Pages:
Author

Topic: Atomic Wallet compromised and not safe! (Read 315 times)

legendary
Activity: 2086
Merit: 1282
Logo Designer ⛨ BSFL Division1
June 16, 2023, 02:09:31 PM
#23
They perhaps planned everything because they did not make their wallet as an open-sourced.
If they planned everything they would escape from the country long ago, so I don't believe that story.
Maybe they have one or two malicious people inside, but rest of them are probably amateurs who didnt know what was really happening.


sr. member
Activity: 336
Merit: 286
According to this news Atomic wallet team is based in Kazakhstan and they are going to have a lot of problem with their law enforcement agency.

They say that they are from Estonia and are cooperating with the authorities of their country, who are also involved in solving this crime. Investigators from Elliptic have found a link to the North Korean hackers from Lazarus Group. Thanks to tracking, $1 million of the stolen goods were frozen. It looks like Chainalysis will be joining the investigation as well.

But there is still no answer to the question why the developers still have not closed access to the compromised wallet, since they still do not have all the answers about the hack.
copper member
Activity: 1470
Merit: 1609
Bitcoin Bottom was at $15.4k
The only option left is a device which isn't connected to internet at all. If you are storing Bitcoin worth thousands, I would just make a new system or buy a laptop worth bucks just to store my crypto in it safely, and doing personal work on my main system. Too much risk involved these days with so many vulnerabilities moving around.
hero member
Activity: 2660
Merit: 651
Want top-notch marketing for your project, Hire me
Today, a cybersecurity company Match Systems published data, according to which, contrary to official statements, Atomic Wallet was not non-custodial, and they stored all private keys of users on their servers. If this turns out to be true, then everyone who has stored something on this wallet and has not yet transferred to other addresses, in my opinion, needs to do this urgently. If they cheated on this, what else could they cheat on?
I have no idea why they lie in the first place about being non-custodial wallet?
According to this news Atomic wallet team is based in Kazakhstan and they are going to have a lot of problem with their law enforcement agency.
It is stupid to see their website is still operating as normal and you can still download their software  Roll Eyes
Atomic Wallet claim to be a non-custodial wallet. They gotta be kidding because they are never a non-custodial right from the beginning and also not an open-source wallet. Besides, they have a track record of being shady right from the creation of their bounty campaign on this forum and I am surprised to see a lot of crypto investors make use of their wallet
sr. member
Activity: 602
Merit: 387
Rollbit is for you. Take $RLB token!
I have no idea why they lie in the first place about being non-custodial wallet?
According to this news Atomic wallet team is based in Kazakhstan and they are going to have a lot of problem with their law enforcement agency.
They perhaps planned everything because they did not make their wallet as an open-sourced.

This compromise can be an accident for them but can be their well plan. With the compromise, their explanation now makes no sense and it's hard to believe in their explanation and cost is paid expensively by many users.

Atomic wallet is not open source wallet. Why is Atomic wallet not open source?.

Quote
It is stupid to see their website is still operating as normal and you can still download their software  Roll Eyes
It's a joke but it's not fun at all because new people will fall into the compromised wallet software.
legendary
Activity: 2086
Merit: 1282
Logo Designer ⛨ BSFL Division1
Today, a cybersecurity company Match Systems published data, according to which, contrary to official statements, Atomic Wallet was not non-custodial, and they stored all private keys of users on their servers. If this turns out to be true, then everyone who has stored something on this wallet and has not yet transferred to other addresses, in my opinion, needs to do this urgently. If they cheated on this, what else could they cheat on?
I have no idea why they lie in the first place about being non-custodial wallet?
According to this news Atomic wallet team is based in Kazakhstan and they are going to have a lot of problem with their law enforcement agency.
It is stupid to see their website is still operating as normal and you can still download their software  Roll Eyes
sr. member
Activity: 336
Merit: 286
Today, a cybersecurity company Match Systems published data, according to which, contrary to official statements, Atomic Wallet was not non-custodial, and they stored all private keys of users on their servers. If this turns out to be true, then everyone who has stored something on this wallet and has not yet transferred to other addresses, in my opinion, needs to do this urgently. If they cheated on this, what else could they cheat on?
legendary
Activity: 2086
Merit: 1282
Logo Designer ⛨ BSFL Division1
One guy lost $8 million worth of USDT tokens from his Atomic wallet and other people are also reporting big loses, with five biggest losses recorded so far are total around $17 Millions!
Atomic wallet will not be responsible for any of this loses because their Terms of Service are stating this: "Under no circumstances will Atomic Wallet be liable to you for damages arising out of the services exceeding $50"
Atomic wallet team is contacting centralized exchanges and they are trying to prevent selling of this coins, but I think people should learn from this and stop using all closed source wallets.
https://cointelegraph.com/news/atomic-wallet-hack-losses-top-35
legendary
Activity: 1708
Merit: 1280
Top Crypto Casino
Before I used atomic wallet as another alternative wallet due to having lack of knowledge yet which is the ideal wallet, and also the flare network reward that time in XRP which is supported with this wallet, seems like this kind of indecent is inside job and if they have a good layer of security seems like immediately detected and better to disclose as soon as possible. I'm glad that I never store my funds again in their wallet also they have a large number of network fees that makes me poorer before.
hero member
Activity: 714
Merit: 1010
Crypto Swap Exchange
Atomic wallet is not open source wallet. Why is Atomic wallet not open source?.

