Bitcoin Forum
July 02, 2020, 09:46:39 AM *
News: Latest Bitcoin Core release: 0.20.0 [Torrent]
 
   Home   Help Search Login Register More  
Pages: « 1 ... 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 [263] 264 265 266 267 268 269 270 271 272 273 274 275 »
  Print  
Author Topic: SatoshiDICE.com - The World's Most Popular Bitcoin Game  (Read 493195 times)
1982dre
Hero Member
*****
Offline Offline

Activity: 1372
Merit: 512



View Profile WWW
January 19, 2017, 06:06:54 PM
 #5241

Just got a second short message out of Randian Hero, 15 days later:

 "We have seen no signs of malicious activity. Sorry to tell you this, but it seems like someone got your password."

No word on how this coincidentally happened to two other high balance investors in the same period.

No word on how, in that very time period, this thread is full of people complaining about hot wallet problems, and being unable to cash-out <1BTC amounts, yet someone who "got my password" (and at least 2 others' passwords presumably,) is able to withdrawal >150 BTC with no problem?

The cash-out thing is really the most damning to them. Even if all of these account hacks weren't there fault, with their notoriously slow cash-out issues it would be beyond easy for them to prevent large cash-outs while they investigated these robberies; in fact one would think this "thief" would have a ton of difficulty cashing out even without preventative action on their part. Are we to believe that they "coincidentally" expedited the large cash-outs that happened to be account hacks?




Sounds very suspicious to me. People having trouble withdrawing and hackers can easily withdraw 150BTC??? I would directly withdraw asap all my funds if I was one of the other users.

.....1% HOUSE EDGE.....
.....FAUCET 3.5K...........
.....RAINBOT
10K..........






















█████
 █████     ███
  █████     ███     █
   █████     ███     █
    █████     ███     █
     █████     ███     █
      █████     ███     █

     █████     ███     █

    █████     ███     █

   █████     ███     █

  █████     ███     █

 █████     ███

█████
..DuckDice..
█████
███     █████
█     ███     █████ 
█     ███     █████  
█     ███     █████   
█     ███     █████    
█     ███     █████     
█     ███     █████
    
█     ███     █████
   
█     ███     █████
  
█     ███     █████
 
███     █████

█████






















.....★  B O N U S E S.....
.....
  L O T T E R Y......
.....
  J A C K P O T......
1593683199
Hero Member
*
Offline Offline

Posts: 1593683199

View Profile Personal Message (Offline)

Ignore
1593683199
Reply with quote  #2

1593683199
Report to moderator
1593683199
Hero Member
*
Offline Offline

Posts: 1593683199

View Profile Personal Message (Offline)

Ignore
1593683199
Reply with quote  #2

1593683199
Report to moderator
AWARD-WINNING
CRYPTO CASINO
ASKGAMBLERS
PLAYERS CHOICE 2019
PROUD
PARTNER OF
1500+
GAMES
2 MIN
CASH-OUTS
24/7
SUPPORT
100s OF
FREE SPINS
PLAY NOW
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
game-protect
Hero Member
*****
Offline Offline

Activity: 1344
Merit: 507



View Profile
January 19, 2017, 06:23:10 PM
Last edit: August 31, 2017, 03:43:02 PM by game-protect
 #5242

Just got a second short message out of Randian Hero, 15 days later:

 "We have seen no signs of malicious activity. Sorry to tell you this, but it seems like someone got your password."

No word on how this coincidentally happened to two other high balance investors in the same period.

No word on how, in that very time period, this thread is full of people complaining about hot wallet problems, and being unable to cash-out <1BTC amounts, yet someone who "got my password" (and at least 2 others' passwords presumably,) is able to withdrawal >150 BTC with no problem?

The cash-out thing is really the most damning to them. Even if all of these account hacks weren't there fault, with their notoriously slow cash-out issues it would be beyond easy for them to prevent large cash-outs while they investigated these robberies; in fact one would think this "thief" would have a ton of difficulty cashing out even without preventative action on their part. Are we to believe that they "coincidentally" expedited the large cash-outs that happened to be account hacks?
Does he speak about your password in regards to your satoshidice account or in regards to your email account. Why does he not speak about passwords?

Because usually you need to confirm withdrawals from your email account and you have usually a different password like your satoshidice account.
jake_a99
Newbie
*
Offline Offline

Activity: 27
Merit: 0


View Profile
January 19, 2017, 07:29:01 PM
 #5243


Do he speak about your password in regards to your satoshidice account or in regards to your email account. Why do he not speak about passwords?

Because usually you would need to confirm withdrawals from your email account and you would have usually a different password like your satoshidice account.

He didn't say anything other than what I posted. He made no mention of how any of this could have occurred. He didn't tell me if my password was reset (which would have sent an email as well, of which there is no evidence of, nor evidence of an unknown login that could have deleted the reset email.) And yeah no mention of withdrawal protocols or anything.

All in all, no actual information, just an informal "haha we robbed you" as far as I can tell.

maidenvoyage
Newbie
*
Offline Offline

Activity: 59
Merit: 0


View Profile
January 19, 2017, 07:56:21 PM
 #5244


Do he speak about your password in regards to your satoshidice account or in regards to your email account. Why do he not speak about passwords?

Because usually you would need to confirm withdrawals from your email account and you would have usually a different password like your satoshidice account.

He didn't say anything other than what I posted. He made no mention of how any of this could have occurred. He didn't tell me if my password was reset (which would have sent an email as well, of which there is no evidence of, nor evidence of an unknown login that could have deleted the reset email.) And yeah no mention of withdrawal protocols or anything.

All in all, no actual information, just an informal "haha we robbed you" as far as I can tell.


Jake, I am not a specialist.. but I have withdrawn 60 btc recently. There is NO confirming email for each withdrawal. So what they are saying,. if somebody sat on your computer, and logs into satoshidice and you had your password saved, he could easily have transferred the btc.
Request some more help from them. Let them give you you access report, addresses where the btc. went.. So you can figure out what happened. I agree that their support is very bad and that they should offer 2fa to avoid such risks and, and, and.. thats why I pulled out two days ago.
Hope you can figure it out.
game-protect
Hero Member
*****
Offline Offline

Activity: 1344
Merit: 507



View Profile
January 19, 2017, 08:12:25 PM
Last edit: August 31, 2017, 03:41:53 PM by game-protect
 #5245

Jake, I am not a specialist.. but I have withdrawn 60 btc recently. There is NO confirming email for each withdrawal. So what they are saying,. if somebody sat on your computer, and logs into satoshidice and you had your password saved, he could easily have transferred the btc.
Request some more help from them. Let them give you you access report, addresses where the btc. went.. So you can figure out what happened. I agree that their support is very bad and that they should offer 2fa to avoid such risks and, and, and.. thats why I pulled out two days ago.
Hope you can figure it out.
Whaaat? If there are no confirmation emails, how can you prove that your account was not compromised? O.k., you could request the server logins in Curacao, as the gaming server is in Curacao and they have to store everything by law.
SatoshiDICE_PR
Sr. Member
****
Offline Offline

Activity: 392
Merit: 250


SatoshiDice.com


View Profile WWW
January 20, 2017, 12:55:25 AM
 #5246

We are continuously working to figure out what has happened regarding the reports of the missing bitcoins.

This is what has been found so far:
* As of yet, there is no evidence of the servers being compromised. Part of the work is to exclude that the accounts in question simply made a withdrawal and then stated that they didn't make the withdrawal.

* We got one report of a user who clicked a Bitcointalk phishing link, entered his information and then got his balance stolen on Satoshidice.

* We have seen attempts of password guessing on what appears to be big lists of emails. We do not store password in clear text in the database but we looked at real-time password attempts and there are several login attempts made with passwords such as "password" "sun" "god" "1234" ect. All those IP addresses are blocked and stored for future evidence.

* Please never use a simple or common password, or any password that you use on other websites.

* Please do not use the same email (and/or password) you use on Bitcointalk.
https://bitcointalk.org/index.php?topic=1611117.0

* Satoshidice will never ask for your user email or password in an email.

game-protect
Hero Member
*****
Offline Offline

Activity: 1344
Merit: 507



View Profile
January 20, 2017, 01:53:39 AM
 #5247

We are continuously working to figure out what has happened regarding the reports of the missing bitcoins.
You can see within one day what happened on your gaming server in regards to a certain account.


* We got one report of a user who clicked a Bitcointalk phishing link, entered his information and then got his balance stolen on Satoshidice.
Which bitcointalk user name was it?
SatoshiDICE_PR
Sr. Member
****
Offline Offline

Activity: 392
Merit: 250


SatoshiDice.com


View Profile WWW
January 20, 2017, 02:52:55 AM
 #5248

We are continuously working to figure out what has happened regarding the reports of the missing bitcoins.
You can see within one day what happened on your gaming server in regards to a certain account.
We have time stamp of a login with the correct password that made a successful withdrawal on both accounts, that we looked up in a few minutes.
One of the things we are looking into is if there are one or several phishing attempts, what they look like, how many accounts could have been affected, tricked by the phishing. Is it even a phishing or did someone get hold of all passwords, or some passwords, or is it a list of user accounts from other websites and so on - its not exactly a one day thing.

Whats time consuming is:
What we are trying to figure out is if the fault is ours OR If the user simply did not have a secure password or used the same password as they did on other websites, ect ect.
If the site or servers have been compromised, we will refund the user accounts in question.
OR
If the user got his password typed in by inputting the password in the password field as intended we will not refund.

A 2 factor authentication system would have eliminated this problem and should probably have been implemented a long time ago. As much as we are now rushing to develop this feature, At this moment the site is as provided without 2 factor authentication. 

* We got one report of a user who clicked a Bitcointalk phishing link, entered his information and then got his balance stolen on Satoshidice.
Which bitcointalk user name was it?
If the user wants to tell us all publicly, he or she may choose to do so.

jake_a99
Newbie
*
Offline Offline

Activity: 27
Merit: 0


View Profile
January 20, 2017, 04:55:07 AM
 #5249

We are continuously working to figure out what has happened regarding the reports of the missing bitcoins.

This is what has been found so far:
* As of yet, there is no evidence of the servers being compromised. Part of the work is to exclude that the accounts in question simply made a withdrawal and then stated that they didn't make the withdrawal.

* We got one report of a user who clicked a Bitcointalk phishing link, entered his information and then got his balance stolen on Satoshidice.

* We have seen attempts of password guessing on what appears to be big lists of emails. We do not store password in clear text in the database but we looked at real-time password attempts and there are several login attempts made with passwords such as "password" "sun" "god" "1234" ect. All those IP addresses are blocked and stored for future evidence.

* Please never use a simple or common password, or any password that you use on other websites.

* Please do not use the same email (and/or password) you use on Bitcointalk.
https://bitcointalk.org/index.php?topic=1611117.0


I'm glad there is finally some communication/information posted, thanks for that.

Was my account targeted by password guessing? My password wasn't anything common like the examples you gave, nor is it the same password as I have elsewhere. I also use different emails for this and Satishidice. And my email has 2FA.

Any comment on the hotwallet stuff? It seems pretty inconceivable that all this money was withdrawn in the 12/27 to 1/4 window while people on here were complaining about the inability to cash out small amounts.
adaseb
Legendary
*
Offline Offline

Activity: 2366
Merit: 1207


View Profile
January 20, 2017, 11:24:01 AM
 #5250

You know whats crazy? These days the biggest and crappiest exchanges have 2FA and these exchanges probably have less than 100 BTC of customer funds but one of the oldest and largest Bitcoin gambling sites doesn't even have 2FA.

If you guys had 2FA this could of easily been avoided probably.
game-protect
Hero Member
*****
Offline Offline

Activity: 1344
Merit: 507



View Profile
January 20, 2017, 01:06:38 PM
 #5251

We are continuously working to figure out what has happened regarding the reports of the missing bitcoins.

You can see within one day what happened on your gaming server in regards to a certain account.

We have time stamp of a login with the correct password that made a successful withdrawal on both accounts, that we looked up in a few minutes.
One of the things we are looking into is if there are one or several phishing attempts, what they look like, how many accounts could have been affected, tricked by the phishing. Is it even a phishing or did someone get hold of all passwords, or some passwords, or is it a list of user accounts from other websites and so on - its not exactly a one day thing.

Whats time consuming is:
What we are trying to figure out is if the fault is ours OR If the user simply did not have a secure password or used the same password as they did on other websites, ect ect.
If the site or servers have been compromised, we will refund the user accounts in question.
OR
If the user got his password typed in by inputting the password in the password field as intended we will not refund.

A 2 factor authentication system would have eliminated this problem and should probably have been implemented a long time ago. As much as we are now rushing to develop this feature, At this moment the site is as provided without 2 factor authentication.
So you need weeks to check if your server has been compromised?

Everything what happened on your server (login attempts, successful logins, code added, etc.) is recorded and your server administrator can easily check this within a few days.

If you were not compromised and if it was not an inside job, you could simply put the server logs on the table.

There are several indications that your server was compromised and you try to cover it up:

1) Shortly after your issues (account balances disappeared, hot wallet regularly empty, etc.) 2 players coincidentally win 500+ bitcoins with Satoshi Slots, would perfectly explain that your server was compromised and covered your loss with the 500+ Bitcoins won and reduced this amount from investor account balances.

2) Allow players to win more than the maximum profit on a bet of 1,9% of the bankroll and this contradictory to your "Bet on the house" terms and conditions.

3) The Satoshi Slot winners can withdraw their illegal winnings of 500+ Bitcoins instantly, while "normal" customers have issues to even withdraw 1 Bitcoin.

4) Player account transactions are not secured with email account confirmations, strongly suggest that the security of your server is also not sufficient.

5) Illegaly reduce Satoshi Slot losses from investor account balances, even though they only invested in Satoshi Dice, according to your "Bet on the house" terms and conditions.
gamblingbad
Hero Member
*****
Offline Offline

Activity: 555
Merit: 500


https://bit-exo.com/?ref=gamblingbad


View Profile WWW
January 20, 2017, 06:09:39 PM
 #5252

when 2fa will be added?


░▄░   ████   ░▄░
████░░██████░░████
▄▄░░▄██████████████████▄░░▄▄
░██████████████████████████████░
▀████▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀██████▀
▄▄▄█████▌                  ▀█████▄▄▄
▐████████▌                   ▐███████▌
▀███████▌     ███████▄      ▐██████▀
▄███████▌     ███████▀      ▐██████▄
▐█████████▌     ▀▀▀▀▀▀       ▄█████████▌
▐█████████▌                   ▀████████▌
▀███████▌     ████████▄      ▐█████▀
▄███████▌     ████████▀      ▐█████▄
▐████████▌     ▀▀▀▀▀▀▀        ▐██████▌
▀▀▀█████▌                   ▄████▀▀▀
▄████▌                 ▄█████▄
░██████████████████████████████░
▀▀░░▀██████████████████▀░░▀▀
████░░██████░░████
░▀    ████    ▀░
.
Bit-Exo



                 ▄████████████████
                ▐█▀
      ▄▄▄▄▄▄▄▄▄██▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄
     ▐████████████████████████████
▄██▄ █████████████████████████████
▀██▀ ████           █     ▐██   █
 ▐▌  ████  ██████▌  █     ██    █
 ▐▌  ████  ██ ▐██   █    ▐█▌    █
 ▐▌  ████     ██    █    ██     █
 ▐▌  ████    ▐█▌    █   ▐█▌     █
█████████    ██     █           █
▀▀▀▀▀████   ▐█▌     █           █
     ████           █           █
     █████████████████████████████
▄█████████████████████████████████
██████████████████████████████████



