A brief history of Bitcointalk account security

GazetaBitcoin

legendary

Activity: 1680

Merit: 6524

Fully-fledged Merit Cycler|Spambuster'23|Pie Baker

Quote from: logfiles on March 02, 2022, 04:42:04 PM

At that time, Lauda was still active. Unfortunately, s/he left the forum, probably for good.

The term "probably" is, in fact, "certainly". Not just Lauda left for good, but she also can never come back, as the account is banned. For those not knowing yet Lauda's situation (although I did not think there are many which don't know), please see the following quote:

Quote from: ?? on ??

I will request that theymos ban the "Lauda" account (u=101872)

Done. Lauda is banned in the same way as satoshi, such that it isn't possible to even log into the account anymore.

As a consequence, Lauda will never be able to read any PM and the feedback will always stick to OP's profile, no matter what. At least unless theymos himself decides to remove it. However, first of all, I think that OP should prove he actually recovered his account and that he is not the thief.

ololajulo

sr. member

Activity: 2240

Merit: 270

SOL.BIOKRIPT.COM

Quote from: awesome31312 on March 01, 2022, 04:55:34 PM

Anyway, I had to provide far more information to recover my account, than the guy who had hacked my account needed to start using my account. It didn't even send out an email to me saying my password or email had been changed.
Tragic.

(It's fine though, I moved on from BTC anyways. Monero is where it's at!)

What are the information requested? Until recently some of the bitcoin address of many members are from forums and non custodial bitcoin address which makes permanent loss of account here rampant. I had to go for new address lately with full custody, emails are not considered at all here.The moderator might need to be more interactive with members that loss account and respond in time, sometimes it take weeks and yet it might not be recovered. Does everyone has to open new thread in the forum before his case will be attended to?

owlcatz

legendary

Activity: 3570

Merit: 1959

Quote from: logfiles on March 02, 2022, 04:42:04 PM

I remember advising OP to PM Lauda (though I missed out mentioning Darkstar_) to remove the feedback since he had successfully recovered his account, but I don't think he even bothered. At that time, Lauda was still active. Unfortunately, s/he left the forum, probably for good.

Lauda will never be back here.

logfiles

copper member

Activity: 2170

Merit: 1827

Top Crypto Casino

I remember advising OP to PM Lauda (though I missed out mentioning Darkstar_) to remove the feedback since he had successfully recovered his account, but I don't think he even bothered. At that time, Lauda was still active. Unfortunately, s/he left the forum, probably for good.

Quote from: logfiles on August 12, 2019, 09:25:05 AM

Welcome back!

The hacker really made quite a mess with your account - https://bitcointalksearch.org/topic/v2-need-dt-member-3009408

You might wanna PM Lauda to get rid of that tag. I think your reason will be valid enough for it to be removed.

Findingnemo

hero member

Activity: 2366

Merit: 793

Bitcoin = Financial freedom

Be patient and give some time for DT members to review your PM about what happened (if you didn't make sure send PM first before take this into public). I hope your negative feedback is now irrelevant and it maybe removed and you're not alone lot of account details were compromised but now its good as long as you keep your account safe.

Welsh

staff

Activity: 3304

Merit: 4115

I'm sure if your claim is correct, you can either provide the information that you provided the account recovery team, which should be sufficient for everyone else or you could ask them to verify it themselves by posting here if some of the information you provided was sensitive.

Quote from: _act_ on March 02, 2022, 02:16:20 AM

Blammimg account hack on the security of this forum means you do not know what you are saying, I have known this forum to have good security ever since I register, probably a time in the past that such a thing happened, but after then, never again. If your account is hacked, you have to be blamed for it. If you avoid hack, your account will not be hacked.

You're nearly right I'd say. The forum was compromised, however as stated above the leak involved hashed passwords, rather than plain text. So, ultimately malicious users could brute force or use dictionary attacks against those hashes, although ultimately if you had a strong password, it would have been unrealistic to guess, so it still depended on the users security in the end.

Although, you're right there's been no known compromises since that big one where they got access to the database.

_act_

legendary

Activity: 1064

Merit: 1298

Lightning network is good with small amount of BTC

Blammimg account hack on the security of this forum means you do not know what you are saying, I have known this forum to have good security ever since I register, probably a time in the past that such a thing happened, but after then, never again. If your account is hacked, you have to be blamed for it. If you avoid hack, your account will not be hacked. It is good to always be active and monitor your account, if anything strange is noticed, you will be able to take appropriate steps to always make sure your account is in your control. I hope you have a stake address too, if not, sign a message with your bitcoin address and post it on this thread.

Poker Player

legendary

Activity: 1372

Merit: 2017

If it is true that they recovered your account, I understand that it will be something easily verifiable. In that case, I would send a PM to DarkStar_ to consider whether to remove the negative feedback.

Although I see you already opened a thread on the subject where LoyceV told you the same thing:

Quote from: LoyceV on August 12, 2019, 09:21:08 AM

If your evidence is good enough for the account recovery team, it should be good enough to have red trust removed too.

If you still have the red tag, I imagine that DarkStar_ will not change it.

awesome31312

hero member

Activity: 826

Merit: 504

Bitcointalk account security used to be really crap. In fact, they had leaked passwords. Someone bought my password from the deep web and used it, then changed the email and started using my account. Since I am regularly on and off on Bitcointalk, the dude just continued doing this shitty signature campaign and damaged the reputation of my account. Anyway, I had to provide far more information to recover my account, than the guy who had hacked my account needed to start using my account. It didn't even send out an email to me saying my password or email had been changed. The forum has done so now. I was able to recover my account, but my trust will suffer eternally as a result.

Tragic.

(It's fine though, I moved on from BTC anyways. Monero is where it's at!)

Topic: A brief history of Bitcointalk account security (Read 166 times)