Bitcoin Forum
December 08, 2016, 10:15:11 AM *
News: To be able to use the next phase of the beta forum software, please ensure that your email address is correct/functional.
 
   Home   Help Search Donate Login Register  
Pages: « 1 2 3 4 5 6 7 8 9 10 [11] 12 13 14 15 16 17 18 19 20 »  All
  Print  
Author Topic: Public STATEMENT Regarding Bitcoinica account hack at MtGox  (Read 67296 times)
davout
Legendary
*
Offline Offline

Activity: 1358


1davout


View Profile WWW
July 26, 2012, 10:07:48 AM
 #201

Actually - it may be difficult to remember as we are already on the 11th page - the announce was made by AurumXchange, not by us.
Second post was by you though.



And it is very interesting that one of the most vocal public disclosure persons wants to suppress an investigation in this case.
He also tries to steer the discussion away from the actual theft case to something else.
We should start asking what Matthew has to loose in this case.
Quote
7. Question motives. Twist or amplify any fact which could be taken to imply that the opponent operates out of a hidden personal agenda or other bias. This avoids discussing issues and forces the accuser on the defensive.
From : http://cryptome.org/2012/07/gent-forum-spies.htm

1481192111
Hero Member
*
Offline Offline

Posts: 1481192111

View Profile Personal Message (Offline)

Ignore
1481192111
Reply with quote  #2

1481192111
Report to moderator
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1481192111
Hero Member
*
Offline Offline

Posts: 1481192111

View Profile Personal Message (Offline)

Ignore
1481192111
Reply with quote  #2

1481192111
Report to moderator
repentance
Hero Member
*****
Offline Offline

Activity: 840


View Profile
July 26, 2012, 10:10:53 AM
 #202

if the police report hasn't been filed... has any crime been committed ?

How can anyone running a company of sorts not inform the police.. its not like we are talking $10 here.. even if the police cant do anything... how can someone of not told them yet ? That is dodgy as hell.

I don't think anyone wants to be the one to open that particular can of worms given that there's going to be a sub-set of people using each of these services to commit financial offences.  On the one hand, you'd establish credibility about the incident having occurred.  On the other, there are likely a significant amount of people who would no longer use your service because they'd be worried that investigations might reveal their own offences to authorities.

All I can say is that this is Bitcoin. I don't believe it until I see six confirmations.
Matthew N. Wright
Untrustworthy
Hero Member
*****
Offline Offline

Activity: 588


Hero VIP ultra official trusted super staff puppet


View Profile
July 26, 2012, 10:13:03 AM
 #203

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

* On Friday, July 13 I was notified by MtGox that somebody had gain unauthorized access to Bitcoinica's MtGox account. I was also notified that most of the redeemable codes used in the heist were exchanged through AurumXchange on July 12.
* At the time I was on an extended weekend vacation with very limited internet access. I immediately notified Mark Karpeles at MtGox as well as Charlie Shrem at Bitinstant that I would take a closer examination of the situation on Tuesday upon my return.
* Upon closer examination of our database on Tuesday, I discovered that the hacker had indeed exchanged the MtGox coupons to Liberty Reserve through our instant exchange facility. The hacker had also exchanged Liberty Reserve back to MtGox presumably in an effort to conceal and/or "launder" the funds.
* Over all, the hacker exchanged a total of $61,875 USD from MtGox to Liberty Reserve, and a total of $17,500 Liberty Reserve to MtGox, for a grand total of $44,375 MtGox to Liberty Reserve. After our fees, this number amounts to approximately $40,000 USD.
* These orders were placed on our systems between 2012-07-12 11:46:48 and 2012-07-12 19:41:27 UTC.
* The IP addresses used by the hacker belong to TOR exit nodes to my understanding, and are as follows:

31.172.30.1
31.172.30.2
31.172.30.4
77.247.181.165
146.164.91.248
78.108.63.44

* The Liberty Reserve account used by the hacker is U9236056.
* The email address used by the hacker was stevejobs807@gmail.com.
* To my surprise, upon further examination of our order system, I found an order from Zhou Tong to sell Liberty Reserve to us for the amount of USD 40,000, requesting a wire to his bank account in Singapore. The amount for the order closely matches the total USD exchanged through us (after fees) using the MtGox USD codes stolen from the Bitcoinica account.
* This order was placed the next day the hacking attempts occurred. In addition, it should be noted that Zhou Tong has never dealt with us before as an exchange customer.
* This information was immediately sent to our two biggest trusted business partners: MtGox and Bitinstant in an effort to join forces to further investigate this situation.
* Mark Karpeles indicated that there was an account opened at MtGox using the email stevejobs807@gmail.com sometime in 2011.
* Mark replied stating that there was activity on this account, that the account was opened using an IP address belonging to Microsoft Singapore, that Zhou Tong was known to have worked for said company at said location, that the email stevejobs807@gmail.com have been verified, and that ALL activity on this account is linked to the MtGox account belonging to Zhou Tong.
* Mark has also indicated that the very first operation on the MtGox account opened with email stevejobs807@gmail.com was the redeeming of a 10 BTC MtGox code generated from Zhou Tong's account.
* Charlie indicated that Erik Vorhees (a well known member of this community) has emails he exchanged with Zhou using the email address stevejobs807@gmail.com.

At this time, it appears that there is an overwhelming amount of evidence linking Zhou Tong personally to the Bitcoinica account hack at MtGox. Our legal department has advised us to freeze the funds for the exchange order mentioned above until further investigation by the authorities and/or legal proceedings are concluded.

Both Charlie and Mark have informed the current Bitcoinica owners of the situation and advised to start legal proceedings as soon as possible.

Posts corroborating this information from both MtGox and BitInstant will follow. I am technically on vacation until mid august with limited internet access, however, I will attempt to answer any questions the community might have as often as possible. Please understand that some information will not be released until all legal proceedings have been concluded.

Sincerely,

Roberto Gutierrez
General Manager
The AurumXchange Company
https://www.aurumxchange.com
-----BEGIN PGP SIGNATURE-----
Version: GnuPG

iQEcBAEBAgAGBQJQEMmpAAoJECR5FGDHgkwDCqMH/Awy/Tjtqw9p/vzVh/ewoYgq
CPCSjWn1OUZGGkCMeA/ZwkPHV8/FgsQqBTfHJKy7OBZPaRyL7KTynFo6/BfUSCiO
tWz4QtRXE8hAV5uJNq6BtUvsSD9LXUFWanSEOZS9mApsmP5jmDc3S7JfBEDHli1w
zE9DXJR5jHQmvloRgafIQNxQq8BK7DKG25LpltXCURpVqWFkmulGsMuCqZ9wV0cb
fP92Hf4U+FnwSiM5TfZDwtOhbub9E6ilzPHBmfOjuneSEN1S49Zq3wl1wv0sHUda
2fJ4jVONpOc6S3pvGN7Jb0pdcUJQtujiOcnc+YbKa1EFBjZYY0WBnJL1EVARy4Q=
=TFJe
-----END PGP SIGNATURE-----



As representative of MtGox, I do confirm the following facts:

  • Upon hack of Bitcoinica's account on our platform, a large number of redeemable codes have been issued. Seeing a large volume of codes emitted by Bitcoinica didn't alert us at first as we assumed those were funds returned to Bitcoinica customers, however we were made aware it was not the case upon posting on this forum by Genjix about the account hack. We noticed that most of those codes were sent to AurumXchange.
  • Codes were all generated from IP 184.22.31.180 (184-22-31-180.static.hostnoc.net)
  • During the investigation, AurumXchange asked us if we knew anything about email address stevejobs807@gmail.com which was used by the hacker according to AurumXchange. We found an account under this email which had some activity back in 2011, with access from both an IP at Microsoft Singapore then an IP at Amazon EC2 and which initial funds are deposited from an account known to belong to Zhou Tong.
.
While we have no definitive proof at this time, there is a definitive need for a proper investigation of what happened there. We have got no reply at this time from Bitcoinica LP and its representatives/owners regarding this matter despite many requests.


We would like to make a few points:

  • I want to thank Roberto for leading the investigation on this one with Mark and myself. We pooled together our resources to connect the dots and paper trail. This just shows that even competitors can work together for the better of the Bitcoin community.
  • I can confirm that both Tihan from Bitcoinica LP and Patrick from Bitcoin Consultancy were both alerted about this investigation personally face-to-face by me. I urged them to seek legal action and request clarification from Zhou. I also requested that they decline him further access to any funds in any of the accounts.
  • Both assured me separately that action is being taken on this front and on the claims front. They assured me that the claims process will continue pending legal clarifications.
  • As you can imagine, we had to keep this information to ourselves for 10 days or so until we can completely verify all the information we presented here.

As more information comes to light and verified, we will release it to you as soon as possible.

Thanks,

Charlie, Bitinstant.


Justin00
Legendary
*
Offline Offline

Activity: 910


★YoBit.Net★ 350+ Coins Exchange & Dice


View Profile
July 26, 2012, 10:15:44 AM
 #204

the company is over... so why would they care anymore about lost business. except to clear name and find the hacker ?

basically if the owners dont file police report say are saying to everyone who is owed money - 'piss off, we dont care' and stopping any further investigations from happening... which means no $$ for anyone.


if the police report hasn't been filed... has any crime been committed ?

How can anyone running a company of sorts not inform the police.. its not like we are talking $10 here.. even if the police cant do anything... how can someone of not told them yet ? That is dodgy as hell.

I don't think anyone wants to be the one to open that particular can of worms given that there's going to be a sub-set of people using each of these services to commit financial offences.  On the one hand, you'd establish credibility about the incident having occurred.  On the other, there are likely a significant amount of people who would no longer use your service because they'd be worried that investigations might reveal their own offences to authorities.

MagicalTux
VIP
Hero Member
*
Offline Offline

Activity: 617


Working on new MtGox features


View Profile WWW
July 26, 2012, 10:16:38 AM
 #205

the company is over... so why would they care anymore about lost business. except to clear name and find the hacker ?

basically if the owners dont file police report say are saying to everyone who is owed money - 'piss off, we dont care' and stopping any further investigations from happening... which means no $$ for anyone.

Actually it could mean that they are legally in fault to any of Bitcoinica's customers, should any of them actually file something too.

Matthew N. Wright
Untrustworthy
Hero Member
*****
Offline Offline

Activity: 588


Hero VIP ultra official trusted super staff puppet


View Profile
July 26, 2012, 10:24:21 AM
 #206

the company is over... so why would they care anymore about lost business. except to clear name and find the hacker ?

basically if the owners dont file police report say are saying to everyone who is owed money - 'piss off, we dont care' and stopping any further investigations from happening... which means no $$ for anyone.

Actually it could mean that they are legally in fault to any of Bitcoinica's customers, should any of them actually file something too.

In re-reading Charlie Shrem's post, it seems he did not really release anything important or valuable at all and basically is just posting here for support of your AurumXChange's breach of privacy, which isn't illegal, just shady. For the time being (until Charlie surfaces to explain what exactly he did release to you or AurumXChange), I will assume that the only actual breaches happened between Zhou Tong (the customer) and both AurumXchange and Mtgox.

It's early morning where Zhou is so I don't expect a response here or on Skype, but I'll contact him to see if he plans on participating in a class action law suit. I'm not sure if it would be Tort or Civil Action against AurumXChange and Mtgox, but I'd say that this thread has no logical reason for existing other than to rile on an angry mob to cause harm to one single individual, and it's pretty obvious that they've broken their own privacy agreements. Tasteless and vile.

HorseRider
Donator
Legendary
*
Offline Offline

Activity: 1582


View Profile
July 26, 2012, 10:25:22 AM
 #207

The bank account information is very value leads to catch the theft.

16SvwJtQET7mkHZFFbJpgPaDA1Pxtmbm5P
sturle
Legendary
*
Offline Offline

Activity: 1418

http://bitmynt.no


View Profile WWW
July 26, 2012, 10:25:57 AM
 #208

[A pageful of quoting with no new content]
Please shut up, if you don't have anything new to add.  This verbatim quoting without even trimming down to the parts you think are important and  telling us why, is just 100% annoying to everyone trying to follow this thread.  Delete or get ignored.  (I see you have quite a lot of ignores already.)

Sjå http://bitmynt.no for veksling av bitcoin mot norske kroner.  Trygt, billig, raskt og enkelt sidan 2010.
I buy with EUR and other currencies at a fair market price when you want to sell.  See http://bitmynt.no/eurprice.pl
I support the roadmap.  If a majority of miners ever try to forcefully take control of Bitcoin through a hard fork without 100% consensus, I will immediately split out and dump all my forkcoins, and buy more real Bitcoin.
aq
Full Member
***
Offline Offline

Activity: 238


View Profile
July 26, 2012, 10:30:29 AM
 #209

[A pageful of quoting with no new content]
Please shut up, if you don't have anything new to add.  This verbatim quoting without even trimming down to the parts you think are important and  telling us why, is just 100% annoying to everyone trying to follow this thread.  Delete or get ignored.  (I see you have quite a lot of ignores already.)
Judging from all his posts in this thread one could suspect that Matthew is the mysterious friend of ZT.
zhoutong
VIP
Hero Member
*
Offline Offline

Activity: 490


View Profile WWW
July 26, 2012, 10:31:15 AM
 #210

Doesn't Mike Hearn, a bitcoiner himself, work for Account Security at Google?
Maybe ask him for help with the Gmail access logs, Zhou Tong?

