freee101 (OP)
|
|
August 09, 2014, 06:01:34 AM Last edit: August 09, 2014, 07:49:41 AM by freee101 |
|
4 Aug, 2014, hacker steal my friend's 1.23BTC and 325 LTC. the thief's BTC address is 18J9vm2Ykx8LtufrnCskK953z2mMGF4Eua thief's LTC's address is LhJrvCWfQRBQpRRMzP6yxDdzaMmn6Qpqe5 can the crypto-currency expert help him the track the money, and can the exchange prevent the hacker from selling currency? He can pay 1 btc for the person or exchange taking back the coins. here is some evidences from block chain querying: 1.23 BTC: 3ac51f4caf9d9198efc5b0168764339a577fc04addcabcdc3b63979a222719a6 2014-08-05 00:58:51 from: 14tKaGG6eVh3L5Ue6XHuhq3pMEkqJXvQKF -1.23092764 BTC to: 18J9vm2Ykx8LtufrnCskK953z2mMGF4Eua 325 LTC 7add6ad94f85778a78f20094ac2569b2d02b53cf3b4e095aa8e7e88b3f251443 2014-08-05 00:19:52 from: LVsbcAQwCFg4TU3P1koW8p8ho8pWRHqpis LTxcgBSMmJoxx54vCSmg19XcQTFj6vurns -319.8654 LTC to: LhJrvCWfQRBQpRRMzP6yxDdzaMmn6Qpqe5 6a975096b9ab8c9422b63ac2d42e1ced7d2aae345f229371e0d05fdaf16c3564 2014-08-05 00:18:56 from: LTxcgBSMmJoxx54vCSmg19XcQTFj6vurns -5.0768 LTC to: LTxcgBSMmJoxx54vCSmg19XcQTFj6vurns LVsbcAQwCFg4TU3P1koW8p8ho8pWRHqpis the more information about the unlucky happening my friend's wallet address information is only known by 3 exchanges. www.OKcoin.com only know the BTC wallet address; www.bter.com only know the LTC wallet address; www.btc100.com know both BTC and LTC wallet address. you can contact with me by email: quanzhong410@126.comthanks for your help.
|
|
|
|
e1ghtSpace
Legendary
Offline
Activity: 1554
Merit: 1001
Crypto since 2014
|
|
August 09, 2014, 06:18:27 AM |
|
He probably installed malware which stole his private keys and uploaded it to someone who withdrew coins from the keys. I seriously doubt he would be able to recover the coins. I wonder what would happen if the person who stole the coins came forward and gave them back. Would your friend still give him 1 btc for recovering them? (it's not me btw but I was just wondering)
|
|
|
|
freee101 (OP)
|
|
August 09, 2014, 06:39:26 AM |
|
He probably installed malware which stole his private keys and uploaded it to someone who withdrew coins from the keys. I seriously doubt he would be able to recover the coins. I wonder what would happen if the person who stole the coins came forward and gave them back. Would your friend still give him 1 btc for recovering them? (it's not me btw but I was just wondering)
Do you mean the hacker installed malware to steal the private keys. but my friend has set password for private keys. anyway, 1 btc for recovering coins still.
|
|
|
|
ethought
Legendary
Offline
Activity: 1316
Merit: 1000
|
|
August 09, 2014, 08:26:35 AM |
|
He probably installed malware which stole his private keys and uploaded it to someone who withdrew coins from the keys. I seriously doubt he would be able to recover the coins. I wonder what would happen if the person who stole the coins came forward and gave them back. Would your friend still give him 1 btc for recovering them? (it's not me btw but I was just wondering)
Do you mean the hacker installed malware to steal the private keys. but my friend has set password for private keys. anyway, 1 btc for recovering coins still. The attacker may have installed a key stroke logger. He would then just need to wait until the password was entered and he would have your wallet and password. It has been happening a lot lately it seems. M$ windows is terrible in terms of security - strongly suggest he uses Ubuntu or another flavour of Linux and does not download and install software he does not trust.
|
|
|
|
freee101 (OP)
|
|
August 09, 2014, 10:49:52 AM |
|
He probably installed malware which stole his private keys and uploaded it to someone who withdrew coins from the keys. I seriously doubt he would be able to recover the coins. I wonder what would happen if the person who stole the coins came forward and gave them back. Would your friend still give him 1 btc for recovering them? (it's not me btw but I was just wondering)
Do you mean the hacker installed malware to steal the private keys. but my friend has set password for private keys. anyway, 1 btc for recovering coins still. The attacker may have installed a key stroke logger. He would then just need to wait until the password was entered and he would have your wallet and password. It has been happening a lot lately it seems. M$ windows is terrible in terms of security - strongly suggest he uses Ubuntu or another flavour of Linux and does not download and install software he does not trust. my friend say that he didn't send out any coin almost half an year, but only withdraws litecoins from exchange a few days ago. it's strange ,only wallet address for withdrawing from exchange lost money, other wallet has not. he has put the private key in computer, i think hacker has stolen the private, but the private key has set password, hacker should has not get the password. could the key stroke logger get the password half an year ago?
