Topic: Bitfinex HACKED - funds stolen ! - page 17. (Read 32160 times)

As far as I know it affects only currency impaired i.e btc. No altcoin balances would be abated to clog up the bitcoin leak.

Im OK albeit not entirely happy with the proposed way of loss socialization, and might add that bitfinex could have easily made neat profits from shorts before announcing the hack and use those for hedging against collateral damage that exchange had taken in a result of the hack.

Instead they coerce ridiculous haircut on their customers' balances. Badass move but could be the only possible option to make as more ppl as possible as whole as possible.

I think losing 36% if better than Bitfinex going full MtGox and at least they notified users straight away instead of operating as usual like Cryptsy and those 'in the know' managing to take most of their BTC and everybody else losing everything. Not an ideal solution though.

Do you know if it will be 36% of BTC or 36% of all Alt coins too?

What many are forgetting is that up until now Bitfinex has only talked.

Talk is cheap.

Believe what you see and can verify, not what they tell you.

Dammit those guys took the 120k bitcoin before I could click on hack. Now what am I to do??? Maybe I could report the thief to FBI and they will get my money for me. After all I am white, they will listen to me!!!!!

Overall its not that bad as it looked from the outset, and they are making moves on the way to recovery. I was on the fence stating they would not go full mt. gox, or otherwise this would be a collapse of the western bitcoin world. They propose 36 cut so let them work that out and settle legal ramifications pertaining to loss generalization, this may not be the best possible solution, but the least they could do to bring site functionality back online in the coming hours.

But if they are returning all the lost money then they want to prove that it is not a fake hacking or other thing they call it. Sometimes I think that this is also a marketing strategy. Trying to be popular in doing some big news.

The possibilities of conspiracy is can happen is always there but if it's correct maybe the using the 3rd parties to pretended to hack their site and stole their funds. but if that's assuming it's correct and wow it's very surprised, and do withdrawal all of your money now. just assuming.

just a conspiracy dude, i think bitfinex is stupid and lacks of defense strategy against hackers, that's why they lost money, should have stored money on cold wallet.

I recommend you to file a complain with Hong Kong police and http://www.sfc.hk or http://www.customs.gov.hk/en/consumer_protection/trade_desc/contact_us/index.html 
through an attorney from your country as soon as possible.

Bitifinex was operated by a Hong Kong company, Renrenbee Limited.

Be sure that the police will investigate your complain.Just fill it. Do not let your money to be stolen by crooks like Bitfinex (well known ex ponzi runners)

Bitfinex said that they alerted a "law enforcement" but they didn't say which one. This a lie. Hong Kong police didn't receive any complaint from Bitfinex regarding to a hack.

What on earth am I going to do with BFX tokens? I really don't want a share in an exchange that won't last much longer. I'm going to be stuck with Bitfinex for quite sometime. I had about 269.00 USD, that I received from selling some BTC. Unfortunately, I haven't given Bitfinex my KYC info. I don't intend to. I'll just have to hope they can get the exchange going, so I can purchase a coin that I can exit with.

Usually the only real winners in lawsuits are the lawyers. I was expecting more than a 36% haircut. I would not be surprised when Bitfinex comes online again if you want to unlock your account and withdraw funds you have to agree to the terms of the socialized loss. If you do not and reserve your right to sue your account stays locked. We will see.

Well, the thing is that was not one hacker, not even a group.
There was more than one group of hackers, so this is pretty strange... Im amazed that bitfinex had to have hot wallet that big, and thanks to this, hackers were able to steal those btc that have been hold on hot wallet instead of frozen... Im sorry all bitfinex users ;(

Bitfinex handled this the right way.

If they sold 120k BTC before the event and bought back right after, they could make a good fortune without much trouble. Large centralized exchanges are manipulated. That's how they make real profits. Those 0.2% trade fees are just for maintenance expenses.

yeah come on. that is the reason a third party to steal money from their customers? they just want to look responsible when they launch an scaming. maybe they are right in the hack but the hack is a party of their own

I don't beleive that bitfinex hack because they can give a 33% back funds to your account..
I think this just their reason that their hack but the truth they are not hack and they sold bitcoin and now the price of bitcoin is low they can deposit or buy bitcoins to give few funds as giveaway to others..

This would prevent a user from being able to place a sale order without first confirming with BitGo. Also, as I previously mentioned, if a customer opens a leveraged position with BTC as collateral, that declines in value, then the customer would presumably not agree to have BTC withdrawn from his account, even though this would be the appropriate thing to do.

I know that BitGo handles internal transfers differently from outright withdrawals, at least in terms of pricing (a review of their website says that internal transfers are free while withdrawals signed by BitGo start at 0.1% with volume discounts available). It would make sense for there to be different limits between internal transfers and withdrawals.

I understand that when a BitGo customer will need to create a new "account", the BitGo customer (in this case Bitfinex) will provide BitGo two public keys, and BitGo will provide the customer with one public key, all of which will be combined to create a 2-of-3 multi-sig address. Ideally, when bitfinex provides their two public keys, one of the corresponding private keys will be held in offline cold storage, and one of them will be held in their online/hot server.

I am not entirely sure how bitfinex handles the creation of BitGo wallets/accounts when a new bitfinex account is opened. Ideally, Bitfinex and BitGo have exchanged a large quantity of public keys (tens/hundreds of thousands, or even millions), so when a bitfinex customer opens their account, BitGo can simply "activate" 3 wallets/accounts for this customer. BitGo most likely does not have access to bitfinex's business records, so they will simply be told by bitfinex when a new wallet/account needs to be activated. It is possible however that Bitfinex and BitGo exchange keys at the time the new bitfinex account is created, and the attacker provdied BitGo two public keys, and BitGo provided the attacker one public key, and that the attacker would have access to both of the corresponding private keys. This would allow the attacker to potentially first direct BitGo to sign transactions moving customer BTC to these newly created "wallets" and the attacker subsequently using the two private keys that he is in possession of to create a second transaction spending the BTC to an address that he created far away from the bitfinex servers. So BitGo would have only signed "internal transfer" transactions, and the attacker signed the "withdrawal" transactions.

It appears that the attacker was able to work for several hours without detection, which IMO is a very long time for an unauthorized intruder to have access to a server. Based on the statements of bitfinex (and BitGo), it appears that bitfinex was not initially sure how the attacker was able to access their servers, and based on the fact that users are still not able to access their bitfinex accounts, they still may not know. Based on the above, I suspect that the attacker was likely able to use some kind of 0-day attack.

If you assume that the losses at Gox actually happened a long time before Feb 2014, then this is, by far the largest hack/theft of Bitcoin in history.

Most of this is of course, speculation.

Bitfinex has stolen your funds. It was NO hacker !  They will keep 36% from YOUR money, 23 MIL USD and they will continue the business. How can you let this happen?!!?!?

You must be VERY stupids to leave the things like that.

I wasn't referring to trades.  I was referring to withdrawals.  Finex said everyone on their exchange had a BitGo account.  If this is true, Finex, did not use commonsense as I had previously mentioned in terms of withdrawals.

However, you make a great point.  If this was done in a way to make it appear as there were trades and simply transfer to settle trades between accounts, that's an entirely different issue to contend with.