Bitcoin Hack | Bitcointalksearch.org

DannyHamilton

legendary

Activity: 3472

Merit: 4801

Quote from: ghost15 on July 06, 2016, 11:46:11 AM

may be you are right, but if you watch the deposite and withrawal time :
(Fee: 0.00012 BTC - Size: 192 bytes) 2016-07-06 01:55:17
(Fee: 0.0001 BTC - Size: 223 bytes) 2016-07-06 01:55:17
no human or software can decode a pass word with such speed and transferred the money in less than a second

Hackers have already decoded all the easy passwords.

They have software that is constantly watching the network for someone to create a transaction with an address from one of the easy passwords.

When the software receives a transaction that used one of the easy password addresses, it immediately sends out a transaction that takes the bitcoins.

It takes MUCH less than a second for the software to create the new transaction to steal the bitcoins.

ghost15

sr. member

Activity: 392

Merit: 250

we are still here and we will stay forever.

Quote from: DannyHamilton on July 06, 2016, 11:36:41 AM

Quote from: ghost15 on July 06, 2016, 11:31:06 AM

used a pass phrase in an other site to calculate hash and get the secret Exponent

If you used a weak password, then this was your mistake.

Quote from: ghost15 on July 06, 2016, 11:31:06 AM

the site save a copy of your private key for futur use.

Perhaps. Or maybe you just used a very weak passphrase. I haven't had a chance to review the code from the site yet. It certainly is possible that the site is stealing private keys, but it's also very possible that you aren't using a strong enough passphrase.

may be you are right, but if you watch the deposite and withrawal time :
(Fee: 0.00012 BTC - Size: 192 bytes) 2016-07-06 01:55:17
(Fee: 0.0001 BTC - Size: 223 bytes) 2016-07-06 01:55:17
no human or software can decode a pass word with such speed and transferred the money in less than a second

raphma

sr. member

Activity: 350

Merit: 250

there are so many secure ways to to this and people still try these unknown websites to generate a private key.
bitcoin is money... dont trust your money to any place/wallet/investment/person/etc/etc, you will probably lose it all.

DannyHamilton

legendary

Activity: 3472

Merit: 4801

Quote from: ghost15 on July 06, 2016, 11:31:06 AM

used a pass phrase in an other site to calculate hash and get the secret Exponent

If you used a weak password, then this was your mistake.

Quote from: ghost15 on July 06, 2016, 11:31:06 AM

the site save a copy of your private key for futur use.

Perhaps. Or maybe you just used a very weak passphrase. I haven't had a chance to review the code from the site yet. It certainly is possible that the site is stealing private keys, but it's also very possible that you aren't using a strong enough passphrase.

ghost15

sr. member

Activity: 392

Merit: 250

we are still here and we will stay forever.

Quote from: DannyHamilton on July 06, 2016, 11:22:20 AM

Did you use a random "Secret Exponent" or did you enter a Passphrase?

used a pass phrase in an other site to calculate hash and get the secret Exponent then used this latest one in the site mentioned to get a privat key and address, ther is no deffirence in the both cas, as montioned frome NeuroticFish the site save a copy of your private key for futur use.

DannyHamilton

legendary

Activity: 3472

Merit: 4801

Did you use a random "Secret Exponent" or did you enter a Passphrase?

If you used a Passphrase, and the passphrase wasn't strong enough, then it is easy for hackers to steal your bitcoins, and it was your mistake to use such a weak Passphrase.

If you used a random "Secret Exponent", then the website is probably a scam and designed to create bitcoin addresses for which the scammer already has the keys.

mcb1221

legendary

Activity: 1162

Merit: 1000

Quote from: ghost15 on July 06, 2016, 11:07:02 AM

Quote from: pereira4 on July 06, 2016, 11:01:15 AM

What do you mean you used a website to generate a private key? What online wallet are you using? If you generated it in blockchain.info then I doubt it since it's a pretty respected site and i doubt they would fuck up that bad... what did you do exactly to generate the private key?

i have my blockchaine wallet, androide wallet and descktope wallet, i'm doing this to test the reliability of this fucking site and to prevent others with proof.

well that is good but i think the private keys should be removed from your wallet as you might again fell sending some coins to it.
if you really want to aware others about the scam site then please move this thread to scam accusation section.
do write the scam report in proper format.

ghost15

sr. member

Activity: 392

Merit: 250

we are still here and we will stay forever.

