bitstamp 18,000 bitcoins stolen? -confirmed

[HarmonLi]

Still all talk and no proof. We have address signing, time to make use of it.

Unless it's 100% clear what happened and what parts of the system were compromised, I don't think
it's a particularly good idea to load the cold private keys onto any electronical system (and, so, make
them hot) just to sign a message and calm people down. That the cold private keys remain private
is the most important thing now.

You don't have to load your private keys to an online system in order to sign a message for an address. You could just as well sign that message on a computer not connected to the Internet whatsoever and then just publish the message, the address, and the according signature.

[micky123]

Wow,

Could this be the reason for the dump? The thieves want to convert to fiat as quickly as possible, they clearly dont wanna be caught with their pants down! Stuff of pot boilers but just may be true. Just maybe Bitstamp is also playing a game here, after the great Gox debacle, this would have to rank as the next big heist in BTC history. Ofc this is excluding the greatest robbery ever - USMS stealing SR bitcoins!  

[tarmi]

"the bulk" meaning some coins are indeed missing.

so it is confirmed.  


0.1 btc fee is huge for any transaction.

also, I noticed that only addresses who had bitcoins deposited in the last 24 h are on the list. so I guess those addresses were compromised.

[Guido]

not good, not good at all

bitstamp do appear a very professional exchange though, so am sure anyone with losses will get reimbursed

wondering if hackers will sit on coins or immediately dump, as that will crash price further

[HarmonLi]

Wow,

Could this be the reason for the dump? The thieves want to convert to fiat as quickly as possible, they clearly dont wanna be caught with their pants down! Stuff of pot boilers but just may be true. Just maybe Bitstamp is also playing a game here, after the great Gox debacle, this would have to rank as the next big heist in BTC history. Ofc this is excluding the greatest robbery ever - USMS stealing SR bitcoins!  

If the address with 18k BTC is indeed an address held by the attacker, then they definitely haven't dumped the coins yet. How could they? At least the price-decline over the past few days didn't have jack to do with this incident.

[Mark Frappeles]

I guess thieves would mix the coins then sit on them for a while.

A big dump after a security breach would looks very suspicious and they risk having their funds frozen before they can withdraw

[tonygal]

Still all talk and no proof. We have address signing, time to make use of it.

Unless it's 100% clear what happened and what parts of the system were compromised, I don't think
it's a particularly good idea to load the cold private keys onto any electronical system (and, so, make
them hot) just to sign a message and calm people down. That the cold private keys remain private
is the most important thing now.

You don't have to load your private keys to an online system in order to sign a message for an address. You could just as well sign that message on a computer not connected to the Internet whatsoever and then just publish the message, the address, and the according signature.

Certainly, but any computer in the vincinity of any person affiliated with bitstamp is to be considered a possible attack vector (even the
smartphone of the cleaning lady) until it's 100% cleared up what happened. They could buy a new computer in a local shop, take out the
wifi module and then do all the signing by hand and later destroy the computer. That would be ok. But I still think the marginal benefit simply
doesn't justify the risks involved with loading the privkey to any computer at this moment.

[DoM P]

We don't know if it's a hack or a technical problem, anyway.

I am trying to reach Nejc Kodrič, Bitstamp CEO, because if it's a hack, I may be able to help.
I did help a lot with the BTer's hack of 51M Nxt, and that experience may be profitable.

But I don't know how to contact him. Anyone has an idea?

[marvinrouge]

twitter maybe? https://twitter.com/nejc_kodric

[coolmyrig]

We don't know if it's a hack or a technical problem, anyway.

I am trying to reach Nejc Kodrič, Bitstamp CEO, because if it's a hack, I may be able to help.
I did help a lot with the BTer's hack of 51M Nxt, and that experience may be profitable.

But I don't know how to contact him. Anyone has an idea?

are you from China?

[viriat0]

This year did not start the best way to Bitcoin.

I hope it is settled.

[derpinheimer]

And this is why bitcoin is dropping. Totally insecure. Can't use it, only store it. Else its susceptible to hackers

[cr1776]

Someone posted this address in a comment on some article. He said that was the address where his bitcoins were sent to. from his bitstamp address. (something like that). I

1L2JsXHPMYuAa9ugvHGLwkdstCPUDemNCf

So thief as 18,000 bitcoins from the alleged theft of bitcoins from bitstamp?

Is this true or not?

Article:
http://www.coindesk.com/bitstamp-reports-hot-wallet-issue-tells-customers-not-deposit-bitcoin/

Just to be clear, if bitcoins are stored on an exchange, they are not "his" coins, he is merely a creditor - an entry on their books.

No one should leave coins on exchanges - perhaps once an exchange is insured by a reputable company it will be different.

[cr1776]

And this is why bitcoin is dropping. Totally insecure. Can't use it, only store it. Else its susceptible to hackers

FUD. Bitcoin is not bitstamp. Saying Bitcoin is insecure is just ignorant.

[BitCoinNutJob]

Someone posted this address in a comment on some article. He said that was the address where his bitcoins were sent to. from his bitstamp address. (something like that).

1L2JsXHPMYuAa9ugvHGLwkdstCPUDemNCf

So thief as 18,000 bitcoins from the alleged theft of bitcoins from bitstamp?

Is this true or not?

Article:
http://www.coindesk.com/bitstamp-reports-hot-wallet-issue-tells-customers-not-deposit-bitcoin/

Holy crap thats a ton of coins, customers are lucky bitstamp are very rich to cover the cost.

[p4n]

https://blockchain.info/address/1L2JsXHPMYuAa9ugvHGLwkdstCPUDemNCf


timestamp of the last trascaction -> 10:12.

bitstamp down from 10:12.

so they sent the funds to cold storage. And there is no issue I am hoping.  

the question here is whose cold storage is that.

They stopped with deposits 3h before last transaction...

doesnt mean anything really, because someone could have sent his coins to the stamp's hacked hot wallet addresses.


in fact, I will send 1 satoshie to my old stamp address right about now just for fun.

To tarmi : Some new transactions can be seen on the "Hack" address. Could you see if some of these satoshis come from your address?

[Damelon]

And this is why bitcoin is dropping. Totally insecure. Can't use it, only store it. Else its susceptible to hackers

So merchants cashing out, speculators, miners cashing out, normal market influence etc, have nothing to do with it.

Phew, luckily the world is extremely simple instead of complex!

http://en.wikipedia.org/wiki/Fallacy_of_the_single_cause

[DoM P]

twitter maybe? https://twitter.com/nejc_kodric

He is not one of ma followers, so I can't send him a DM (that probably would get lost in the mass, I suspect people to be spamming his account...)

are you from China?

No, Switzerland. Why ?

[heropzy]

hope that's bitstamp's cold wallet address.

[stonehedge]

Bad and sad news.

Hopefully 2FA will be incorporated into Bitcoin at protocol level if it proves to be a success for Darkcoin.

Imagine that...stolen coins unspendable...