The hacker used Tor for all online communications. I'm looking for alternative ways to locate the person.

I have to say that it's not a good choice for AurumXchange to not include me in the investigation in the first place. I skipped a few classes this afternoon to deal with this mess. However, I have to admit that their intentions are understandable. It's just the fact that 90% of people believing me to be the hacker is driving me mad.

Which classes? Just curious.

This thread started at 4:00PM Victoria Time. I'm curious as to what time those classes started. And I thought you were still in Singapore.

~Bruno~


No it was around 2pm.

Founder of NameTerrific (https://www.nameterrific.com/). Co-founder of CoinJar (https://coinjar.io/)

Donations for my future Bitcoin projects: 19Uk3tiD5XkBcmHyQYhJxp9QHoub7RosVb
repentance
Hero Member
*****
Offline Offline

Activity: 840


View Profile
July 26, 2012, 10:35:30 AM
 #211

It's early morning where Zhou is so I don't expect a response here or on Skype, but I'll contact him to see if he plans on participating in a class action law suit. I'm not sure if it would be Tort or Civil Action against AurumXChange and Mtgox, but I'd say that this thread has no logical reason for existing other than to rile on an angry mob to cause harm to one single individual, and it's pretty obvious that they've broken their own privacy agreements. Tasteless and vile.

You're getting flustered.  Zhou is in my time zone and it's currently 8:35 pm Thursday.

The forum is usually dead at this time of night.

All I can say is that this is Bitcoin. I don't believe it until I see six confirmations.
MagicalTux
VIP
Hero Member
*
Offline Offline

Activity: 617


Working on new MtGox features


View Profile WWW
July 26, 2012, 10:37:39 AM
 #212

(I see you have quite a lot of ignores already.)

I didn't see the forum had this feature, quite nice actually. Thank you very much, sturle.

zhoutong
VIP
Hero Member
*
Offline Offline

Activity: 490


View Profile WWW
July 26, 2012, 10:38:16 AM
 #213

Let this be a warning to everyone:

If your account is hacked (email or otherwise), MtGox, AurumXChange and BitInstant might start a thread calling you a thief and a hacker publicly and just leave it up to you to find the thread and figure out a defense instead of discussing the issue with you directly or contacting any authorities.



I think Matt is upset because this Bitcoinica story is developing faster than a traditional print magazine can keep up with. I mean, the first one still listed Bitcoinica as a proud partner and one of Bitcoin's Greatest Hits.

EDIT: To be fair, AE did say
Quote
Zhou, I know what you are up to. This funds have been frozen as well pending investigation, and will not be released until the investigation is concluded.
in the ticket. https://www.aurumxchange.com/help/ticket.php?track=NLY-9AG-E468&Refresh=24195

That does kind of imply that Zhou is guilty of something.

You forgot that it's a ticket with the hacker, not me. I had no way to possibly read this before the public statement.

Founder of NameTerrific (https://www.nameterrific.com/). Co-founder of CoinJar (https://coinjar.io/)

Donations for my future Bitcoin projects: 19Uk3tiD5XkBcmHyQYhJxp9QHoub7RosVb
Matthew N. Wright
Untrustworthy
Hero Member
*****
Offline Offline

Activity: 588


Hero VIP ultra official trusted super staff puppet


View Profile
July 26, 2012, 10:45:07 AM
 #214

It's early morning where Zhou is so I don't expect a response here or on Skype, but I'll contact him to see if he plans on participating in a class action law suit. I'm not sure if it would be Tort or Civil Action against AurumXChange and Mtgox, but I'd say that this thread has no logical reason for existing other than to rile on an angry mob to cause harm to one single individual, and it's pretty obvious that they've broken their own privacy agreements. Tasteless and vile.

You're getting flustered.  Zhou is in my time zone and it's currently 8:35 pm Thursday.

The forum is usually dead at this time of night.

Skype was showing his time as 2am. Now it's showing 8pm. I don't understand why it does that but I remember this happening before.

Now that AurumXChange and MtGox's privacy policies have been publicly posted in this thread and it is quite obvious that MtGox at least is clearly in breach of them (as Mark stated they have not received any requests from government officials and are not aware of any official investigations) for officially confirming private facts about customer accounts, the burden of proof is now on AurumXChange to provide this order from government officials that would warrant the information being leaked, and make sure that the order mentions that this data was to be released publicly.

aq
Full Member
***
Offline Offline

Activity: 238


View Profile
July 26, 2012, 10:45:52 AM
 #215

...
There are 2 possible outcomes:
1) You are the hacker and can be sued. As you claim to transfer tons of money all the time, you can afford it and will replace the funds.
2) You will get of your lazy ass (sorry but it was your email account and you did not bother checking it despite that it had a (verified?) mtgox account attached) and investigate and eventually identify the hacker (as Mark said, it has to be you or one of your close (bitcoinica) "friends"). The hacker can be sues and (maybe) will replace the funds.
So I would say the future, regarding bitcoinica, looks brighter today than it has been yesterday
zhoutong
VIP
Hero Member
*
Offline Offline

Activity: 490


View Profile WWW
July 26, 2012, 10:46:19 AM
 #216

I have located a suspect, his name is 陈建海(Chen Jianhai). He's NOT my friend and we have never met in person. He was one of my previous business associates because he's very familiar with credit card fraud and he advised me a lot (in terms of fraud prevention, of course) when I built my virtual goods payment processor in late 2010.

He has knowledge of my secret gmail address and I have once re-used the password in his web shop

His English is not very proficient and I'm sure that he's not reading this forum at the moment. I'm giving him a call now to persuade him to admit his wrong-doing and return the funds.

I'll post another thread soon.

Founder of NameTerrific (https://www.nameterrific.com/). Co-founder of CoinJar (https://coinjar.io/)

Donations for my future Bitcoin projects: 19Uk3tiD5XkBcmHyQYhJxp9QHoub7RosVb
repentance
Hero Member
*****
Offline Offline

Activity: 840


View Profile
July 26, 2012, 10:52:07 AM
 #217

The season finale had better be good.  We don't need any more cliff-hangers.

All I can say is that this is Bitcoin. I don't believe it until I see six confirmations.
Blazr
Hero Member
*****
Offline Offline

Activity: 882



View Profile
July 26, 2012, 11:00:58 AM
 #218

I have located a suspect, his name is 陈建海(Chen Jianhai). He's NOT my friend and we have never met in person. He was one of my previous business associates because he's very familiar with credit card fraud and he advised me a lot (in terms of fraud prevention, of course) when I built my virtual goods payment processor in late 2010.

He has knowledge of my secret gmail address and I have once re-used the password in his web shop

His English is not very proficient and I'm sure that he's not reading this forum at the moment. I'm giving him a call now to persuade him to admit his wrong-doing and return the funds.

I'll post another thread soon.

I haven't been following this hack, but from what I understand the MT Gox account was hacked because the password was hard-coded into the source code.

Are you saying that this associate, who had access to this email acount since 2010, also happened to be the first person to find the password in the source code, and then tried to frame you by using your anonymous email which you've only shared with a handful of people?

Busy ATM.
norulezapply
Sr. Member
****
Offline Offline

Activity: 475


View Profile
July 26, 2012, 11:18:55 AM
 #219

On a lighter note, this song now has a whole new meaning:
http://www.youtube.com/watch?v=-z9Jwp2x86o

I was waiting for someone to post that..

If my post helped, I'll happily accept a few bitmills!   15rGg6A1JFZV3b7TTbtpAaiYGdUD1e1oAm
ydenys
Member
**
Offline Offline

Activity: 96


View Profile
July 26, 2012, 11:55:04 AM
 #220

I agree with Matthew here. On the other hand all this Bitcoinica-related stupidity is decidedly public and therefore highly contagious. Exchange owners may be forgiven for attempts at pig farming, for they, in a way, must regulate, especially given that none of the interested parties are willing to report this matter to the authorities.

On the topic: I find probability of Zhou being falsely implicated here @ ~99%. (~1% being reserved for a 3rd party influence/hormonal misbalance/luck of chance/intoxication or somesuch aberration - he is a young man after all). It is, sadly, normal that young people like Zhou/Amir being exploited by the real perpetrators from BC, who agree to use customers' deposits for their expenses and then delay legitimate refunds. There is no point to think we/Bitcoin/any form of financial innovation can do something to change that in a world order, rather than bring out even more greed.
Pages: « 1 2 3 4 5 6 7 8 9 10 [11] 12 13 14 15 16 17 18 19 20 »  All
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!