Pages:
Author

Topic: Backdoor in 1337 wallet...?! (Read 1785 times)

legendary
Activity: 1540
Merit: 1011
FUD Philanthropist™
November 29, 2015, 11:40:43 PM
#32
ok, I am not pointing fingers but maybe dev explain why 1337 qt windows binary needs clipboard permission, I blocked access and it still works without it, but why? this is the first QT wallet that needs to read the clipboard illegal on a non-system operation, for example I copy and paste something to it that's legal, but I copy elsewhere and it reads it that's not legal.

awaiting dev reply, love the coin, too stupid to compile my own wallet, bought bunch of the crypto to start staking and support the network, only if yobit release my withdrawals.

Don't be surprised by that i have seen a LOT of wallets ask for that exact permission with my security.

My password manager program "Password Depot" prompts me for any windows QT i have run.
It warns me that they all tried to access the clipboard info.

I don't have any info on that but i have seen it on all clean wallets.
Don't be alarmed by that.. it's normal.

I have used a LOT of wallets too Wink

I got up to 15 gigs worth before i started deleting them LOL
hero member
Activity: 532
Merit: 500
Offer escrow, receive negative trust
November 29, 2015, 11:25:26 PM
#31
Not surprizing, people should always check first what they download. Especially if you hold large sums on your PC.

An antivirus scan is always recommended. BURST doesnt have backdoors in its wallets thats for sure.

Well you sure seem un-biased, judging by your profile..... Grin nice price rise recently, congrats Smiley

Well I`m just a user of BURST and managing the INCOME asset of the BURST asset exchange.

I`m not in the dev team.

How does the income asset work?  I found a link but it doesn't explain much.  How far along the roadmap are you?  I could offer my assistance if it's needed - just shoot me a PM if so!  I'd be glad to help - I like sharing my knowledge, and assisting in any way I can to as many coins as possible (this acct. isn't my main).
hero member
Activity: 504
Merit: 512
November 28, 2015, 12:25:24 AM
#30
Not surprizing, people should always check first what they download. Especially if you hold large sums on your PC.

An antivirus scan is always recommended. BURST doesnt have backdoors in its wallets thats for sure.

Well you sure seem un-biased, judging by your profile..... Grin nice price rise recently, congrats Smiley

Well I`m just a user of BURST and managing the INCOME asset of the BURST asset exchange.

I`m not in the dev team.
hero member
Activity: 532
Merit: 500
Offer escrow, receive negative trust
November 27, 2015, 01:09:51 PM
#29
Not surprizing, people should always check first what they download. Especially if you hold large sums on your PC.

An antivirus scan is always recommended. BURST doesnt have backdoors in its wallets thats for sure.

Well you sure seem un-biased, judging by your profile..... Grin nice price rise recently, congrats Smiley
hero member
Activity: 504
Merit: 512
November 27, 2015, 01:14:50 AM
#28
Not surprizing, people should always check first what they download. Especially if you hold large sums on your PC.

An antivirus scan is always recommended. BURST doesnt have backdoors in its wallets thats for sure.
legendary
Activity: 3976
Merit: 1421
Life, Love and Laughter...
November 26, 2015, 11:52:09 PM
#27
A coin name l337 just screams "hidden virus!"

Or "pwned!"
sr. member
Activity: 431
Merit: 250
November 26, 2015, 11:17:09 PM
#26
I have used it for a while, no problems at all, I used sandbox to see if it's going to leave something behind, nothing happend, but still I need dev to come out and tell me what he compiled in there, because I know for sure that you can bypass sandbox, and I know for sure that you can melt a trojan or anything, and I know for sure that a staking wallet will always be online to stake so the trojan don't need to be in the system, and I know for sure that he can use the peer to peer as a network to host his trojan without a central server, because I have done all of this crap when I was a kid, there is a known peer to peer trojan currently that can steal all kinds of wallet available for only 0.1 BTC and it's called black shade or something and it's totally FUD, also zeus became p2p and source is available online, it can easily bind with the wallet and connections would seem normal, and I have seen many members from BTT on hackforums, so please come out and tell us.

- for now I would recommend using paper wallets or running the wallet on a VM.
full member
Activity: 140
Merit: 100
November 26, 2015, 10:53:47 PM
#25
A coin name l337 just screams "hidden virus!"
i agree... why would you trust a coin that has this title, it is obvious it is not there for long run.
hero member
Activity: 532
Merit: 500
Offer escrow, receive negative trust
November 26, 2015, 10:42:36 PM
#24
How is something like this possible.  What is the purpose of the virus.  If something like this got into the system, would it not crash the whole system for that coin?  I knew it would only be a matter of time before something like this happened.

what do you mean by 'crash the system'?  You mean crash the price, or the network itself?  If implemented properly, a backdoor could just send all the requested user information to the dev, while the coin network runs as expected from end-user's standpoint.  I'm not saying this is such a case, but in theory it is totally plausible.
hero member
Activity: 588
Merit: 500
November 25, 2015, 09:13:27 PM
#23
How is something like this possible.  What is the purpose of the virus.  If something like this got into the system, would it not crash the whole system for that coin?  I knew it would only be a matter of time before something like this happened.
hero member
Activity: 532
Merit: 500
Offer escrow, receive negative trust
November 25, 2015, 07:33:56 PM
#22
ok, I am not pointing fingers but maybe dev explain why 1337 qt windows binary needs clipboard permission, I blocked access and it still works without it, but why? this is the first QT wallet that needs to read the clipboard illegal on a non-system operation, for example I copy and paste something to it that's legal, but I copy elsewhere and it reads it that's not legal.

awaiting dev reply, love the coin, too stupid to compile my own wallet, bought bunch of the crypto to start staking and support the network, only if yobit release my withdrawals.

Weird stuff going on...thanks for your input, let's see what the dev has to say about this  Roll Eyes
sr. member
Activity: 431
Merit: 250
November 14, 2015, 02:56:46 PM
#21
ok, I am not pointing fingers but maybe dev explain why 1337 qt windows binary needs clipboard permission, I blocked access and it still works without it, but why? this is the first QT wallet that needs to read the clipboard illegal on a non-system operation, for example I copy and paste something to it that's legal, but I copy elsewhere and it reads it that's not legal.

awaiting dev reply, love the coin, too stupid to compile my own wallet, bought bunch of the crypto to start staking and support the network, only if yobit release my withdrawals.
full member
Activity: 182
Merit: 100
★YoBit.Net★ 350+ Coins Exchange & Dice
November 14, 2015, 01:59:47 PM
#20
i was wondering that the User which open this thread never reply anything else . about his issue .

Good question, maybe he thinked that was useless to insist on something he knows that doesn't exist......
legendary
Activity: 2282
Merit: 1051
unnamed.Exchange, join the Cool Kids!!!
November 14, 2015, 01:55:46 PM
#19
i was wondering that the User which open this thread never reply anything else . about his issue .
sr. member
Activity: 346
Merit: 250
November 11, 2015, 01:40:00 PM
#18
To be fair, it probably was really just a little bit of concern although opening a new thread for it was a bit over the top.

The registry entry is actually part of the 1337 wallet, but it's not a bad key as such. It triggered a warning in MBAM because of its name. MBAM is, usually, quite thorough and MBAM being MBAM it did warn the user even for a possible trace of Malware so he'd be able to look into it further.

For me I concluded it's just a coincidence. The registry keys below the 1337 entry are just standard keys for coin wallets and trigger no warning on their own whereas just creating a key named 1337 yourself is enough to trigger it.

Getting your windows scanned is always a good idea. (Edit/Disclaimer: This doesn't means doing something that makes someone, for example FBI, scanning your actual glass ones in some way)
full member
Activity: 182
Merit: 100
★YoBit.Net★ 350+ Coins Exchange & Dice
November 11, 2015, 06:07:49 AM
#17
Get your windows scanned..

Your post here OP shows a bad registry key.
That has no link to the wallet.. your just guessing that is what caused it (with out proof)

Any program can create a registry key.

Yeah, is what i thinked too, must be only a try to fud 1337 because at the moment is almost the most stable coin of till....
legendary
Activity: 1540
Merit: 1011
FUD Philanthropist™
November 11, 2015, 06:04:26 AM
#16
Get your windows scanned..

Your post here OP shows a bad registry key.
That has no link to the wallet.. your just guessing that is what caused it (with out proof)

Any program can create a registry key.
legendary
Activity: 2282
Merit: 1051
unnamed.Exchange, join the Cool Kids!!!
November 11, 2015, 03:43:29 AM
#15
I hope you were sarcastic against yourself

correct . but if People get confused by something like this ... they should better turn down her Internet and shut down any devices ^^
full member
Activity: 182
Merit: 100
★YoBit.Net★ 350+ Coins Exchange & Dice
November 11, 2015, 03:32:23 AM
#14
A coin name l337 just screams "hidden virus!"

indeed

I hope you were sarcastic against yourself because somebody can confuse it and you know what it could mean....
legendary
Activity: 2282
Merit: 1051
unnamed.Exchange, join the Cool Kids!!!
November 11, 2015, 03:27:24 AM
#13
A coin name l337 just screams "hidden virus!"

indeed
Pages:
Jump to: