |
|
I know paranoid is good when it comes down to security, but I hate security questions because they can easily be seen by shoulder surfers in public. I would rather someone sent an email for confirmation of who I am.
|
|
|
|
|
|
BitJohn
|
|
July 18, 2014, 08:08:40 PM |
|
I know paranoid is good when it comes down to security, but I hate security questions because they can easily be seen by shoulder surfers in public. I would rather someone sent an email for confirmation of who I am.
Well just because I ask you what your Teddy bears name is does not mean it cannot be a password like P@$$word12345678 which most privacy conscious folks do |
|
|
|
|
|
spud21
|
|
July 18, 2014, 08:44:55 PM |
|
Most online forms with security question fields display them in plain text which any shoulder surfer can easily read. Usually you have to send the answer to a security question query back in plain text too.
|
|
|
|
|
|
BitJohn
|
|
July 18, 2014, 09:10:20 PM |
|
Most online forms with security question fields display them in plain text which any shoulder surfer can easily read. Usually you have to send the answer to a security question query back in plain text too.
Definitely good points. Curious what solutions you offer to solve the issue without them? |
|
|
|
|
Spoetnik
Legendary
Offline
Activity: 1540
Merit: 1011
FUD Philanthropist™
|
|
July 18, 2014, 10:28:51 PM |
|
never heard of the place is that bad ? and why did it take you 3 months to come here and complain ? that is odd. ya might wanna get better at "internet'ing" that isn't the only place that will burden you with knowing a password lol i use Password Depot to help things out and it can be used for free with up to 20 passwords and they also have free mobile app version too (i have not tried) www.password-depot.comSo they didn't steal your money.. they asked you to handle your own responsibility of keeping a password for their site. You failed that.. so.. Move on. You can't call that theft otherwise every site on the internet that uses a password are run by thieves too LOL |
FUD first & ask questions later™ |
|
|
alexred (OP)
Newbie
Offline
Activity: 3
Merit: 0
|
|
July 18, 2014, 10:59:18 PM |
|
its been 7 months, i control the registered email address and if i was an imposter the real owner would have contacted the exchange by now.
the answer doesn't actually start with "*". i did not want to post the hint on a public forum. the problem is that they won't allow other ways of verifying. i know the balance of the account and other details
|
|
|
|
|
lpl258
Member
Offline
Activity: 105
Merit: 10
|
|
July 19, 2014, 02:10:00 AM |
|
its been 7 months, i control the registered email address and if i was an imposter the real owner would have contacted the exchange by now.
the answer doesn't actually start with "*". i did not want to post the hint on a public forum. the problem is that they won't allow other ways of verifying. i know the balance of the account and other details
That sucks dude haha. |
|
|
|
|
MilesJohan
|
|
July 19, 2014, 04:38:50 AM |
|
its been 7 months, i control the registered email address and if i was an imposter the real owner would have contacted the exchange by now.
the answer doesn't actually start with "*". i did not want to post the hint on a public forum. the problem is that they won't allow other ways of verifying. i know the balance of the account and other details
Why not just use your ID to verify its you? Don't tell me you have fake name in your account? |
MileyJohanson
|
|
|
|
