Bitcoin Forum
April 19, 2014, 04:20:57 AM *
News: Due to the OpenSSL heartbleed bug, changing your forum password is recommended.
 
   Home   Help Search Donate Login Register  
Pages: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 [26] 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 ... 80
  Print  
Author Topic: [Emergency ANN] Bitcoinica site is taken offline for security investigation  (Read 133276 times)
Raoul Duke
aka psy
Global Moderator
Hero Member
*
Offline Offline

Activity: 1078


XBT.pt - BTC/DOGE


View Profile WWW

Ignore
May 12, 2012, 07:18:40 PM
 #501


Whoever created this vanity address 1EMLwAwseowTkDtKnEHRKrwQvzi4HShxSX is the cracker. Notice that there is only one number in it--a 4. That took a while.


How you reached the conclusion that address is a vanity address? Seems pretty random to me with the exception of the EML part

1397881257
Hero Member
*
Offline Offline

Posts: 1397881257

View Profile Personal Message (Offline)

Ignore
1397881257
Reply with quote  #2

1397881257
Report to moderator
Unbeatable Service & Product Support
Grab Your Miners at GAWMiners.com
Order Before April 25th to receive
Double your Hashing Power for 1 week!

Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1397881257
Hero Member
*
Offline Offline

Posts: 1397881257

View Profile Personal Message (Offline)

Ignore
1397881257
Reply with quote  #2

1397881257
Report to moderator
1397881257
Hero Member
*
Offline Offline

Posts: 1397881257

View Profile Personal Message (Offline)

Ignore
1397881257
Reply with quote  #2

1397881257
Report to moderator
1397881257
Hero Member
*
Offline Offline

Posts: 1397881257

View Profile Personal Message (Offline)

Ignore
1397881257
Reply with quote  #2

1397881257
Report to moderator
1397881257
Hero Member
*
Offline Offline

Posts: 1397881257

View Profile Personal Message (Offline)

Ignore
1397881257
Reply with quote  #2

1397881257
Report to moderator
bbit
Hero Member
*****
Offline Offline

Activity: 1050


Bitcoin


View Profile

Ignore
May 12, 2012, 07:19:07 PM
 #502

Another thing I was just thinking since Mt.Gox blacklists "tainted funds"  - they should go ahead and entertain the person to send their coins "to cash" out but never cash them out thus retrieving the coins again ?

What ... Huh

lol....meaning mt.gox should let them send them their coins to "Cash out"  but in reality never "Cash out"    thus keeping the coins.  

better?

BitcoinStarter.com - The First Bitcoin CrowdFunding site!
Videos4BTC.info - Video clips of girls stripping for BTC!
DopeCoin.com - A Billion Dollar Market!
davout
Staff
Hero Member
*****
Offline Offline

Activity: 1148


1davout


View Profile WWW

Ignore
May 12, 2012, 07:20:30 PM
 #503

How you reached the conclusion that address is a vanity address? Seems pretty random to me with the exception of the EML part
Not sure if serious...

Phinnaeus Gage
Hero Member
*****
Offline Offline

Activity: 1050


Bitcoin: An Idea Worth Spending


View Profile WWW

Ignore
May 12, 2012, 07:22:29 PM
 #504


Whoever created this vanity address 1EMLwAwseowTkDtKnEHRKrwQvzi4HShxSX is the cracker. Notice that there is only one number in it--a 4. That took a while.


How you reached the conclusion that address is a vanity address? Seems pretty random to me with the exception of the EML part

I guess so. Here's another random address.

I wasn't able to get GPU working in linux, but it turns out my cluster of CPUs was enough to create the address I really wanted :

    1QBDLYTDFHHZAABYSKGKPWKLSXZWCCJQBX

Am I really the first person that has done this?  FreeMoney didn't even recognize it as a BTC address.  At the very least, people should recognize that one when they see it Smiley

A donation is on its way!

Raoul Duke
aka psy
Global Moderator
Hero Member
*
Offline Offline

Activity: 1078


XBT.pt - BTC/DOGE


View Profile WWW

Ignore
May 12, 2012, 07:24:46 PM
 #505

How you reached the conclusion that address is a vanity address? Seems pretty random to me with the exception of the EML part
Not sure if serious...

So, you think that's a vanity address also? Explain why, please...

