MT.Gox account hacked - lost 2k USD - MT.GOX will not explain how.

[Stephen Gornick]

I lost roughly 2000 USD from my MT.Gox account at 08:40 JST on the 31th of may 2012.

A lot of that going on.

"MtGox account got cleared out"
 - http://bitcointalk.org/index.php?topic=85533.0

"All BTC disappeared from my Mt. Gox account"
 - http://bitcointalk.org/index.php?topic=88368.0

Another:
 - http://bitcointalk.org/index.php?topic=80562.msg941759#msg941759

And another:
"My mtgox account got compromised, what can I do?"
 - http://bitcointalk.org/index.php?topic=84585.0

And on other services as well.  Here same thing happened to some GLBSE users:
 - http://bitcointalk.org/index.php?topic=84893.0

In none of these was the person using multi-factor authentication.  Mt. Gox has had Yubikey support for a while.  Mt. Gox accounts now support Google Authenticator:
 - https://mtgox.com/press_release_20120605.html

And another report.  Mt. Gox now has Google Authenticator support, for mobile (Android, iPhone/iPad/iPod Touch (any iOS), BlackBerry).  Use it, love it!

BTCSYN reports a $12k (1,852 BTC) theft
 - http://bitcointalk.org/index.php?topic=92142.0

[1715364222]

1715364222

[1715364222]

1715364222

[Hunterbunter]

Someone is having a whale of a time with MtGox it seems. It's like watching someone smack a pinata.

My sympathies to those who were stolen from.

Mt Gox is one of the worst companies I've ever had the displeasure in dealing with. They're extortionate, obfuscated, and utterly unprofessional.

[mav]

Someone is having a whale of a time with MtGox it seems. It's like watching someone smack a pinata.

My sympathies to those who were stolen from.

Mt Gox is one of the worst companies I've ever had the displeasure in dealing with. They're extortionate, obfuscated, and utterly unprofessional.

So who do you use for exchanges if you don't use Gox? I agree, Gox service is terrible, and they aren't very professional.

Sorry to hear about your loss OP. I know it doesn't help you much but your plight has encouraged me to purchase a Yubi Key just last week, so for that, I thank you.

[Ghostofkobra]

Thanx,

Im wondering if a yubikey would have helped since there are no signs of the thief ever logging on to Gox, and if he/she can transfer money out w/o Gox noticing that he logged on. Maybe he/she could have transferred the money anyway?

However, a yubikey might stop it.

GL

And which service should one use?

[unclemantis]

Good luck on that police report. It will be just as useful as filing a missing person's report for your imaginary friend!

[MagicalTux]

If you have a police report you can request us to forward the details to the police. We'll need a case number and details on the law enforcement in charge (person in charge, etc) to forward the appropriate details.

[unclemantis]

If you have a police report you can request us to forward the details to the police. We'll need a case number and details on the law enforcement in charge (person in charge, etc) to forward the appropriate details.

+1

[galambo]

http://en.wikipedia.org/wiki/Doe_subpoena

[repentance]

Btw, saying "file a police report" to me is like saying "you got screwed and we won't help you anyhow, move over". I've seen police being utterly useless for much more serious cases.

It's a bit like insurance companies requiring a police report number before you can claim for stolen items.  They know that the police aren't going to investigate petty theft but they also know that many people who'd be willing to make false insurance claims won't be willing to make false police reports.

Let's suppose that MtGox did give the OP the IP information.  How does that really help establish that this was an actual theft? 

[caveden]

Let's suppose that MtGox did give the OP the IP information.  How does that really help establish that this was an actual theft? 

Probably wouldn't help, but the guy wants to know, let him know. It's his account after all. What's the big deal in knowing which IPs were used to access your own account?

[Mike Jones]

Let's suppose that MtGox did give the OP the IP information.  How does that really help establish that this was an actual theft? 

Probably wouldn't help, but the guy wants to know, let him know. It's his account after all. What's the big deal in knowing which IPs were used to access your own account?

If Gox treats its users like this, like children, I should of really stuck to buying elsewhere.

[Ghostofkobra]

Getting the IP-address wouldnt help me one bit.

But getting a "null" response when asking why/how money dissapeared from my account w/o me (or anyone else)
logging in is fradulent.

They couldnt show that anyone logged on to my account, and they cant/wont give me the ip-address of the "eledged" person
who took my bitcoins...


Sorry for the late reply, had a long vacation

and i didnt want to think about the thief (internet crook or MtGox or bug)

Ghost of Kobra

[Ghostofkobra]

My discussion with mtGoxx support is approximately the same.

When i saw that the account was empty i checked the withdraws and noted the time of the withdrawal.

Asked mtGoxx for information about logins (because i knew i didnt log in at the time of the withdraw).

Got a list with login's (no IP's) and the list showed that no user was logged on at the time of the withdrawal.

Asked mtGoxx how this could happen and for IP's of the logins.

And all of a sudden i start to get the same answer on every question.
- We only talk to the police.
- Upload your scanned ID and the police report.

If someone "lost" 380 of my bitcoins and refuse to tell me how it happened i sure as hell wont give them my ID.

They claim they cant reimburse me coz i it might attract scammers, and they cant be sure i didnt transfer them out.

LOOK AT YOUR OWN LOGS YOU SENT ME.

I WAS NOT LOGGED ON. and noone else was logged on either....

Sorry for the caps, still get irritated about this.
I think i will scan the police report on monday when i get back to work.

[RandomQ]

I have a feeling the ID/AML request is because of reporting a loss of over $2,000.

In this modern age, using just a password to secure anything of value is unwise.

I use 2 factor for any account that has over $10 dollars in it. Except those protected by the FDIC.
For my MtGox Account I use (Two) 2 factor accounts on two different devices, they would have to have access to both devices or crack 2 factor.

I also use 2 factor on all email accounts, to prevent password resets.

Did you access your account from a Desktop Or Laptop?

Was it running Windows? Are you up to date?
What AntiVirus are you using? is it up to date?

Have you ever accessed your account using WIFI? Unsecured? WEP?

Most likely your password was stolen from a Keylogger or They were able to login into MtGox by routing thru your Computer Remotely.

Do you download any software from torrents?

Just be aware there is also a virus that has appeared in Asia mostly,that can survive a format of the HD, by hiding inside your BIOS and reinfecting your system after reinstall.

File a police report,Verify your AML with MtGox(I don't think it will do any good),and Redeem Free Yubikey Offer

Until I see an account that has 2 factor used get stolen from, your security was the cause of your loss because you were easy picking.

[Ghostofkobra]

You are missing the point...

mtGox OWN logs show that NOONE was logged on at the moment of the withdrawal.

Dont say my account was "easy picking" or that i should blame myself for not using 2 factor authentication.
When my credentials wasnt used by the thief to log on (whomever it might be).


If someone stole my password (from me and not mtgox) and logged on and withdrew the money, sure.
Then your statements would be valid.

Since noone logged on with my password, my security was not the cause!


I have filed a police report, but im not sure i want to verify my account since i sadly do not trust them, anymore.


/GoK

I have a feeling the ID/AML request is because of reporting a loss of over $2,000.

In this modern age, using just a password to secure anything of value is unwise.

I use 2 factor for any account that has over $10 dollars in it. Except those protected by the FDIC.
For my MtGox Account I use (Two) 2 factor accounts on two different devices, they would have to have access to both devices or crack 2 factor.

I also use 2 factor on all email accounts, to prevent password resets.

Did you access your account from a Desktop Or Laptop?

Was it running Windows? Are you up to date?
What AntiVirus are you using? is it up to date?

Have you ever accessed your account using WIFI? Unsecured? WEP?

Most likely your password was stolen from a Keylogger or They were able to login into MtGox by routing thru your Computer Remotely.

Do you download any software from torrents?

Just be aware there is also a virus that has appeared in Asia mostly,that can survive a format of the HD, by hiding inside your BIOS and reinfecting your system after reinstall.

File a police report,Verify your AML with MtGox(I don't think it will do any good),and Redeem Free Yubikey Offer

Until I see an account that has 2 factor used get stolen from, your security was the cause of your loss because you were easy picking.

[squid]

You are missing the point...

mtGox OWN logs show that NOONE was logged on at the moment of the withdrawal.

Dont say my account was "easy picking" or that i should blame myself for not using 2 factor authentication.
When my credentials wasnt used by the thief to log on (whomever it might be).


If someone stole my password (from me and not mtgox) and logged on and withdrew the money, sure.
Then your statements would be valid.

Since noone logged on with my password, my security was not the cause!


I have filed a police report, but im not sure i want to verify my account since i sadly do not trust them, anymore.


/GoK

I have a feeling the ID/AML request is because of reporting a loss of over $2,000.

In this modern age, using just a password to secure anything of value is unwise.

I use 2 factor for any account that has over $10 dollars in it. Except those protected by the FDIC.
For my MtGox Account I use (Two) 2 factor accounts on two different devices, they would have to have access to both devices or crack 2 factor.

I also use 2 factor on all email accounts, to prevent password resets.

Did you access your account from a Desktop Or Laptop?

Was it running Windows? Are you up to date?
What AntiVirus are you using? is it up to date?

Have you ever accessed your account using WIFI? Unsecured? WEP?

Most likely your password was stolen from a Keylogger or They were able to login into MtGox by routing thru your Computer Remotely.

Do you download any software from torrents?

Just be aware there is also a virus that has appeared in Asia mostly,that can survive a format of the HD, by hiding inside your BIOS and reinfecting your system after reinstall.

File a police report,Verify your AML with MtGox(I don't think it will do any good),and Redeem Free Yubikey Offer

Until I see an account that has 2 factor used get stolen from, your security was the cause of your loss because you were easy picking.

Seems like you are grasping for straws. Please secure your money next time with one of the many features Mt.Gox offers.

[Come-from-Beyond]

Someone is having a whale of a time with MtGox it seems. It's like watching someone smack a pinata.

My sympathies to those who were stolen from.

Mt Gox is one of the worst companies I've ever had the displeasure in dealing with. They're extortionate, obfuscated, and utterly unprofessional.

+2

[RandomQ]

Seems like you are grasping for straws. Please secure your money next time with one of the many features Mt.Gox offers.

Did you tell that to the guys that got their Linode accounts hacked too?


Stuff cant get stolen from a closed safe, somehow it has to be opened for the gold to be taken.

I have asked mtGox to tell me how my gold was removed from the safe, they answer:
We only talk to the police.

If asking for an answer to how the coins were stolen is grasping for straws: I am guilty.

But i think it it is a fair request.


Please not that mtGox is not claiming that somone logged on to my account and sent the money.

Their log says: Noone was logged on to your account at the time of the withdraw.
They say: We only talk to the police.



/GoK

I have to disagree with you saying its not a fair request to disclose how your funds got removed because if there "an easy way" or undisclosed hack they shouldn't release that information to protect other accounts.For the Greater Good of all.

The Lowest hanging fruit are always picked first. Accounts only protected by passwords are easy targets.

Plus sometimes the Japanese to English might not have translated correctly from the people you talked to.

So the account "not logged in" part might be a mistranslated, i've talked with alot of non-native english speakers and sometimes it just comes out wrong.

If this was a hack, the hacker would be getting as many accounts emptied as possible before the hole was closed.


Per MtGox As a reminder we assume no responsibility should your funds be stolen by someone using your own password.

[zvs]

If you trade more than $150 USD it is worth it to invest in a Yubikey, IMHO. I have other issues with MtGox, but getting hacked is the least of my concerns.

i don't have a yubikey, but my password is something similar to jfdsaMFDasjm#R$MnVMXCL:m43mMVL:XJOP%$#mvc

[zvs]

I have a feeling the ID/AML request is because of reporting a loss of over $2,000.

In this modern age, using just a password to secure anything of value is unwise.

I use 2 factor for any account that has over $10 dollars in it. Except those protected by the FDIC.
For my MtGox Account I use (Two) 2 factor accounts on two different devices, they would have to have access to both devices or crack 2 factor.

I also use 2 factor on all email accounts, to prevent password resets.

Did you access your account from a Desktop Or Laptop?

Was it running Windows? Are you up to date?
What AntiVirus are you using? is it up to date?

Have you ever accessed your account using WIFI? Unsecured? WEP?

Most likely your password was stolen from a Keylogger or They were able to login into MtGox by routing thru your Computer Remotely.

Do you download any software from torrents?

Just be aware there is also a virus that has appeared in Asia mostly,that can survive a format of the HD, by hiding inside your BIOS and reinfecting your system after reinstall.

File a police report,Verify your AML with MtGox(I don't think it will do any good),and Redeem Free Yubikey Offer

Until I see an account that has 2 factor used get stolen from, your security was the cause of your loss because you were easy picking.

An unsecured connection would just be too ez....  my guess is it had to do with some porn and malicious javascript

i haven't used any antivirus software in about 15 yrs (when they started to all become incredibly intrusive), though i do scan about once a month with malwarebytes.

sites that pop up a lot of windows = bad

emails with links in them that go to hxxxxxxxxxxxp://us.battle.net.login.en.ei-login.com/login/en/login.html    are bad  (fresh from the junk mail folder, hours old!... wtf, edited link just in case someone was going to click on it)