             ▄████████▄
          ▄██████████████▄
       ▄▄ ████████████████ ▄▄
      ████████████████████████
     ▐█▌  ▀██████████████▀  ▐█▌
     ▐█▄   ▐████████████▌   ▄█▌
      ▀██▄  ████████████  ▄██▀
        ▀██▄ ██████████ ▄██▀
          ▀██████████████▀
          ▀██▀████████▀██▀
▄▄▄▄▄▄▄▄       ██████       ▄▄▄▄▄▄▄▄
  ██████▄▄▄▄▄▄▄▐████▌▄▄▄▄▄▄▄██████
▀▀▀▀███████████ ████ ███████████▀▀▀▀
     ▀▀▀▀▀▀▀▀▀▀▐████▌▀▀▀▀▀▀▀▀▀▀
              ▄██████▄
           ▄████████████▄
           ▀▀▀▀▀▀▀▀▀▀▀▀▀▀

▄▄░░░░░░░░▄▄
▄▄████▌░░░░░░▐████▄▄
▄░███████▌░░░░░░▐███████░▄
▄░░░░███████░░░░░░███████░░░░▄
▄░░░░░░██████████████████░░░░░░▄
▐░░░░░░░░████  ██  ██████░░░░░░░░▌
░░░░░░░░░███▀        ▀█████░░░░░░░░
▐▄▄▄▄▄▄▄████▄  ▐███▄   █████▄▄▄▄▄▄▄▌
█████████████  ▐███▀   █████████████
█████████████         ▀█████████████
█████████████  ▐████▄   ████████████
▐▀▀▀▀▀▀▀████▀  ▐████▀   ████▀▀▀▀▀▀▀▌
░░░░░░░░░███▄         ▄████░░░░░░░░
▐░░░░░░░░████  ██  ██████░░░░░░░░▌
▀░░░░░░██████████████████░░░░░░▀
▀░░░░███████░░░░░░███████░░░░▀
▀░███████▌░░░░░░▐███████░▀
▀▀████▌░░░░░░▐████▀▀
▀▀░░░░░░░░▀▀




swogerino
Legendary
*
Online Online

Activity: 1750
Merit: 1030


https://bitcoin.watfordfc.com


View Profile
January 20, 2017, 09:22:26 PM
 #5253

Just got a second short message out of Randian Hero, 15 days later:

 "We have seen no signs of malicious activity. Sorry to tell you this, but it seems like someone got your password."

No word on how this coincidentally happened to two other high balance investors in the same period.

No word on how, in that very time period, this thread is full of people complaining about hot wallet problems, and being unable to cash-out <1BTC amounts, yet someone who "got my password" (and at least 2 others' passwords presumably,) is able to withdrawal >150 BTC with no problem?

The cash-out thing is really the most damning to them. Even if all of these account hacks weren't there fault, with their notoriously slow cash-out issues it would be beyond easy for them to prevent large cash-outs while they investigated these robberies; in fact one would think this "thief" would have a ton of difficulty cashing out even without preventative action on their part. Are we to believe that they "coincidentally" expedited the large cash-outs that happened to be account hacks?




Sounds very suspicious to me. People having trouble withdrawing and hackers can easily withdraw 150BTC??? I would directly withdraw asap all my funds if I was one of the other users.

150BTC?
That is no joke. How can they not have any security on the site in place to prevent this?
I thought this was the very first dice site that was ever created? I saw this site on a documentary I just watched recently and then saw this thread near the top of the section and wanted to see how it was going 8 years later but then this is the first post that came up on my screen.  Undecided
Pretty disconcerting. To say the least. Embarrassed

  ▄▄█████▄▄███████▄▄
 ███████████
     ▀▀███▄
█████████████        ▀██▄
█████████████          ██▄
███████████            ██▄
██▀▀█████▀▀              ██
██                       ██
██                       ██
▀██                     ██▀
 ▀██                   ██▀
  ▀██▄               ▄██▀
    ▀███▄▄       ▄▄███▀
       ▀▀█████████▀▀
██████████████████████
██████████████████████
██████████████████████
██████████████████
████████████████████
██████████████████████
██████████████████
▀██████████████████████▀
▀██████████████████▀
▀██████████████▀
▀██████████▀
▀████▀
▀██▀
MAIN CLUB
PARTNER of
W A T F O R D  FC
Industry Leading Crypto Sportsbook
|
DAILY
PROMOS
& BOOSTS
|
PLAY
POKER
& CASINO
|
▄▄█████████▄▄
▄█████████████████▄
▄██████████▀▀▀▀███████▄
▄█████████▀     ████████▄
▄██████████   ████████████▄
█████████        ██████████
█████████▄▄   ▄▄███████████
███████████   █████████████
▀██████████   ████████████▀
▀█████████   ███████████▀
▀████████▄▄▄██████████▀
▀█████████████████▀
▀▀█████████▀▀
derpaderp
Newbie
*
Offline Offline

Activity: 25
Merit: 0


View Profile
January 21, 2017, 11:19:30 AM
 #5254

Probably not the best time to ask, that being said after seeing these recent posts im fair shitting myself. could SD please fill up the hot wallet so i can withdrawal my 1.3 btc thanks or at-least email me directly
game-protect
Hero Member
*****
Offline Offline

Activity: 1344
Merit: 507



View Profile
January 21, 2017, 07:00:04 PM
 #5255

I summed it up here: https://game-protect.com/satoshidice-scam/

If you have something to add, please pm or leave a reply below the article. Thank you.
adamBB
Newbie
*
Offline Offline

Activity: 4
Merit: 0


View Profile
January 22, 2017, 08:39:49 AM
 #5256

when 2fa will be added?

It seems to have been added (in a form of some sorts) withdraw ~9 BTC today and it asked me to "unlock" my withdrawing ability which for that it send your an email. Once you click the link in the email you can withdraw for the next 3mins.

All in all, I think this added feature is sound and solid. Nice work guys!

(also had no worries withdrawing the ~9 BTC in regards to hot wallet balance - First go)
adaseb
Legendary
*
Offline Offline

Activity: 2366
Merit: 1207


View Profile
January 22, 2017, 10:41:32 AM
 #5257

when 2fa will be added?

It seems to have been added (in a form of some sorts) withdraw ~9 BTC today and it asked me to "unlock" my withdrawing ability which for that it send your an email. Once you click the link in the email you can withdraw for the next 3mins.

All in all, I think this added feature is sound and solid. Nice work guys!

(also had no worries withdrawing the ~9 BTC in regards to hot wallet balance - First go)

Yeah well it was suppose to be added about 6 months ago like promised on this thread. However in reality it should of been added years ago. Maybe this theft (which I am still not certain) could of been avoided.

Really feel bad for the early adopters who still leave their BTC with Satoshidice.
bitwab
Member
**
Offline Offline

Activity: 112
Merit: 10

BitWAB admin team


View Profile WWW
January 22, 2017, 08:23:42 PM
 #5258

Really hope you are getting back soon!

Right now website returns 504 Gateway time-out error,
any updates?

~BitWAB Team~
Be the winner!

roparker2014
Member
**
Offline Offline

Activity: 119
Merit: 100


View Profile
January 23, 2017, 12:04:12 AM
 #5259

Seems to be working fine for me - just made a small withdrawal from my house balance.
FusionPro
Newbie
*
Offline Offline

Activity: 13
Merit: 0


View Profile
January 23, 2017, 11:28:35 AM
 #5260

Seems to be working fine for me - just made a small withdrawal from my house balance.
I guess whatever small count you took up emptied it i cant even get 0.01 out. it either speaks to the already known small hot wallet. or that they still havent fixed my account saying insufficient funds instead of that the hot wallet is emty. got ahold of the guy here, got 1 reply and never heard back. same happened thorugh email replied to me once or twitce and still havent fixed it. such a mess
Pages: « 1 ... 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 [263] 264 265 266 267 268 269 270 271 272 273 274 275 »
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!