Author

Topic: Bitgo Hacked? My computer Hacked? Or false positive? (Read 165 times)

legendary
Activity: 1666
Merit: 1285
Flying Hellfish is a Commie
I assure that that if BitGo was hacked we'd be in full meltdown mode, as a good amount of large exchanges (and large other companies) in crypto that control mass amounts of bitcoin use bitgo for their backend or even reserves. So this is probably just a false positive or somthing off of your side, nothing to be worried about if you're using 2fa anyway. Which I would always recommend

Or buy a trezor or a ledger.
jr. member
Activity: 336
Merit: 5
Culotte Jaune Officielle
If BitGo was hacked it would be all over the news already and with a lot of posts about it here.
Surely a false positive I would say
hero member
Activity: 1065
Merit: 510
This is the js file (which can be found in the BitGo login page) and that your antivirus is detecting as malicious: https://www.bitgo.com/js/BitGoJS.14b27091ae4a5ec9.js

And there is nothing wrong with it (AFAIK). Thus this is most likely just a false positive.
Ive been getting this notification too which it is detected with my ESET nod32 AV. which I do really see this is just a false positive yet that js file is really just into that log-in page and I had encountered some sites which do have that kind of detection. Sometimes these AV make me paranoid. Cheesy
full member
Activity: 211
Merit: 100
1ACEGiLZnZoG7KUNkMwAT8tBuJ6jsrwj5Q
I have another computer running avg windows and there is no issue. Cry

However, after installing avg antivirus on another mac computer and the error pops up also when visiting the site so Im a little bit more relieved, the strange thing is that scanning the direct js link OR scanning that js file (after dl) even on avg shows no virus.

The trojan name just by itself JS::Banker-ACK scares the shit out of me, especially showing on bitgo.. .  Shocked
full member
Activity: 211
Merit: 100
1ACEGiLZnZoG7KUNkMwAT8tBuJ6jsrwj5Q
can please someone using avg visit that login page and check if it also appears?

I use avg mac for some years and this is the first time.. weird

I have tried different browsers / vpn and the error persists
legendary
Activity: 2758
Merit: 6830
This is the js file (which can be found in the BitGo login page) and that your antivirus is detecting as malicious: https://www.bitgo.com/js/BitGoJS.14b27091ae4a5ec9.js

And there is nothing wrong with it (AFAIK). Thus this is most likely just a false positive.
copper member
Activity: 2142
Merit: 1305
Limited in number. Limitless in potential.
Seems it only appears on your computer or on AVG database particularly, I didn't get any error or alert when visiting the site using Norton while Bitgo has good reputation IMO

3. Your connection is intercepted by hacker or 3rd party. Try to use BitGo with paid VPN or Tor with proper configuration.
This might be the close reason of your issue.
legendary
Activity: 1946
Merit: 1427

Seems like this happend to some people before, https://twitter.com/jronkain/status/919923991313375233 This happend in 2017. If that was real i think some more people would've noticed by now.

https://www.virustotal.com/url/5f41b558cc90c0dd5c8a6506f67ecb38daf343eb4375565ef8adcecaf3187bbb/analysis/1526061180/ gives a 0 / 67.
(Although i doubt that it scanned it correctly.)

Bitgo.com is a pretty popular site though, so if there was indeed something like a keylogger injected into the site, i'm sure people would've noticed by now.

Also, https://github.com/bitgo most of their wallets & tools seem to be open source. Not sure if their website itself is, but trying to hide a keylogger there really doesn't make sense.
full member
Activity: 211
Merit: 100
1ACEGiLZnZoG7KUNkMwAT8tBuJ6jsrwj5Q
Jump to: