caveden
Legendary
 Offline
Activity: 1106
Merit: 1004
|
 |
July 26, 2012, 12:57:25 PM |
|
New evidence shows that zhoutong is the hacker.
After Bitcoinica MtGox account compromised ,zhoutong sell LR in China.
I'm sorry but, - Who are you?
- Are you claiming you have evidence that LR account U9236056 is controlled by Zhou Thong? Could you really prove that?
- What do all those Chinese symbols in your post mean?
Thanks |
|
|
|
|
|
|
|
The forum was founded in 2009 by Satoshi and Sirius. It replaced a
SourceForge forum.
|
|
|
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction.
|
|
|
|
|
|
|
|
Jimmy2011
|
|
July 26, 2012, 01:18:14 PM |
|
New evidence shows that zhoutong is the hacker. After Bitcoinica MtGox account compromised ,zhoutong sell LR in China. 日期:2012-7-12 Ryan(11853074) 20:03:18 6.2出LR,财付通付款 Ryan(11853074) 20:13:06 要多少有多少 Ryan(11853074) 20:13:12 我帮一个朋友出的 Ryan(11853074) 20:14:06 1万美元之内都没什么问题 Ryan(11853074) 20:17:18 LibertyReserve And zhoutong's LR account is :  zhoutong said The hacker registered a Liberty Reserve account U9236056 at Jul 12, 2012 9:42 PM. So now everyone knows zhoutong is the hacker!!! Where was the message from? QQ Group? Please release a screenshot. I try my best to translate the message as following: Ryan said he/she wants to sell a lot of LR USD (maximum 10,000LR USD) at a price of 6.2 RMB per LR USD for his friend, and get cash by TenPay ( http://www.tenpay.com). |
|
|
|
|
crazy_rabbit
Legendary
Offline
Activity: 1204
Merit: 1001
RUM AND CARROTS: A PIRATE LIFE FOR ME
|
|
July 26, 2012, 01:20:21 PM |
|
I continue to be flabbergasted at the Bitcoinica clusterf*ck. How on earth any one with any sense thinks they should keep posting on a public forum when the threat of legal action hangs over their heads is beyond me.
Honestly- Zhou, why are you still writing on the forum? Just post a message: "My lawyer has advised me to give no further comment" and leave it at that (and of course, actually get a lawyer). You're insane to keep writing anything here. Everyones answer to everything at this point in time should be: "no comment".
As for AurumExchange and bitInstant, I can't see how either of you have any real right to post this information in the forums either. You obviously redacted some of it, knowing that it could be sensitive in a legal setting, but I think you really open yourselves up to some sort of legal action. Imagine if all this goes to trial, Zhou is cleared and he turns around and sues for liable? I think any court would ask first and formost, if he hasn't yet been convicted- why go public?
Anyway, this is insane that it continues. I guess part of us loves the drama, but for goodness sake stop the madness. With all the posts back and forth there is no way for none of you to have not contradicted yourselves in some technical way, and lawyers for whomever your opposing party may be will definitely pick every letter written apart to find it. Everyone go get lawyers and hush the heck up!
Post the court transcripts when ready, until then- don't work so hard at extending your potential sentences!
|
more or less retired.
|
|
|
|
DarkEmi
|
|
July 26, 2012, 01:26:12 PM |
|
I continue to be flabbergasted at the Bitcoinica clusterf*ck. How on earth any one with any sense thinks they should keep posting on a public forum when the threat of legal action hangs over their heads is beyond me.
Honestly- Zhou, why are you still writing on the forum? Just post a message: "My lawyer has advised me to give no further comment" and leave it at that (and of course, actually get a lawyer). You're insane to keep writing anything here. Everyones answer to everything at this point in time should be: "no comment".
As for AurumExchange and bitInstant, I can't see how either of you have any real right to post this information in the forums either. You obviously redacted some of it, knowing that it could be sensitive in a legal setting, but I think you really open yourselves up to some sort of legal action. Imagine if all this goes to trial, Zhou is cleared and he turns around and sues for liable? I think any court would ask first and formost, if he hasn't yet been convicted- why go public?
