[ANN][EXCHANGE] Poloniex - Crypto Exchange with BTC/NXT - page 131.

ErnieRox

full member

Activity: 222

Merit: 101

Novus ordo seclorum

Quote from: rapeghost on May 02, 2014, 10:27:10 PM

Quote from: Mortimer452 on May 02, 2014, 10:19:14 PM

Wow, that is unbelievable. So you're saying that someone called your hosting provider, posed as a Poloniex employee, and actually managed to convince the support staff to give them access to one of your servers? Holy hell. One would think there would be some authentication measure in place to prevent such a thing (there probably are, they just weren't followed).

Glad to hear you are taking your business elsewhere.

You'd be surprised man. Lots of times companies are so anxious to 1. get you off the phone 2. get issues handled quickly so they dont get bitched. Stuff slips through the cracks all the time. I used to work at a host and we had ZERO authentication methods when I started. Luckily I changed policy and made that impossible but some places just dont even think of it.

yep that's happened to a few businesses Tongue

k!lowatts

member

Activity: 98

Merit: 10

3rd time the charm Roll Eyes

andyatcrux

legendary

Activity: 938

Merit: 1000

Quote from: codmaster on May 02, 2014, 10:05:21 PM

quote, unquote, "technically", "us "(the people), cannot be, "because we are, people," unquote, bend each other over, in an enviroment, where , "we" the people, are (A) ment to, take "b" the power away from "c".unts" the governtments, to "C" how we can free ourslelfs from, "cunts", and sort our shit out and work together

.....................

Meth?

provenceday

legendary

Activity: 1148

Merit: 1000

thanks for the update!

much appreciated!

blitz78

newbie

Activity: 50

Merit: 0

Quote from: YoyodyneSystems on May 02, 2014, 10:25:53 PM

Go party on this lovely Friday night and come back later.

And while you are partying I will login the first minute the site is up and buy any and all XBC that are left.

gonna hold ya to that mate

rapeghost

sr. member

Activity: 419

Merit: 250

Quote from: Mortimer452 on May 02, 2014, 10:19:14 PM

Wow, that is unbelievable. So you're saying that someone called your hosting provider, posed as a Poloniex employee, and actually managed to convince the support staff to give them access to one of your servers? Holy hell. One would think there would be some authentication measure in place to prevent such a thing (there probably are, they just weren't followed).

Glad to hear you are taking your business elsewhere.

You'd be surprised man. Lots of times companies are so anxious to 1. get you off the phone 2. get issues handled quickly so they dont get bitched. Stuff slips through the cracks all the time. I used to work at a host and we had ZERO authentication methods when I started. Luckily I changed policy and made that impossible but some places just dont even think of it.

YoyodyneSystems

legendary

Activity: 1386

Merit: 1023

Go party on this lovely Friday night and come back later.
And while you are partying I will login the first minute the site is up and buy any and all XBC that are left.

In all seriousness Polo and it's trollbox are like my drug of choice.
I am having withdrawal symptoms. Must ... have... my Polo.

Be sure to turn on XBC market first please.

chiznitz

hero member

Activity: 574

Merit: 500

Quote from: Mortimer452 on May 02, 2014, 10:19:14 PM

Wow, that is unbelievable. So you're saying that someone called your hosting provider, posed as a Poloniex employee, and actually managed to convince the support staff to give them access to one of your servers? Holy hell. One would think there would be some authentication measure in place to prevent such a thing (there probably are, they just weren't followed).

Glad to hear you are taking your business elsewhere.

Sent a full BTC in today so I was a little worried. My question though is this.

If they allowed this server to be logged in to via root. Are you saying that they actually edited firewall rules to allow this persons ip to access port 22? Or was this person physically in the data center? Or ...Do you not actually lock down your networking?

MayVT

newbie

Activity: 6

Merit: 0

I still waiting for poloniex, don't know what to do

ErnieRox

full member

Activity: 222

Merit: 101

Novus ordo seclorum

thanx busoni. i can see the trollbox has been moved here during downtime Grin

Mortimer452

hero member

Activity: 532

Merit: 500

Wow, that is unbelievable. So you're saying that someone called your hosting provider, posed as a Poloniex employee, and actually managed to convince the support staff to give them access to one of your servers? Holy hell. One would think there would be some authentication measure in place to prevent such a thing (there probably are, they just weren't followed).

Glad to hear you are taking your business elsewhere.

peer2peer360

hero member

Activity: 561

Merit: 500

Institute of Advance Blockchain Research

As Many have come to get a better understanding of the sitution on the thread

I can confirm through my own experience I've had with poloniex as a
Trustworthy exchange & not one of those Pop~Up~over~night exchanges.

Poloniex has earned my business respectfully.

Recently, Tristan & Angela handled a very unique matter
With the highest & up most integrity.

We are being assured that funds (wallets) are safe & being
Kept in cold storage..

I could be wrong usually & normally Iam
(always perform due diligence)

I agree, less interruption is always better

blitz78

newbie

Activity: 50

Merit: 0

Quote from: seasky on May 02, 2014, 09:54:07 PM

Poloniex Unable to login.What reason.

wallet server was hacked mate, all good though as nothing was taken

chickenliver503

full member

Activity: 204

Merit: 100

Quote from: seasky on May 02, 2014, 09:54:07 PM

Poloniex Unable to login.What reason.

Quote from: sussex on May 02, 2014, 05:48:50 PM

Quote from: busoni on May 02, 2014, 05:44:03 PM

All funds are safe. Poloniex does use cold wallets.

What happened was an attacker used social engineering to gain root access to a wallet server. This was made possible by absolutely jaw-dropping negligence on the part of the hosting provider. Fortunately, I caught the attempt in time and was able to shut down the server before anything was taken. All BTC has been moved into cold storage, and then next step is to set up a new server with a different provider.

Please stop sending BTC to your old BTC deposit addresses. The funds will not be lost, but all new addresses must be generated, as I must assume the old wallet is compromised. It is very unlikely that it was, but "unlikely" is not good enough.

I appreciate everyone's patience while I take proper security measures before bringing the exchange back online.

codmaster

full member

Activity: 140

Merit: 100

quote, unquote, "technically", "us "(the people), cannot be, "because we are, people," unquote, bend each other over, in an enviroment, where , "we" the people, are (A) ment to, take "b" the power away from "c".unts" the governtments, to "C" how we can free ourslelfs from, "cunts", and sort our shit out and work together

.....................

blitz78

newbie

Activity: 50

Merit: 0

Poloniex down Sad

wtf am i gonna do all day Shocked

ebliever

legendary

Activity: 1708

Merit: 1036

Good job and thank you for your diligence!!! I hope you are able to find server providers that take security seriously (and are willing to make good on any losses from their negligence on such matters - they ought to be insured for that sort of thing or something, IMHO.) Just hope you can get back up in time to have fun with the PIGs this weekend... :-)

seasky

newbie

Activity: 7

Merit: 0

Poloniex Unable to login.What reason.

TheInfidel

hero member

Activity: 532

Merit: 500

Better die on your feet, than live on your knees

Quote from: smak on May 02, 2014, 09:31:23 PM

live and learn busoni thats life.. smooth seas dont make skilled sailors.

translation: a reputation forged through adversity holds stronger than one untested.

have you repaid completely the lost btc from previous mishap?

Since you don't know the answer to your question, I gather you are not one of the affected in that incident.
The reason for you bringing up a completely unrelated incident can therefore only be to raise concern about the matter at hand.

But, since you asked, those of us who are still owed money, receive our payouts like clockwork every Sunday.

Now stop picking on one of the only honest people in the crypto world.

codmaster

full member

Activity: 140

Merit: 100

fact im wondering, do i have to read 98 pages of crap, to find out what im interested in, language im english pal direct decendant, quote me happy is all im asking

Topic: [ANN][EXCHANGE] Poloniex - Crypto Exchange with BTC/NXT - page 131. (Read 272454 times)