Topic: [18-03-2014] Mt. Gox Allowing Users to Login, Check Balances (Read 1693 times)

Thanks, a new plugin for me

I use the httpseverywhere plugin from the EFF - it forces https if it's available, so I never noticed that. Good spot!! 

Just noticed as well that it doesn't force you to use HTTPS for the login, so if just go to mtgox.com without explicitly using https://mtgox.com you may be submitting your username/password oven an unencrypted channel.

It's like some corny quiz show host saying: "Let's have a look at what you would have won!" before whisking it away into the producers garage for safe keeping.....

Yeah, I know. Very well. Although you seem to imply I'm quite misinformed here, that's definitely not the case.

However, legal statements about Mt.Gox's bankruptcy (or protection thereof) have been appearing on http://mtgox.com for a while, and there's no doubt those, at least, are legit. So it's a good guess that at least the website is still in the company's possession and is not some phishing site; this, of course, can also be double-checked by having a look at the DNS record, the IP address it points to and the SSL certificate on the site itself. And indeed there is no malware there (or anything even remotely executable), neither there is any asking for information or payments, unlike f.e. some otherwise unknown UK legal firm which is asking for 2 BTC upfront only to give you some legal counsel, which is of course completely useless, as any legal action against Mt.Gox can't even be filed while it's under bankruptcy protection.

BTW, that supposed "data leak" is months old, while my balance showing now on Mt.Gox's site is updated to the very moment the site halted trading; so it's definitely more legit. And malware was actually found in the "leaked" files, which nobody can know for sure by whom has been stolen and manipulated before getting "out".

Thus, my question still stands: what's all this talking about "phishing" and "malware" on Mt.Gox's web site for?

Mt.Gox decided to let users log in and check their balance. Again, this may of course be completely useless, and indeed doesn't guarantee anything about getting that money back. But going around saying this is fake, or dangerous, or phishing/malware/scam, or anything else than "users are again allowed to check their balance", is just FUD.

he always loved good communication 

  That's just tooooo accurate......

Mark will give Info "soon´ish"  ...oh wait ,  here it is:

OK, as you are relatively new, I will try to explain it for you - as you seem unable to conduct a google search or read/research the bitcointalk forum for any details. First of all, MtGox has been hacked & it's database leaked:

http://www.theregister.co.uk/2014/03/17/mtgox_blog_hackers_malware_bitcoin_stealers/
http://it-beta.slashdot.org/story/14/03/17/2220236/kaspersky-mt-gox-data-archive-contains-bitcoin-stealing-malware

This means that the entire system has been compromised & that nothing can be considered.............ah fuck it, why am I bothering? Just google "MtGox" then add the words hack, database, lies, fraud, steal or anything of a similar vein after it & you'll find out......

Really, I'm sorry for your loss if you've lost anything, but don't be so naive or lazy. Do some research & stop calling people bullshitters for trying to wake you up.

Ok, please try to at least answer this seriously.

I'm not defending Mt.Gox on anything, but how does it make any sense at all to criticize them... because they're now allowing you to login and look at your balance?
Why spread total nonsense like "it's phishing" (which it isn't) or "there's malware on that site" (which isn't there)?

I'm all for giving Mt.Gox a hard time. I know very well how much money I've (very likely) lost there. But spreading bullshit isn't going to help anyone.

  Yes, how dare I make judgement on such an upstanding & honorable company with such a trusted reputation.......

Let it go. It's gone.

It's on their home page, exactly where all legal statements have been published before.


Sure. Why not?
They already know my login details and my account balance, and the site doesn't allow anything else than having a look at it.

It may be completely useless, and it may not offer any new hope about being actually able to get my money back. But certainly it's not a danger as FUD-spreading people seem to think.

Hm....what..."we don't know who controls it"  ...."but is the same people"...nice contradiction.

My login/password didn't work but had an zero (or almost zero balance)...and that does look a bit suspect so I'm not about to start trying other random passwords.

I just don't like that "stuck in the Queue" behaviour. It should be canceled, schouldn't it? I mean, there is not really a Queue anymore, that is going to process further.
But sure, that just means, that MtGox didn't put much thought into this allowing of Logins.

Proof? Official Gox statements? Links? Sources?

An insolvent, compromised, cheating, bankrupt company under criminal investigation for fraud & theft who's owners have had their assets frozen suddenly allowing users to log on?

Go for it 

Stop the FUD, please.

The site is legit, whe may not know who actually controls the company now, but the site belongs to the same Mt.Gox we used to know.

It's no phishing site, it correctly accepts user credentials (although TFA is not required anymore), and it displays your account's real balance. At least, it does for me. Please remember that Mt.Gox balance never showed pending transfers, thus if you requested a fiat withdrawal it would be normal (at least according to Mt.Gox's previous behaviour) to not see it there while it's stuck in the transfer queue.

Last but not least, there is no malware at all here.

Why on earth would any sane person want to log on to a site that has bitcoin stealing malware on it?

Think about it. Then don't do it. Really 

log in and you will see....nothing! just numbers from the wonderland. you will never get a penny back.

maybe Mark sells the data again?

Ok, I did log in.
My EUR-Balance which was pending in being send via SEPA doesn't Show up.
Not that I really have much hope, that I am getting back anything from there ...

I had no problems doing so!