Anyway, this is insane that it continues. I guess part of us loves the drama, but for goodness sake stop the madness. With all the posts back and forth there is no way for none of you to have not contradicted yourselves in some technical way, and lawyers for whomever your opposing party may be will definitely pick every letter written apart to find it. Everyone go get lawyers and hush the heck up!
Post the court transcripts when ready, until then- don't work so hard at extending your potential sentences!
If they didnt do anything we would still be in the dark. I personnally appreciate that the exchange are willing to divulge information helping the case. Of course it is a shame that no legal actions yet was taken or police involved, but this responsability should have been first the responsability of the INTERSANGO TEAM.. How irresponsible it is to declare nothing when you ve got 400k stolen ? At least at this point it seems they were "just" irresponsible & incompetent and are cleaned from any scam attempts. Regarding Zhou, as the issue is going right now, It would be really early to comment at this point. He is either a very trustworthy guy or a scumbag, hard to say which one with proof. My gut feeling says he is clean but thats just a feeling. We'll have to see what happens next |
|
|
|
John (John K.)
Global Troll-buster and
Legendary
Offline
Activity: 1288
Merit: 1226
Away on an extended break
|
|
July 26, 2012, 01:42:14 PM |
|
New evidence shows that zhoutong is the hacker. After Bitcoinica MtGox account compromised ,zhoutong sell LR in China. 日期:2012-7-12 Ryan(11853074) 20:03:18 Selling LR funds for RMB6.2 each, to be paid through TenPay ( http://www.tenpay.com) Ryan(11853074) 20:13:06 I can sell whatever amount that you require (literal: I have unlimited funds) Ryan(11853074) 20:13:12 I'm helping a friend to sell Ryan(11853074) 20:14:06 Amounts below $10000 USD is okay. Ryan(11853074) 20:17:18 LibertyReserve And zhoutong's LR account is : zhoutong said The hacker registered a Liberty Reserve account U9236056 at Jul 12, 2012 9:42 PM. So now everyone knows zhoutong is the hacker!!! New evidence shows that zhoutong is the hacker.
After Bitcoinica MtGox account compromised ,zhoutong sell LR in China.
I'm sorry but, - Who are you?
- Are you claiming you have evidence that LR account U9236056 is controlled by Zhou Thong? Could you really prove that?
- What do all those Chinese symbols in your post mean?
Thanks Translated. |
|
|
|
|
|
sadpandatech
|
|
July 26, 2012, 01:57:43 PM |
|
New evidence shows that zhoutong is the hacker. After Bitcoinica MtGox account compromised ,zhoutong sell LR in China. 日期:2012-7-12 Ryan(11853074) 20:03:18 Selling LR funds for RMB6.2 each, to be paid through TenPay ( http://www.tenpay.com) Ryan(11853074) 20:13:06 I can sell whatever amount that you require (literal: I have unlimited funds) Ryan(11853074) 20:13:12 I'm helping a friend to sell Ryan(11853074) 20:14:06 Amounts below $10000 USD is okay. Ryan(11853074) 20:17:18 LibertyReserve And zhoutong's LR account is : zhoutong said The hacker registered a Liberty Reserve account U9236056 at Jul 12, 2012 9:42 PM. So now everyone knows zhoutong is the hacker!!! New evidence shows that zhoutong is the hacker.
After Bitcoinica MtGox account compromised ,zhoutong sell LR in China.
I'm sorry but, - Who are you?
- Are you claiming you have evidence that LR account U9236056 is controlled by Zhou Thong? Could you really prove that?
- What do all those Chinese symbols in your post mean?
Thanks Translated. literaly unlimted.. why bother saying they are helping a friend to sell, as it just makes a buyer leary under normal circumstances? This was shortly before hack. Likely, right after said person realized they could still have access to fully loaded Gox account. They likely assumed they would have no issues cleaning the place out since they had full access.. |
If you're not excited by the idea of being an early adopter 'now', then you should come back in three or four years and either tell us "Told you it'd never work!" or join what should, by then, be a much more stable and easier-to-use system.
- GA
It is being worked on by smart people. -DamienBlack
|
|
|
|
Coinoisseur
|
|
July 26, 2012, 02:04:19 PM |
|
Why hasn't anyone in control of Bitcoinica filed a criminal complaint regarding the hacking? Multiple "hacks" and not a single criminal complaint in progress? TBH, I'm glad MTGox and AurumXChange were willing to say something. Sounds like they are just as frustrated about the lack of engagement of law enforcement in serious computer intrusion and monetary criminal behavior. And how is it libel? They state an email connected with Zhou Tong was used and even Zhou Tong acknowledges that to be the case. Seriously, you 3 together have done a much better investigation than any "actual investigation" most official judges or police bureaus in the world would. The only think you lack is "authority".
Yes, such a good investigation, and yet they can't prove anything and decided to release private customer information and libel against a customer in the process. Class act. Zhou, get a lawyer, but get one to sue these shmucks. It is not up to any of us to judge if funds should be unlocked, we should have an actual court with an actual judge do an actual investigation first.
Instead, it's your job to libel against customers for things you have no proof of? I'm gonna take a break from Bitcoin for a while. When I come back, I hope to see that it's returned to being Bitcoin again and not just a microversion of the US government with a bunch of hot-head businesses eager for attention. |
|
|
|
|
sadpandatech
|
|
July 26, 2012, 02:07:38 PM |
|
New evidence shows that zhoutong is the hacker. After Bitcoinica MtGox account compromised ,zhoutong sell LR in China. 日期:2012-7-12 Ryan(11853074) 20:03:18 Selling LR funds for RMB6.2 each, to be paid through TenPay ( http://www.tenpay.com) Ryan(11853074) 20:13:06 I can sell whatever amount that you require (literal: I have unlimited funds) Ryan(11853074) 20:13:12 I'm helping a friend to sell Ryan(11853074) 20:14:06 Amounts below $10000 USD is okay. Ryan(11853074) 20:17:18 LibertyReserve And zhoutong's LR account is : zhoutong said The hacker registered a Liberty Reserve account U9236056 at Jul 12, 2012 9:42 PM. So now everyone knows zhoutong is the hacker!!! New evidence shows that zhoutong is the hacker.
After Bitcoinica MtGox account compromised ,zhoutong sell LR in China.
I'm sorry but, - Who are you?
- Are you claiming you have evidence that LR account U9236056 is controlled by Zhou Thong? Could you really prove that?
- What do all those Chinese symbols in your post mean?
Thanks Translated. literaly unlimted.. why bother saying they are helping a friend to sell, as it just makes a buyer leary under normal circumstances? This was shortly before hack. Likely, right after said person realized they could still have access to fully loaded Gox account. They likely assumed they would have no issues cleaning the place out since they had full access.. ZT, So a hacker compromised this gmail account of yours? How long ago did you notice someone else was using the email account? Why did you not contact services that this email account was used for to inform them? where else was this email account even known? Who knew you used this email account for anything? I would really like a better timeline on this email account..?? anyone? |
If you're not excited by the idea of being an early adopter 'now', then you should come back in three or four years and either tell us "Told you it'd never work!" or join what should, by then, be a much more stable and easier-to-use system.
- GA
It is being worked on by smart people. -DamienBlack
|
|
|
rjk
Sr. Member
Offline
Activity: 448
Merit: 250
1ngldh
|
|
July 26, 2012, 02:08:03 PM |
|
Those of you that have LastPass should take the "LastPass Security Challenge". It takes all of your stored passwords and checks to see how many times they are re-used across all your stored sites. I'm in the process of improving my score by visiting each and every stored website and changing the password from a shared one to a unique generated one. It will take a while because there are hundreds to visit. However, this hack points out the absolute reliance that most people have on email as a last form of authentication, which is a shame.