Also, is the following address also a vanity address? 1AKNNX3uptocrisMbW7amrLYAbF3TggYdN
Or this one with no numbers whatsoever besides the intial 1: 1AhAzstfNZGwmNKVNbHJoKPWJYEUgodoBk

cypherdoc
Hero Member
*****
Offline Offline

Activity: 1120



View Profile

Ignore
May 12, 2012, 07:30:55 PM
 #506

so when is the current estimate for Bitcoinica to return online?
GuinnessBIT
Jr. Member
*
Offline Offline

Activity: 35


View Profile

Ignore
May 12, 2012, 07:34:58 PM
 #507

Bitcoinica really should put up a splash page saying they are down temporarily as not everyone reads these forums.

Donations:  1DetRoitbfHwrjeiMVKSN9xpexYotQcx7m
Ichthyo
Hero Member
*****
Offline Offline

Activity: 588


View Profile

Ignore
May 12, 2012, 07:35:48 PM
 #508

so when is the current estimate for Bitcoinica to return online?

maybe end next week in a disabled fashion, just to allow you to withdraw your funds. Then a relaunch sometime this summer?

well, just wildely guessing

--Ichthyo
DeathAndTaxes
Donator
Hero Member
*
Offline Offline

Activity: 966



View Profile WWW

Ignore
May 12, 2012, 07:37:30 PM
 #509

Thanks I respect yours also.  No, I'm just saying for big thefts like the one's that have been happening I think there would be a big consensus in favor of disabling $87,000 worth of bitcoin.  Yes, I don't know all the logistics of how it would play out but I'm pretty sure we are all smart enough to figure it out.

Ok say I buy 20,000 BTC worth of Gold from you.  I pay you, you get the 6 confirms.  I walk away with my ~$100K in gold.  Then I report the coins stolen.  Oops you lose 20K BTC.  Even better I cal you up and threaten to report them stolen.  If you give me back 5K BTC I won't report them stolen. You lose 5K or you lose 20K.  Your choice.

Worse say I did steal 20K BTC.  I then buy some gold form you.  Nobody has reported them stolen ... yet.  I pay you, you get the 6 confirms.  I walk away with $100K in gold and then the original legit owner of the coins reports them stolen.  I stole the coins and lost nothing.  The owner is still out 20K coins and you are out $100K in gold.

Awesome system you got there.  Also there is no central agency in Bitcoin.  Who decides if a coin is disabled or not?  Someone with 51% of hashing power.  Awesome you just gave the govt an auto kill switch.  Gain 51% control of Bitcoin (even temporarily) and disable all 21M coins.  Game Over.

Gerald Davis  CEO, Tangible Cryptography Inc.
BitSimple. A simpler way to buy and sell bitcoins
mcorlett
Donator
Sr. Member
*
Offline Offline

Activity: 308



View Profile

Ignore
May 12, 2012, 07:43:03 PM
 #510

Let's start checking bills for traces of narcotics, too!

http://articles.cnn.com/2009-08-14/health/cocaine.traces.money_1_cocaine-dollar-bills-paper-bills?_s=PM:HEALTH

BTC_Bear
B4 Foundation
VIP
Sr. Member
*
Offline Offline

Activity: 364


Best Offense is a Good Defense


View Profile WWW

Ignore
May 12, 2012, 07:48:09 PM
 #511


Noted... go turn yourself in. Or give the money back it is 'tainted'.

btw: I like your avatar, it is unique.

Corporations have been enthroned, An era of corruption in high places will follow and the money power will endeavor to prolong its reign by working on the prejudices of the people until wealth is aggregated in a few hands and the Republic is destroyed. ~Abe Lincoln 1ApJdWUdSWYw8n8HEATYhHXA9EYoRTy7c4
bbit
Hero Member
*****
Offline Offline

Activity: 1050


Bitcoin


View Profile

Ignore
May 12, 2012, 07:50:04 PM
 #512

Thanks I respect yours also.  No, I'm just saying for big thefts like the one's that have been happening I think there would be a big consensus in favor of disabling $87,000 worth of bitcoin.  Yes, I don't know all the logistics of how it would play out but I'm pretty sure we are all smart enough to figure it out.

Ok say I buy 20,000 BTC worth of Gold from you.  I pay you, you get the 6 confirms.  I walk away with my ~$100K in gold.  Then I report the coins stolen.  Oops you lose 20K BTC.  Even better I cal you up and threaten to report them stolen.  If you give me back 5K BTC I won't report them stolen. You lose 5K or you lose 20K.  Your choice.

Worse say I did steal 20K BTC.  I then buy some gold form you.  Nobody has reported them stolen ... yet.  I pay you, you get the 6 confirms.  I walk away with $100K in gold and then the original legit owner of the coins reports them stolen.  I stole the coins and lost nothing.  The owner is still out 20K coins and you are out $100K in gold.

Awesome system you got there.  Also there is no central agency in Bitcoin.  Who decides if a coin is disabled or not?  Someone with 51% of hashing power.  Awesome you just gave the govt an auto kill switch.  Gain 51% control of Bitcoin (even temporarily) and disable all 21M coins.  Game Over.

You are assuming this is just for "anyone" to take advantage of ( maybe, a bitcoin business has to pay into this ) .  No, I'm talking about the big business's where it clearly stolen and we know that is based on who the business is - are you saying someone legitimately  withdrew 18,000 bitcoins ? In this case, yes Bitcoinica can say yes they were stolen and who is going to doubt them?  - are you saying they would be pulling a fast one ? I'd rather have system like this then having bitcoins ripped off left and right    I mean like someone mentioned there is going to be more stolen bitcoins then there is legitimate bitcoins are the rate we are going  Undecided

BitcoinStarter.com - The First Bitcoin CrowdFunding site!
Videos4BTC.info - Video clips of girls stripping for BTC!
DopeCoin.com - A Billion Dollar Market!
bulanula
Hero Member
*****
Offline Offline

Activity: 518



View Profile

Ignore
May 12, 2012, 08:02:06 PM
 #513

Thanks I respect yours also.  No, I'm just saying for big thefts like the one's that have been happening I think there would be a big consensus in favor of disabling $87,000 worth of bitcoin.  Yes, I don't know all the logistics of how it would play out but I'm pretty sure we are all smart enough to figure it out.

Ok say I buy 20,000 BTC worth of Gold from you.  I pay you, you get the 6 confirms.  I walk away with my ~$100K in gold.  Then I report the coins stolen.  Oops you lose 20K BTC.  Even better I cal you up and threaten to report them stolen.  If you give me back 5K BTC I won't report them stolen. You lose 5K or you lose 20K.  Your choice.

Worse say I did steal 20K BTC.  I then buy some gold form you.  Nobody has reported them stolen ... yet.  I pay you, you get the 6 confirms.  I walk away with $100K in gold and then the original legit owner of the coins reports them stolen.  I stole the coins and lost nothing.  The owner is still out 20K coins and you are out $100K in gold.

Awesome system you got there.  Also there is no central agency in Bitcoin.  Who decides if a coin is disabled or not?  Someone with 51% of hashing power.  Awesome you just gave the govt an auto kill switch.  Gain 51% control of Bitcoin (even temporarily) and disable all 21M coins.  Game Over.

You are assuming this is just for "anyone" to take advantage of ( maybe, a bitcoin business has to pay into this ) .  No, I'm talking about the big business's where it clearly stolen and we know that is based on who the business is - are you saying someone legitimately  withdrew 18,000 bitcoins ? In this case, yes Bitcoinica can say yes they were stolen and who is going to doubt them?  - are you saying they would be pulling a fast one ? I'd rather have system like this then having bitcoins ripped off left and right    I mean like someone mentioned there is going to be more stolen bitcoins then there is legitimate bitcoins are the rate we are going  Undecided

I am pretty sure they were stolen by somebody from Nigeria. Or the boogeyman took them.

Why would they steal the BTC themselves when they would make more money from running the service and getting the fees Grin

Where can we see the 18K getting dumped ? Any second now.

What exchanges accept stolen coins ? Intersango, BTC-E, Leo's CoinExchanger ( did he get scammer tag for accepting Linode coins ) ?
giszmo
Hero Member
*****
Offline Offline

Activity: 1064


¡ɥɔʇɐʍ ʇsnɾ ˙ǝƃuɐɥɔ ɐuuoƃ s,ןɐǝɹ


View Profile WWW

Ignore
May 12, 2012, 08:14:25 PM
 #514

Thanks I respect yours also.  No, I'm just saying for big thefts like the one's that have been happening I think there would be a big consensus in favor of disabling $87,000 worth of bitcoin.  Yes, I don't know all the logistics of how it would play out but I'm pretty sure we are all smart enough to figure it out.

Ok say I buy 20,000 BTC worth of Gold from you.  I pay you, you get the 6 confirms.  I walk away with my ~$100K in gold.  Then I report the coins stolen.  Oops you lose 20K BTC.  Even better I cal you up and threaten to report them stolen.  If you give me back 5K BTC I won't report them stolen. You lose 5K or you lose 20K.  Your choice.

Worse say I did steal 20K BTC.  I then buy some gold form you.  Nobody has reported them stolen ... yet.  I pay you, you get the 6 confirms.  I walk away with $100K in gold and then the original legit owner of the coins reports them stolen.  I stole the coins and lost nothing.  The owner is still out 20K coins and you are out $100K in gold.

Awesome system you got there.  Also there is no central agency in Bitcoin.  Who decides if a coin is disabled or not?  Someone with 51% of hashing power.  Awesome you just gave the govt an auto kill switch.  Gain 51% control of Bitcoin (even temporarily) and disable all 21M coins.  Game Over.

Blacklisting and destroying can work with the protocol as is. The biggest exchanges maintain blacklists and send any amount to /dev/null that sources from their blacklist unless the amount received already got that amount sent to /dev/null before.

If I send Bitcoins to MtGox and they destroy 1/1000th of them explaining it stems from that recent raid, I can take legal action against them but if judges start supporting this behavior there is little you can do in the protocol to stop it from happening. Now I can check where I got my coins tainted from ... ah .. SatoshiDice. I can demand my money back from this guy which would lead to him starting to use the black lists as well and as I don't want to hear from Gox how I had dirty fingers next time, I will also run the blacklists on my client.

Slippery slope but we are already on it. This will come the one way or the other.

Clipse
SCAMMER
Hero Member
*****
Offline Offline

Activity: 504


View Profile

Ignore
May 12, 2012, 08:27:34 PM
 #515

Thanks I respect yours also.  No, I'm just saying for big thefts like the one's that have been happening I think there would be a big consensus in favor of disabling $87,000 worth of bitcoin.  Yes, I don't know all the logistics of how it would play out but I'm pretty sure we are all smart enough to figure it out.

Ok say I buy 20,000 BTC worth of Gold from you.  I pay you, you get the 6 confirms.  I walk away with my ~$100K in gold.  Then I report the coins stolen.  Oops you lose 20K BTC.  Even better I cal you up and threaten to report them stolen.  If you give me back 5K BTC I won't report them stolen. You lose 5K or you lose 20K.  Your choice.

Worse say I did steal 20K BTC.  I then buy some gold form you.  Nobody has reported them stolen ... yet.  I pay you, you get the 6 confirms.  I walk away with $100K in gold and then the original legit owner of the coins reports them stolen.  I stole the coins and lost nothing.  The owner is still out 20K coins and you are out $100K in gold.

Awesome system you got there.  Also there is no central agency in Bitcoin.  Who decides if a coin is disabled or not?  Someone with 51% of hashing power.  Awesome you just gave the govt an auto kill switch.  Gain 51% control of Bitcoin (even temporarily) and disable all 21M coins.  Game Over.

Blacklisting and destroying can work with the protocol as is. The biggest exchanges maintain blacklists and send any amount to /dev/null that sources from their blacklist unless the amount received already got that amount sent to /dev/null before.

If I send Bitcoins to MtGox and they destroy 1/1000th of them explaining it stems from that recent raid, I can take legal action against them but if judges start supporting this behavior there is little you can do in the protocol to stop it from happening. Now I can check where I got my coins tainted from ... ah .. SatoshiDice. I can demand my money back from this guy which would lead to him starting to use the black lists as well and as I don't want to hear from Gox how I had dirty fingers next time, I will also run the blacklists on my client.

Slippery slope but we are already on it. This will come the one way or the other.

...or secure your coins and stop having exploits available as in the case of bitcoinica, EMAIL COMPROMISED AND ROOT RESET Huh?? That is the most hilarious security implimentation Ive heard of thus far, also why is so many people allowed access to the whole system, like zhou stated he wasnt sure which of the allowed accounts possibly made the withdrawal at first.

...In the land of the stale, the man with one share is king... >> Clipse

We pay miners at 130% PPS | Signup here : Bonus PPS Pool (Please read OP to understand the current process)
kokjo
Hero Member
*****
Offline Offline

Activity: 1022


You are WRONG! :D


View Profile

Ignore
May 12, 2012, 08:28:54 PM
 #516

Thanks I respect yours also.  No, I'm just saying for big thefts like the one's that have been happening I think there would be a big consensus in favor of disabling $87,000 worth of bitcoin.  Yes, I don't know all the logistics of how it would play out but I'm pretty sure we are all smart enough to figure it out.

Ok say I buy 20,000 BTC worth of Gold from you.  I pay you, you get the 6 confirms.  I walk away with my ~$100K in gold.  Then I report the coins stolen.  Oops you lose 20K BTC.  Even better I cal you up and threaten to report them stolen.  If you give me back 5K BTC I won't report them stolen. You lose 5K or you lose 20K.  Your choice.

Worse say I did steal 20K BTC.  I then buy some gold form you.  Nobody has reported them stolen ... yet.  I pay you, you get the 6 confirms.  I walk away with $100K in gold and then the original legit owner of the coins reports them stolen.  I stole the coins and lost nothing.  The owner is still out 20K coins and you are out $100K in gold.

Awesome system you got there.  Also there is no central agency in Bitcoin.  Who decides if a coin is disabled or not?  Someone with 51% of hashing power.  Awesome you just gave the govt an auto kill switch.  Gain 51% control of Bitcoin (even temporarily) and disable all 21M coins.  Game Over.

Blacklisting and destroying can work with the protocol as is. The biggest exchanges maintain blacklists and send any amount to /dev/null that sources from their blacklist unless the amount received already got that amount sent to /dev/null before.

If I send Bitcoins to MtGox and they destroy 1/1000th of them explaining it stems from that recent raid, I can take legal action against them but if judges start supporting this behavior there is little you can do in the protocol to stop it from happening. Now I can check where I got my coins tainted from ... ah .. SatoshiDice. I can demand my money back from this guy which would lead to him starting to use the black lists as well and as I don't want to hear from Gox how I had dirty fingers next time, I will also run the blacklists on my client.

Slippery slope but we are already on it. This will come the one way or the other.
nope people are just gonna use mixers of money for laundering:
http://en.wikipedia.org/wiki/Anonymous_internet_banking#The_underlying_mathematics
in short: this method can, by relining on a central anonymous authority, create anonymous untraceable "cash".
in contrast to bitcoin, where every transaction is pseudonymous, and not anonymous. and therefor traceable

the only down side of this is that it can't work distributed, as is needs a central private key, for the mixer.

this gonna happen sooner or later.

"The whole problem with the world is that fools and fanatics are always so certain of themselves and wiser people so full of doubts." -Bertrand Russell
paraipan
Hero Member
*****
Offline Offline

Activity: 924


Firstbits: 1pirata


View Profile WWW

Ignore
May 12, 2012, 08:29:09 PM
 #517

.....

...or secure your coins and stop having exploits available as in the case of bitcoinica, EMAIL COMPROMISED AND ROOT RESET Huh??

how can you reset root password by compromising an e-mail ?

BTCitcoin: An Idea Worth Saving - Q&A with bitcoins on rugatu.com - Check my rep
bulanula
Hero Member
*****
Offline Offline

Activity: 518



View Profile

Ignore
May 12, 2012, 08:39:32 PM
 #518

.....

...or secure your coins and stop having exploits available as in the case of bitcoinica, EMAIL COMPROMISED AND ROOT RESET Huh??

how can you reset root password by compromising an e-mail ?

Control panel of hosting provider.

VPS = facepalm.
Clipse
SCAMMER
Hero Member
*****
Offline Offline

Activity: 504


View Profile

Ignore
May 12, 2012, 08:51:35 PM
 #519

.....

...or secure your coins and stop having exploits available as in the case of bitcoinica, EMAIL COMPROMISED AND ROOT RESET Huh??

how can you reset root password by compromising an e-mail ?

Ask zhou, he stated root access were reset by compromised mailserver.

...In the land of the stale, the man with one share is king... >> Clipse

We pay miners at 130% PPS | Signup here : Bonus PPS Pool (Please read OP to understand the current process)
BIGMERVE
Hero Member
*****
Offline Offline

Activity: 658



View Profile

Ignore
May 12, 2012, 08:53:32 PM
 #520

There's a lot of complaining, arguing, and finger pointing going on in this thread and rightfully so. However, I think the first thing we should worry about is %100 reimbursement as fast as possible. Only after that should we worry who's to blame. Many people in this forum, including me, lost a considerable amount of money. Having that money just vanish is terrifying and until we get it all back will we be able to think straight and rationally.

Pages: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 [26] 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 ... 80
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!