|
|
|
|
shorena
Copper Member
Legendary
Offline
Activity: 1498
Merit: 1540
No I dont escrow anymore.
|
|
August 09, 2014, 12:31:02 PM |
|
-snip- my friend say that he didn't send out any coin almost half an year, but only withdraws litecoins from exchange a few days ago. it's strange ,only wallet address for withdrawing from exchange lost money, other wallet has not. he has put the private key in computer, i think hacker has stolen the private, but the private key has set password, hacker should has not get the password. could the key stroke logger get the password half an year ago?
#1 It makes no sense to proxy this via you as your understanding is limited e.g. wallet is not the same as address. Your friend might also not share everything with you. In my experience even if you ask people direclty (knowing their browser history): have you ever watched porn online, they will try to come up with a lie or clever response. #2 From experience here: it was malware or someone with hardware access - you can doubt that all you want, those that cared to shared long enough in the past allways found malware. #3 in the rare cases that it was not #2 it was a bad password (123456 is not a good password) or an unencrypted backup #4 if the bounty is set high enough, people will come and try to help. Some here are even able to do so. AFAIK they usually contact the person in question in private.
|
Im not really here, its just your imagination.
|
|
|
forever21
|
|
August 09, 2014, 12:56:19 PM |
|
you might track the hacker but to recover the coins?? impossible and also this is crypto world everything is possible here we have a bunch of pretty good hackers that only wait for a nice time to steal from you take it as a hard lesson move on with your life and protect your btc next time make an offline wallet store in on the usb and buried it under your basement things like that which you think that much more safe than put it on the blockchain or any other online storage 1.23 btc is nothing compare to klee's hundred/thousand of btc (forgive my word but that is the reality)
|
|
|
|
freee101 (OP)
|
|
August 09, 2014, 02:27:16 PM |
|
-snip- my friend say that he didn't send out any coin almost half an year, but only withdraws litecoins from exchange a few days ago. it's strange ,only wallet address for withdrawing from exchange lost money, other wallet has not. he has put the private key in computer, i think hacker has stolen the private, but the private key has set password, hacker should has not get the password. could the key stroke logger get the password half an year ago?
#1 It makes no sense to proxy this via you as your understanding is limited e.g. wallet is not the same as address. Your friend might also not share everything with you. In my experience even if you ask people direclty (knowing their browser history): have you ever watched porn online, they will try to come up with a lie or clever response. #2 From experience here: it was malware or someone with hardware access - you can doubt that all you want, those that cared to shared long enough in the past allways found malware. #3 in the rare cases that it was not #2 it was a bad password (123456 is not a good password) or an unencrypted backup #4 if the bounty is set high enough, people will come and try to help. Some here are even able to do so. AFAIK they usually contact the person in question in private. yes, my friend remembered that he has change the password once after withdrawing from exchange. for #4, if someone can take back the coins, he can open a price to me.
|
|
|
|
freee101 (OP)
|
|
August 09, 2014, 03:00:23 PM |
|
you might track the hacker but to recover the coins?? impossible and also this is crypto world everything is possible here we have a bunch of pretty good hackers that only wait for a nice time to steal from you take it as a hard lesson move on with your life and protect your btc next time make an offline wallet store in on the usb and buried it under your basement things like that which you think that much more safe than put it on the blockchain or any other online storage 1.23 btc is nothing compare to klee's hundred/thousand of btc (forgive my word but that is the reality)
thiefs always stole coins, they may finally stole from all of us.
|
|
|
|
byt411
|
|
August 09, 2014, 03:04:28 PM |
|
-snip- my friend say that he didn't send out any coin almost half an year, but only withdraws litecoins from exchange a few days ago. it's strange ,only wallet address for withdrawing from exchange lost money, other wallet has not. he has put the private key in computer, i think hacker has stolen the private, but the private key has set password, hacker should has not get the password. could the key stroke logger get the password half an year ago?
#1 It makes no sense to proxy this via you as your understanding is limited e.g. wallet is not the same as address. Your friend might also not share everything with you. In my experience even if you ask people direclty (knowing their browser history): have you ever watched porn online, they will try to come up with a lie or clever response. #2 From experience here: it was malware or someone with hardware access - you can doubt that all you want, those that cared to shared long enough in the past allways found malware. #3 in the rare cases that it was not #2 it was a bad password (123456 is not a good password) or an unencrypted backup #4 if the bounty is set high enough, people will come and try to help. Some here are even able to do so. AFAIK they usually contact the person in question in private. yes, my friend remembered that he has change the password once after withdrawing from exchange. for #4, if someone can take back the coins, he can open a price to me. Bitcoin transactions are irreversible, so no, you won't get your coins back at all, unless the hacker decides to return them.
|
|
|
|
forever21
|
|
August 09, 2014, 03:38:52 PM |
|
you might track the hacker but to recover the coins?? impossible and also this is crypto world everything is possible here we have a bunch of pretty good hackers that only wait for a nice time to steal from you take it as a hard lesson move on with your life and protect your btc next time make an offline wallet store in on the usb and buried it under your basement things like that which you think that much more safe than put it on the blockchain or any other online storage 1.23 btc is nothing compare to klee's hundred/thousand of btc (forgive my word but that is the reality)
thiefs always stole coins, they may finally stole from all of us. indeed that is why we need to be more careful and guard our btc as possible as we can
|
|
|
|
redsn0w
Legendary
Offline
Activity: 1778
Merit: 1043
#Free market
|
|
August 09, 2014, 03:57:57 PM |
|
He probably installed malware which stole his private keys and uploaded it to someone who withdrew coins from the keys. I seriously doubt he would be able to recover the coins. I wonder what would happen if the person who stole the coins came forward and gave them back. Would your friend still give him 1 btc for recovering them? (it's not me btw but I was just wondering)
Do you mean the hacker installed malware to steal the private keys. but my friend has set password for private keys. anyway, 1 btc for recovering coins still. The attacker may have installed a key stroke logger. He would then just need to wait until the password was entered and he would have your wallet and password. It has been happening a lot lately it seems. M$ windows is terrible in terms of security - strongly suggest he uses Ubuntu or another flavour of Linux and does not download and install software he does not trust. Yes , maybe it's a keylogger on your pc.... be careful !
|
|
|
|
SparkedDev
|
|
August 09, 2014, 06:39:16 PM |
|
Also it would be wise to set a password on your browser all those passwords you save can just be seen and downloaded, and with malware they can download an xml sheet of your passwords saved.
|
|
|
|
forever21
|
|
August 09, 2014, 06:41:10 PM |
|
really much better to use linux or any related system rather than windows
|
|
|
|
e1ghtSpace
Legendary
Offline
Activity: 1554
Merit: 1001
Crypto since 2014
|
|
August 09, 2014, 08:08:15 PM |
|
Hackers can find passwords easily. In chrome, it is just "chrome://settings/passwords" (paste it in your browser tab) From there, anyone can see all of your saved passwords.
If some passwords there are the same password as the wallet.dat then that may be how the hacker stole the coins.
|
|
|
|
freee101 (OP)
|
|
August 10, 2014, 02:06:08 AM |
|
thanks. I and my friends will remember this lessons
|
|
|
|
ShakyhandsBTCer
Sr. Member
Offline
Activity: 448
Merit: 250
It's Money 2.0| It’s gold for nerds | It's Bitcoin
|
|
August 10, 2014, 02:07:57 AM |
|
His computer was most likely infected with malware. If he is still using his PC, tell him to wipe everything and install a fresh OS!
|
|
|
|
Benjig
|
|
August 10, 2014, 02:29:55 AM |
|
He probably installed malware which stole his private keys and uploaded it to someone who withdrew coins from the keys. I seriously doubt he would be able to recover the coins. I wonder what would happen if the person who stole the coins came forward and gave them back. Would your friend still give him 1 btc for recovering them? (it's not me btw but I was just wondering)
Do you mean the hacker installed malware to steal the private keys. but my friend has set password for private keys. anyway, 1 btc for recovering coins still. The attacker may have installed a key stroke logger. He would then just need to wait until the password was entered and he would have your wallet and password. It has been happening a lot lately it seems. M$ windows is terrible in terms of security - strongly suggest he uses Ubuntu or another flavour of Linux and does not download and install software he does not trust. The best way to protect passwords besides using linux is to not type the password.. you can have it on a notepad mixed with other words and you use copy paste to put it when you need it.. cntrl v..
|
|
|
|
shorena
Copper Member
Legendary
Offline
Activity: 1498
Merit: 1540
No I dont escrow anymore.
|
|
August 10, 2014, 05:58:13 AM Last edit: August 10, 2014, 11:20:40 AM by shorena |
|
-snip- The best way to protect passwords besides using linux is to not type the password.. you can have it on a notepad mixed with other words and you use copy paste to put it when you need it.. cntrl v..
As long as encrypt the file its a good idea. However if you encrypt the file there is no need for the password to be "mixed with other words". You should definitly change your practice regarding this. Security by obscurity is not 80's its 1880's [1] [1] http://en.wikipedia.org/wiki/Kerckhoffs%27_principle
|
Im not really here, its just your imagination.
|
|
|
FlyForFun
|
|
August 10, 2014, 11:11:02 AM |
|
Try asking your friend to scan the computer with anti-virus software like AVG...
|
|
|
|
|