Even one of my banks has a limit of 12 character password with no symbols, and only one other bank has the option to disable email password resets.
|
|
|
|
Vod
Legendary
Offline
Activity: 3696
Merit: 3073
Licking my boob since 1970
|
|
July 26, 2012, 02:08:32 PM |
|
I have located a suspect, his name is 陈建海(Chen Jianhai). He's NOT my friend and we have never met in person. He was one of my previous business associates because he's very familiar with credit card fraud and he advised me a lot (in terms of fraud prevention, of course) when I built my virtual goods payment processor in late 2010.
He has knowledge of my secret gmail address and I have once re-used the password in his web shop
His English is not very proficient and I'm sure that he's not reading this forum at the moment. I'm giving him a call now to persuade him to admit his wrong-doing and return the funds.
I'll post another thread soon.
I was one of the first to predict that zhoutong had taken the money in an inside job. I'm now going to predict that he'll discover his "acquaintance" took the money and it will be returned shortly.  And I predict there will still be people that think he is innocent in all this... |
https://nastyscam.com - landing page up https://vod.fan - advanced image hosting - coming soon! OGNasty has early onset dementia; keep this in mind when discussing his past actions.
|
|
|
|
jackmaninov
|
|
July 26, 2012, 02:12:41 PM |
|
Even one of my banks has a limit of 12 character password with no symbols, and only one other bank has the option to disable email password resets.
There is a Canadian bank that only allows a 6 character password (not sure about symbols) for its web banking. I LOLed when their form refused to allow me to enter something longer. |
|
|
|
|
|
repentance
|
|
July 26, 2012, 02:13:04 PM |
|
I was one of the first to predict that zhoutong had taken the money in an inside job. I'm now going to predict that he'll discover his "acquaintance" took the money and it will be returned shortly. And I predict there will still be people that think he is innocent in all this... Do keep up. You're "predicting' stuff which was posted a couple of hours ago. |
All I can say is that this is Bitcoin. I don't believe it until I see six confirmations.
|
|
|
|
Coinoisseur
|
|
July 26, 2012, 02:14:11 PM |
|
Wow, roflmao here. I have located a suspect, his name is 陈建海(Chen Jianhai). He's NOT my friend and we have never met in person. He was one of my previous business associates because he's very familiar with credit card fraud and he advised me a lot (in terms of fraud prevention, of course) when I built my virtual goods payment processor in late 2010.
He has knowledge of my secret gmail address and I have once re-used the password in his web shop
His English is not very proficient and I'm sure that he's not reading this forum at the moment. I'm giving him a call now to persuade him to admit his wrong-doing and return the funds.
I'll post another thread soon.
|
|
|
|
|
Mistafreeze
|
|
July 26, 2012, 02:17:41 PM |
|
I have located a suspect, his name is 陈建海(Chen Jianhai). He's NOT my friend and we have never met in person. He was one of my previous business associates because he's very familiar with credit card fraud and he advised me a lot (in terms of fraud prevention, of course) when I built my virtual goods payment processor in late 2010.
He has knowledge of my secret gmail address and I have once re-used the password in his web shop
His English is not very proficient and I'm sure that he's not reading this forum at the moment. I'm giving him a call now to persuade him to admit his wrong-doing and return the funds.
I'll post another thread soon.
I was one of the first to predict that zhoutong had taken the money in an inside job. I'm now going to predict that he'll discover his "acquaintance" took the money and it will be returned shortly. And I predict there will still be people that think he is innocent in all this... Already did. |
|
|
|
|
|
sadpandatech
|
|
July 26, 2012, 02:20:41 PM |
|
ZT,
So a hacker compromised this gmail account of yours?
How long ago did you notice someone else was using the email account?
You said you saw credit card fraud that used this email account, how long ago was that?
Why did you not contact services that this email account was used for to inform them?
where else was this email account even known?
Who knew you used this email account for anything?
I would really like a better timeline on this email account..??
anyone?
|
If you're not excited by the idea of being an early adopter 'now', then you should come back in three or four years and either tell us "Told you it'd never work!" or join what should, by then, be a much more stable and easier-to-use system.
- GA
It is being worked on by smart people. -DamienBlack
|
|
|
check_status
Full Member
Offline
Activity: 196
Merit: 100
Web Dev, Db Admin, Computer Technician
|
|
July 26, 2012, 02:21:45 PM |
|
Is this an accurate timeline?
ZhouTong builds a valuable commodity, which transacts large quantities of pseudo-money.
Security conscious users probe the Bitcoinica system and find it vulnerable.
ZhouTong was warned about some weaknesses but defends his design decissions instead of looking to improve security.
Bitcoinica is cracked and a large amount of funds are moved out of Bitcoinica.
Dust settles then Bitcoinica's MtGox account gets cracked.
2 exchanges and 1 uninvolved company partner up and provide suggestive accusations which point at ZhouTong as the culprit.
Still, nobody mentions where the coins travel or sit.
The attack could have been carried out without ZhouTong being aware that a compromise had occurred. It's possible an attacker had unnoticed access for a long period of time in order to collect information and to plan the theft. If the attack occured without ZhouTong having been a colaberator in the heist, then a large group of people are spending a lot of time pointing a finger in his direction. So far we have only seen a lot of hype and only one flimsey connection of ZhouTong's involvement. The information was presented in order to frame ZhouTong in a suggestive manner which portrays him as a criminal. You are trying cases in the court of public opinion, this is very unprofessional even if it weren't slanderous.
Did the current owners of Bitcoinica do a security audit before they got financially involved in the company?
|
For Bitcoin to be a true global currency the value of BTC needs always to rise. If BTC became the global currency & money supply = 100 Trillion then ⊅1.00 BTC = $4,761,904.76. P2Pool Server List | How To's and Guides Mega List | 1 EndfedSryGUZK9sPrdvxHntYzv2EBexGA |
|
|
|
sadpandatech
|
|
July 26, 2012, 02:23:05 PM |
|
Is this an accurate timeline?
ZhouTong builds a valuable commodity, which transacts large quantities of pseudo-money.
Security conscious users probe the Bitcoinica system and find it vulnerable.
ZhouTong was warned about some weaknesses but defends his design decissions instead of looking to improve security.
Bitcoinica is cracked and a large amount of funds are moved out of Bitcoinica.
Dust settles then Bitcoinica's MtGox account gets cracked.
2 exchanges and 1 uninvolved company partner up and provide suggestive accusations which point at ZhouTong as the culprit.
Still, nobody mentions where the coins travel or sit.
The attack could have been carried out without ZhouTong being aware that a compromise had occurred. It's possible an attacker had unnoticed access for a long period of time in order to collect information and to plan the theft. If the attack occured without ZhouTong having been a colaberator in the heist, then a large group of people are spending a lot of time pointing a finger in his direction. So far we have only seen a lot of hype and only one flimsey connection of ZhouTong's involvement. The information was presented in order to frame ZhouTong in a suggestive manner which portrays him as a criminal. You are trying cases in the court of public opinion, this is very unprofessional even if it weren't slanderous.
Did the current owners of Bitcoinica do a security audit before they got financially involved in the company?
you're an idiot |
If you're not excited by the idea of being an early adopter 'now', then you should come back in three or four years and either tell us "Told you it'd never work!" or join what should, by then, be a much more stable and easier-to-use system.
- GA
It is being worked on by smart people. -DamienBlack
|
|
|
|
Coinoisseur
|
|
July 26, 2012, 02:28:23 PM |
|
Flimsy? Zhou Tong admits it was his email and is just stating it was a compromised account. The exchanges are in a serious bind since they deal with government currencies, they can't be seen to be aiding in theft or laundering. Might want to ask Intersango what the consequences can be for an exchange. So far we have only seen a lot of hype and only one flimsey connection of ZhouTong's involvement. The information was presented in order to frame ZhouTong in a suggestive manner which portrays him as a criminal. You are trying cases in the court of public opinion, this is very unprofessional even if it weren't slanderous.
Did the current owners of Bitcoinica do a security audit before they got financially involved in the company?
|
|
|
|
MrTeal
Legendary
Offline
Activity: 1274
Merit: 1004
|
|
July 26, 2012, 02:30:29 PM |
|
* The Liberty Reserve account used by the hacker is U9236056. * The email address used by the hacker was stevejobs807@gmail.com. * To my surprise, upon further examination of our order system, I found an order from Zhou Tong to sell Liberty Reserve to us for the amount of USD 40,000, requesting a wire to his bank account in Singapore. The amount for the order closely matches the total USD exchanged through us (after fees) using the MtGox USD codes stolen from the Bitcoinica account. * This order was placed the next day the hacking attempts occurred. In addition, it should be noted that Zhou Tong has never dealt with us before as an exchange customer. * This information was immediately sent to our two biggest trusted business partners: MtGox and Bitinstant in an effort to join forces to further investigate this situation. * Mark Karpeles indicated that there was an account opened at MtGox using the email stevejobs807@gmail.com sometime in 2011.
* Mark replied stating that there was activity on this account, that the account was opened using an IP address belonging to Microsoft Singapore, that Zhou Tong was known to have worked for said company at said location, that the email stevejobs807@gmail.com have been verified, and that ALL activity on this account is linked to the MtGox account belonging to Zhou Tong.
* Mark has also indicated that the very first operation on the MtGox account opened with email stevejobs807@gmail.com was the redeeming of a 10 BTC MtGox code generated from Zhou Tong's account.
* Charlie indicated that Erik Vorhees (a well known member of this community) has emails he exchanged with Zhou using the email address stevejobs807@gmail.com.stevejobs807@gmail.com was indeed my email account used for anonymous testing purpose, however I haven't been using it for a long time. I'm logging in the account to check the suspicious activity and I'll post relevant details as well. The email account had a heavily-reused password (for the sites that I don't intend to share any private data), *at least* it was used on LinkedIn and many other websites.
The email account is only used for testing purposes, has a heavily reused password and is used at sites that you don't plan to share any personal data with, except the exchanges where you move hundreds of thousands of dollars. |
|
|
|
|
|
defxor
|
|
July 26, 2012, 02:31:12 PM
Last edit: July 26, 2012, 02:45:22 PM by defxor |
|
It would suprise me greatly if Zhou is responsible for this.
I do not have access to any first-hand evidence that would implicate Zhou.
I work on behalf of the fund that invested in Bitcoinica. I have no position of authority with Bitcoinica LP.
When it was made known to me that some suspected Zhou, my recommendation was to confront him privately for his explanation.
In the internal email dump from genjix you are quoted as having written the following: Speaking of that, Zhou I wanted your thoughts on the financial situation.
As you know, Bitcoinica went from cranking out 6-figure profit one month to
a flatline the next. I covered most of the deficit from the hack on the
assumption Bitcoinica profits would quickly fill in the rest. What's
happened instead is a consistent equity leak that has remained unresolved
for two months. We've gone from being short 40k to now being short 88k.
https://bitcointalk.org/index.php?topic=93109.msg1039996#msg1039996Has the reason for that been accurately explained? That is, did Bitcoinica ever - provably - profit to the degree that Zhou claimed it did when you bought it? One interesting line of thought is that the only one who's ever made a profit from operating Bitcoinica is Zhou, and if the service didn't make a profit from trading the only other explanation is that the "profit" came directly out of user deposits. To cover that up regular "hacks" were simply needed. |
|
|
|
|
|
