I assure that that if BitGo was hacked we'd be in full meltdown mode, as a good amount of large exchanges (and large other companies) in crypto that control mass amounts of bitcoin use bitgo for their backend or even reserves. So this is probably just a false positive or somthing off of your side, nothing to be worried about if you're using 2fa anyway. Which I would always recommend
Or buy a trezor or a ledger.
Topic: Bitgo Hacked? My computer Hacked? Or false positive? (Read 159 times)
If BitGo was hacked it would be all over the news already and with a lot of posts about it here.
Surely a false positive I would say
Surely a false positive I would say
This is the js file (which can be found in the BitGo login page) and that your antivirus is detecting as malicious: https://www.bitgo.com/js/BitGoJS.14b27091ae4a5ec9.js
And there is nothing wrong with it (AFAIK). Thus this is most likely just a false positive.
Ive been getting this notification too which it is detected with my ESET nod32 AV. which I do really see this is just a false positive yet that js file is really just into that log-in page and I had encountered some sites which do have that kind of detection. Sometimes these AV make me paranoid. And there is nothing wrong with it (AFAIK). Thus this is most likely just a false positive.
I have another computer running avg windows and there is no issue. 
However, after installing avg antivirus on another mac computer and the error pops up also when visiting the site so Im a little bit more relieved, the strange thing is that scanning the direct js link OR scanning that js file (after dl) even on avg shows no virus.
The trojan name just by itself JS::Banker-ACK scares the shit out of me, especially showing on bitgo.. .
However, after installing avg antivirus on another mac computer and the error pops up also when visiting the site so Im a little bit more relieved, the strange thing is that scanning the direct js link OR scanning that js file (after dl) even on avg shows no virus.
The trojan name just by itself JS::Banker-ACK scares the shit out of me, especially showing on bitgo.. .
can please someone using avg visit that login page and check if it also appears?
I use avg mac for some years and this is the first time.. weird
I have tried different browsers / vpn and the error persists
I use avg mac for some years and this is the first time.. weird
I have tried different browsers / vpn and the error persists
This is the js file (which can be found in the BitGo login page) and that your antivirus is detecting as malicious: https://www.bitgo.com/js/BitGoJS.14b27091ae4a5ec9.js
And there is nothing wrong with it (AFAIK). Thus this is most likely just a false positive.
And there is nothing wrong with it (AFAIK). Thus this is most likely just a false positive.
Seems it only appears on your computer or on AVG database particularly, I didn't get any error or alert when visiting the site using Norton while Bitgo has good reputation IMO
3. Your connection is intercepted by hacker or 3rd party. Try to use BitGo with paid VPN or Tor with proper configuration.
This might be the close reason of your issue. Seems like this happend to some people before, https://twitter.com/jronkain/status/919923991313375233 This happend in 2017. If that was real i think some more people would've noticed by now.
https://www.virustotal.com/url/5f41b558cc90c0dd5c8a6506f67ecb38daf343eb4375565ef8adcecaf3187bbb/analysis/1526061180/ gives a 0 / 67.
(Although i doubt that it scanned it correctly.)
Bitgo.com is a pretty popular site though, so if there was indeed something like a keylogger injected into the site, i'm sure people would've noticed by now.
Also, https://github.com/bitgo most of their wallets & tools seem to be open source. Not sure if their website itself is, but trying to hide a keylogger there really doesn't make sense.
Jump to: