ROBBED

[gogxmagog]

 I had a little over 6 bitcoin in my multibit wallet, secured with complicated password...I was going to move my btc to a cold wallet, but got busy and went to bed without even shutting my computer off. When I woke up this morning, my wallet was open and had been nearly emptied in 2 transactions.

Firstly, I've seen these threads before, and figured my security was pretty good, this thief just caught me off gaurd... I'm just confused... how did they do it? where did the money go? Is there any hope of catching these guys? I'm going to delet the bad wallet and start again, hopefully I will find a wallet that is harder to hack....ugh, I'm just sick...

here's the 6btc transaction https://blockchain.info/tx-index/41191061dee39219aad24db41fa6f08f88a4664b75e19d0e7b2e809c4279ee36

and one other 0.476 btc transaction https://blockchain.info/tx-index/16cb9a7b531f61000b935242d8486f6bd128fe64672d6a004b779f773be1f3c8

I'm really upset, and I'm trying to figure out what exactly happened, or where the money went. Can anyone help?

[alani123]

Was it a windows computer? Then it's most likely a virus. Run Sophos Virus Removal Tool and check for yourself.

[Welsh]

I'm going to delet the bad wallet and start again, hopefully I will find a wallet that is harder to hack....ugh, I'm just sick...

I would suggest restoring the computers operating system. Just deleting the bad wallet and making a new one is a security risk, it sounds very likely you have contracted a Virus from somewhere. Also, I'm assuming you are using Windows by the sounds of things, You should consider making transactions on a Linux based system, even if it's a hot wallet. Ubuntu is recommended if you are new to Linux systems it's pretty easy to setup and and find your way around.

Also, you need to assume that everything on your comptuter & accounts could be compromised, so quickly restore and reinstall the operating system of your choice and change your passwords and any other sensitive data. That's your number one priority right now.

I also recommend installing a few security extensions on your browser, for some ideas: No script & Http Everywhere.

[Blazr]

Don't just create a new wallet, you need to reformat and reinstall your OS at the very least. You should also change all your passwords.

Did you install anything new recently, in particular anything cryptocurrency related?

[pissedoff]

You could try using tain anyalisis but I don't think you will have much luck. other than that its very unlikely you will find the person who did this and you wont be getting them back anytime soon.

[gogxmagog]

yes i am going to reformat everything. running sophos right now. arrrggggg

[LiteCoinGuy]

do you have Team Viewer on your PC?

did you make a virus scan (update database first) ?


(buy this: http://www.coindesk.com/ledger-launches-usb-bitcoin-wallet-bank-grade-security/ )

[vm_mpn]

Just out curiosity have you checked if your address has been affected by this http://www.coindesk.com/good-samaritan-blockchain-hacker-returned-255-btc-speaks/ ?

There is reference to address list but it may be incomplete https://bitcointalk.org/index.php?topic=581411.0

[bitspill]

I also recommend installing a few security extensions on your browser, for some ideas: No script & Https Everywhere.

[caga]

Just out curiosity have you checked if your address has been affected by this http://www.coindesk.com/good-samaritan-blockchain-hacker-returned-255-btc-speaks/ ?

There is reference to address list but it may be incomplete https://bitcointalk.org/index.php?topic=581411.0

This was an incident which happened 2 days back and only lasted for 2 hours. The current post looks like a more recent thing.

[MakingMoneyHoney]

Someone posted this on the 9th: https://bitcointalk.org/index.php?topic=888137.0 (Multibit phishing, beware!)

So did you get an email like they got?

[slaveforanunnak1]

STOP USING WINDOWS FFS!

[vm_mpn]

Just out curiosity have you checked if your address has been affected by this http://www.coindesk.com/good-samaritan-blockchain-hacker-returned-255-btc-speaks/ ?

There is reference to address list but it may be incomplete https://bitcointalk.org/index.php?topic=581411.0

This was an incident which happened 2 days back and only lasted for 2 hours. The current post looks like a more recent thing.

Yes, I've noticed... However, if you look at the second link it references  bitcointalk post made last spring. It seems we have been here long before blockchain incident.

P.S  Also something to look at: Someone posted this on the 9th: https://bitcointalk.org/index.php?topic=888137.0 (Multibit phishing, beware!) So did you get an email like they got?

[alani123]

Or using Aviator, it's supposed to be a browser proofed from zero days exploits.

https://www.whitehatsec.com/aviator/index.html

[caga]

Just out curiosity have you checked if your address has been affected by this http://www.coindesk.com/good-samaritan-blockchain-hacker-returned-255-btc-speaks/ ?

There is reference to address list but it may be incomplete https://bitcointalk.org/index.php?topic=581411.0

This was an incident which happened 2 days back and only lasted for 2 hours. The current post looks like a more recent thing.

Yes, I've noticed... However, if you look at the second link it references  bitcointalk post made last spring. It seems we have been here long before blockchain incident.

P.S  Also something to look at: Someone posted this on the 9th: https://bitcointalk.org/index.php?topic=888137.0 (Multibit phishing, beware!) So did you get an email like they got?

Was never aware of that. Is it also related to blockchain, or is it something totally different?
THanks for the link.

[vm_mpn]

I believe they've linked those to Counterparty... I keep wondering how many more addresses might have been affected and we do not even know about it yet.

[franky1]

most greedy theives do not wait weeks to raid people. so it is normally the case that whatever you installed within the last 2 weeks is the culprit.

so what have you installed recently.
the main culprits are things linked by people that know about bitcoin or where the program in question is crypto currency related.

a few people have stupidly seen a "bitcoin generator" program on youtube and downloaded it, a few others have downloaded altcoin clients, etc.

so tell us what bitcoin related programs you have on your computer so we can narrow down possible culprits and also help warn noobs what not to go near.

[kelsey]

STOP USING WINDOWS FFS!

stop browsing the internet or even having browsers installed on any device containing your cryptos.

[Bitmore]

STOP USING WINDOWS FFS!

stop browsing the internet or even having browsers installed on any device containing your cryptos.

This is exactly what is holding back Bitcoin.  I now have to have a separate computer for all bitcoin transactions.  And that is unreasonable for the typical sixpack joe.

  The average consumer will just say "heck no, I will just use Visa".

[Flashman]

Tough break man...

Took a look at tx, helluva lot of rabbit trails as might be expected, only thing I'm getting, impressions rather than objective, is the smell of Russians.