They try to write reasons they only make that wallet partially open source, some rest parts are closed source. I don't know they told the truth or lied but in cryptocurrency wallet industry, open source, non custodial are most important features for a good wallet.

Quote
But why?

When it comes to money, it's only natural to trust no one but yourself, even more so if we're talking crypto. "Open source" doesn't necessarily translate to "secure," though.

I have used Atomic Wallet for a short period of time when I claimed some fork-shitcoins some years ago to sell them. Otherwise I prefer open-source wallets as a must. You can't look inside a black box and who has time to reverse-engineer closed-source executables. If I'd ever need such a multi-coin and multi-token wallet again and no open-source choice were available, it would've to support at least connection to a hardware wallet, so that seed and private keys are safe from the black box software.

Unfortunately that's rarely an ability of such multi-coin wallets and no, I'm not going to use shitty Ledger Live with Ledger NoNo black box firmware crap.


Thanks for the information OP although Wind_FURY had posted same thing earlier on Wallet Software board.
Placement of this topic on the Beginners & Help board conducted by the OP is quite right because the newbies who are still looking for the right wallet to be used with a good security even though the topic of atomic wallets is infiltrated by Wind_Fury on the Wallet Software Board.

It would be nice if for such important warnings the topic openers would link similar threads with each other once they know about it. For me it's totally ok and necessary to post such warnings at some meaningful places in the forum, especially where newbies might go to and also at the appropriate sections of the forum.
hero member
Activity: 840
Merit: 932
This is one of the reasons why I support creating same topics in different boards by different members on this forum, I don't visit ever board and I find it weird when people reply that your post have been created by someone else already, do you know that I am just knowing about this right now? And I am also a Atomic wallet user? Imagine if the other post from Wind_FURY stays in the same thread I wouldn't have know.

I would say this kind of repeated posts like this by the OP can be excused and even be supported because it is about security, so it is Better to have them on many boards just for awareness sake. That is why I appreciate his effort but my reason for posting the first initial post link is to just make people aware that it has been posted before and maybe people could get more information from the discussion going on there.

But overall I don’t agree with you about creating same thread by different members if it is not on urgent security related issues like this. But generalizing it will only make some members probably spammers abuse this and create more exiting posts to adding more value at all.
hero member
Activity: 1246
Merit: 768
Rollbit - The #1 Solana Casino
Thanks for the information OP although Wind_FURY had posted same thing earlier on Wallet Software board.
Placement of this topic on the Beginners & Help board conducted by the OP is quite right because the newbies who are still looking for the right wallet to be used with a good security even though the topic of atomic wallets is infiltrated by Wind_Fury on the Wallet Software Board.

My message to newbie, don't think of trivial about the wallet that will be used as a place to store assets.
sr. member
Activity: 686
Merit: 403
This is one of the reasons why I support creating same topics in different boards by different members on this forum, I don't visit ever board and I find it weird when people reply that your post have been created by someone else already, do you know that I am just knowing about this right now? And I am also a Atomic wallet user? Imagine if the other post from Wind_FURY stays in the same thread I wouldn't have know.

OP, thanks for creating sometimes similar in this board section, it's how it gets to me and I have checked my wallet instantly, the little tokens I have on the wallet are still present, it could be that scammers are giving Atomic wallet users some freebies and people do like freebies isn't it?

That's one hell of a good way to steal people's funds this day, still waiting for the team to give up more information, thanks again Notblox1.
full member
Activity: 882
Merit: 207
Thanks for the information OP although Wind_FURY had posted same thing earlier on Wallet Software board.
I got to read about it. It's quite devastating I gather. This will cause people to start withdrawing their coins in a rush and some might make mistakes or don't get to do it quickly and get their coins stuck.
Such threats can in the future be evaded by not trusting any wallet wholly, always staying informed by turning on notification, reading them and turning on news channels, using wallets totally seperated from the internet interference unless you want to withdraw the coins in it. Simply put.
sr. member
Activity: 1554
Merit: 413
June 04, 2023, 12:20:24 AM
#9
Quote
Your Keys - your Crypto! Decentralized Wallet trusted by 5M+ users! DeFi Web3 NFT.
That's on their twitter page but hmmmmmm.

This is probably one of those reasons why not to choose closed source non-custodial wallet as your preferred storage. I cannot wait for the result of their internal investigation but something tells me that they will most likely blame this on their users as victims of a phishing attack. If not and they say their code was really compromised then a refund of those drained wallets is in order.
hero member
Activity: 1064
Merit: 843
June 03, 2023, 11:00:41 PM
#8
Well, we're still don't know what the reason of this case. Most people are use Atomic wallet due to non custodial and it support multiple coins, but they're forget the wallet is closed source. Be careful, trust wallet, exodus, safepal etc could be the next, it's better to use airgap, myetherwallet or keystone.

We should use the open-source non-custodial wallet because not all custodial wallets are safe, those newbies who read this thread now might quickly import your atomic wallet seed phrase to a trusted open-source noncustodial wallet like Electrum.
Not a good way to import seed phrase from compromised wallet because it doesn't make your funds are secure enough if you move it to the secure wallet, it's better to sweep your private key [1].


[1] https://bitcointalksearch.org/topic/importing-vs-sweeping-private-keys-what-you-need-to-know-5106984
sr. member
Activity: 602
Merit: 387
Rollbit is for you. Take $RLB token!
June 03, 2023, 08:34:08 PM
#7
Stop using Atomic wallet!
Atomic wallet is not open source wallet. Why is Atomic wallet not open source?.

They try to write reasons they only make that wallet partially open source, some rest parts are closed source. I don't know they told the truth or lied but in cryptocurrency wallet industry, open source, non custodial are most important features for a good wallet.

Quote
But why?

When it comes to money, it's only natural to trust no one but yourself, even more so if we're talking crypto. "Open source" doesn't necessarily translate to "secure," though.
legendary
Activity: 2366
Merit: 1206
June 03, 2023, 06:59:26 PM
#6
Good thing you brought it up here, it posted the Wallet software section and I wished there it also bring it up here.

I saw comments that those who have been affected by the hack were those who updated to a new version and those who are not updated their application hadn't experienced the hack and their coins were still there.

We should use the open-source non-custodial wallet because not all custodial wallets are safe, those newbies who read this thread now might quickly import your atomic wallet seed phrase to a trusted open-source noncustodial wallet like Electrum.
hero member
Activity: 700
Merit: 673
June 03, 2023, 06:12:59 PM
#5
Such bad news for the wallet users, but it's a good thing that the team did not hide things within themselves because they did not want people to see their vulnerability, which they might think would be bad for their business, but they came open and clean and shared their latest discovery and still promised to share any findings with the public.

But another thing I wanted to ask without even visiting the provided link is this: does the attack also affect people who created wallets using self-custodial or other private wallets and imported their wallets to Atom wallets? I'm asking because I did this a long time ago when I imported my wallet to the Atom and Exodus wallets, but after that time I have not yet visited or logged into the wallet. Maybe they did not drop the current happenings and full details of the situation.
legendary
Activity: 2240
Merit: 1375
Fully Regulated Crypto Casino
June 03, 2023, 05:21:33 PM
#4
Yes Ive seen this news like few hours ago and this is really bad. Im reading off the replies on their tweet and read that there was possible vulnerability issue that has been addressed properly few months before and they didnt disclose it. If Im not mistaken atomic wallet is a non custodian one. This is kinda scary, for some users. They should have tighten up their security and must refund affected users if found that its their fault.
Pages:
Jump to: