Attention BC community.
This morning I was hacked for about 2500 BC. My Mintpal and PC were both raided.
I would like to place a bounty on this thief. I have his IP along with my compromised addresses and the addresses he withdrew to. It appears by following the blockchain he has been getting others as well, so for the good of myself and the community he needs to be stopped. I realize my computer has some serious security issues and I am in the process of rebuilding it right now. This man must be stopped though.
here is the IP he used 174.127.99.183
here is 2 of the addresses he withdrew to
BLDniLSRD3E9oc68NGNB6MGnZrWXuoZmn1 - Blackcoin
ZbNSDXFy9HchXu6yDnVvmTdSKfSEjDaSUL - Zetacoin
And here is my blackcoin wallet off my personal computer which he raided for my wallet.dat file, deleted my client and then transferred the funds before I had realized what had happened. I have a backup of the wallet.dat but funds have already been moved.
my wallet - BERRF3gsJaSj3rre4sJk3zvu9bEEs8X6NP
wallet he transferred to -BLDniLSRD3E9oc68NGNB6MGnZrWXuoZmn1
If anyone can help me out it would be very kind this bastard needs to pay.
http://www.ip-adress.com/ip_tracer/174.127.99.183You should contact the ISP and formally request the address of the recoded user of that IP ASAP
Oh man that's not good to hear. I feel you.
but did you not have 2FA on mintpal? he must have had some kind of key-logger I guess
you might want to try this
http://www.bitcoinvigil.com/Thanks im checking out Vigil right now. and yes I had 2fa on everything. I was just recovering from an attack and in a great mood because of blackcoin and then this asshole cleaned me out. Any security help appreciated. Crypto isnt my problem apparently security is...
This is my simple and secure method of operation:
* no wallets on any Windows machine, strictly Linux!
* Linux partitions are encrypted using LUKS - if a hacker aquires my hard drive physically he can suck it.
* wallets are compiled from github repositories. It's very easy to do, for most coins it's "qmake-qt4 && qmake" once you have the dependencies installed, if you don't know what that means at all you should first get some basic linux knowledge, install whatever is easiest to learn (I guess Ubuntu) and play with that a while.
* a small (5MB) TrueCrypt (google that) encrypted container is created for wallet.dat file backups, all wallet.dat files are encrypted using local coin "Encrypt wallet" feature, password is randomly generated and stored in KeePassX, KeePassX database is stored on the same TrueCrypt container. Master KeePassX password in my head. TrueCrypt container password in my head.
* backup wallet.dat for a coin to TrueCrypt after creating a new receiving address. Close (unmount) TrueCrypt when not using, never keep it open. The 5MB crypt file is then copied to an USB flash hidden in the house, also copied to Dropbox. Dropbox can't determine incremental changes for TrueCrypt volumes so you have to have a small file (hence the 5MB) for container because it's sync'ed full after every modification.
* 2FA on all services, instantly withdraw to personal wallet what you're not trading.
That's about it.