Quote from: pereira4 on July 06, 2016, 11:01:15 AM

What do you mean you used a website to generate a private key? What online wallet are you using? If you generated it in blockchain.info then I doubt it since it's a pretty respected site and i doubt they would fuck up that bad... what did you do exactly to generate the private key?

i have my blockchaine wallet, androide wallet and descktope wallet, i'm doing this to test the reliability of this fucking site and to prevent others with proof.

oaz7t

full member

Activity: 269

Merit: 101

Quote from: ghost15 on July 06, 2016, 11:02:01 AM

the site used is: http://offlinebitcoins.com you should ignore and do not use this site and no other that offers the same kind of ervice

there isn't also https protection... maybe it's a site create ad hoc for stealing new priv key

Kprawn

legendary

Activity: 1904

Merit: 1074

Next time go to https://www.bitaddress.org and download the site to your desktop and then go offline and save the file to another computer that are not connected to the internet {use memory stick}

Generate all your paper wallets and Bitcoin addresses on that computer, but do not put it online ever again. Wink

..... or you could download it here -> https://github.com/pointbiz/bitaddress.org

I would never trust any online site that generates Bitcoin addresses and private keys online... it's just too risky.. you do not know who is looking and what they save on their site. Angry

ghost15

sr. member

Activity: 392

Merit: 250

we are still here and we will stay forever.

the site used is: http://offlinebitcoins.com you should ignore and do not use this site and no other that offers the same kind of ervice

pereira4

legendary

Activity: 1610

Merit: 1183

What do you mean you used a website to generate a private key? What online wallet are you using? If you generated it in blockchain.info then I doubt it since it's a pretty respected site and i doubt they would fuck up that bad... what did you do exactly to generate the private key?

NeuroticFish

legendary

Activity: 3668

Merit: 6382

Looking for campaign manager? Contact icopress!

Quote from: ghost15 on July 06, 2016, 10:43:49 AM

I just generate a private key from a website

So you used a third party to generate your wallet's private key.
That's not a hack. That's simple and plain stealing. The website you used gave you the private key and also saved it for future use by the website owner.
And that can happen to whoever relies on 3rd party instead of proper local safe wallet.

mcb1221

legendary

Activity: 1162

Merit: 1000

it is always better to generate private keys on your offline computer ,actually there are many JavaScript based applications that let you generate private keys on offline pcs.
as the bitcoin price is increasing people are getting greedy and are thinking of new ways to scam. in the above transaction i see that the user has tried to double spend his some btc.

oaz7t

full member

Activity: 269

Merit: 101

Quote from: ghost15 on July 06, 2016, 10:43:49 AM

I just generate a private key from a website, and to test the key I made a transaction of 1MBTC,and I was surprised to see my transaction change destination in less than a second.
this is the transaction id: https://blockchain.info/tx/3a250f4788bc20c0ec1a4495325c1907dbcdb3f36200743374b1d5301b9882bb
it maybe a small amount, I tried to follow this transaction and I found this other one:
https://blockchain.info/tx/96c9bf1f0d91d9187be42142d54661ad4b16ec91dbe4ebde1bb9401ac62cce90
probably belonging to the hacker, and also this message:
Warning! this transaction is a double spend. You should be extremely careful when trusting any transactions to/from this sender. 159533876 159533864
with an amount of + 49btc, and other address in relation to the same persone containing unspent amount among them an address belonging to a surnamed waxmiguel.

explanation and informatons on this topic are welcome to prevent the potential next victims.

maybe the priv key was not really randomized but create ad hoc from a malicious site?

ghost15

sr. member

Activity: 392

Merit: 250

we are still here and we will stay forever.

I just generate a private key from a website, and to test the key I made a transaction of 1MBTC,and I was surprised to see my transaction change destination in less than a second.
this is the transaction id: https://blockchain.info/tx/3a250f4788bc20c0ec1a4495325c1907dbcdb3f36200743374b1d5301b9882bb
it maybe a small amount, I tried to follow this transaction and I found this other one:
https://blockchain.info/tx/96c9bf1f0d91d9187be42142d54661ad4b16ec91dbe4ebde1bb9401ac62cce90
probably belonging to the hacker, and also this message:
Warning! this transaction is a double spend. You should be extremely careful when trusting any transactions to/from this sender. 159533876 159533864
with an amount of + 49btc, and other address in relation to the same persone containing unspent amount among them an address belonging to a surnamed waxmiguel.

explanation and informatons on this topic are welcome to prevent the potential next victims.

Topic: Bitcoin Hack (Read 992 times)