More bad news.
tl;dr: someone found a way to use some users leaked data from another site to log in on polo
_AND_ bypass 2fa
_completely_. The last hit was then, the poor mail-site the user used which "on autopilot" crawled the links in his emails and this way confirmed the withdraw order....
https://www.reddit.com/r/PoloniexForum/comments/6t4tvs/i_managed_to_bypass_2fa_and_email_verification_is/I still can't say if poloniex is going to 'gox its users, i think it will not but that just solely based on my opinion. In real, it's going to be a 50:50 chance...
So ... watch your funds and accounts closely,
CHANGE YOUR PASSWORD IF YOU EVER USED IT ELSEWHERE, A.S.A.P.! and .. well.... be careful.
I think there is some serious shit going on over there at poloniex. As they recovered once from some stolen funds and paid users out of their pocket, there is still some chance that no one really makes losses on whatever happens....
But .. having my coins frozen for weeks, is already something i won't handle lightly... so..
Next step, moving my litecoin out there asap, only leaving doge and stellar over there (less than 0.005btc in value).
I will keep watching what happens there.... for sure.
Hacky
P.s.: Hint: The by far best passwordmanager i ever found and i still use today is keepass, it really keeps your ass... no joke and no i don't get anything for telling that.... But i have virtually _everything_ in my .kdb file. Passwords, 2fa secrets, api keys, Sofware-Licence Keys, _pics of license badges from computers_ and what else....... It's really worth it and you find a keepass implementation for any device you want. Linux, Windows, OSX, Android, IOS, youname it, google will probably find it... -->
http://keepass.info/ 
