Bitstamp hack confidential document has been leaked

RocketSingh

legendary

Activity: 1662

Merit: 1050

Quote from: RodeoX on August 12, 2015, 12:38:30 PM

Quote from: thejaytiesto on August 12, 2015, 12:33:17 PM

Quote from: Brad Harrison on August 10, 2015, 09:48:00 PM

You can use online PDF viewers so you do not have to open it with your pc

This will not save you if the PDF has inbuilt malicious code on it. It's irrelevant if you open it by downloading it on your PC or temporally on a website. If you are on Windows I wouldn't open dodgy ass PDFs.

+1
PDF files can store whole directory structures and all sorts of code. I would not open a PDF in a windows computer at all.

Then, how does one read this PDF safely on a windows computer/phone ? Is it safe to read it in Tor browser ?

ammy009

sr. member

Activity: 303

Merit: 250

very interesting ............

RocketSingh

legendary

Activity: 1662

Merit: 1050

Quote from: Snorek on August 12, 2015, 12:48:22 PM

Do you know any exchange where you don't have to sign with your name and address?

1. www.LocalBitcoins.com

2. www.100bit.co.in

Snorek

legendary

Activity: 1400

Merit: 1001

Quote from: Thekool1s on August 11, 2015, 03:32:02 AM

Quote from: Amph on August 11, 2015, 03:11:00 AM

it is the reason why i would not give my ID ever to exchange, in the remote case that they are hacked, which isn't even so remote, because it happened, hacker can steal your identity and use it for malicious activity

it can be very dangerous

Yup its a common sense, and most of these hacks are done by themselves to make profits, Hacking is just a cover up because they know the loop holes etc. We cant trust any exchange with our coins or ID cards because I think we have learned many times already

But 99% exchanges I know forces you to give them your name and address from the start. And if you sell/buy more crypto/fiat than certain threshold they in addition want scans of your IDs.
Do you know any exchange where you don't have to sign with your name and address?

RodeoX

legendary

Activity: 3066

Merit: 1147

The revolution will be monetized!

Quote from: thejaytiesto on August 12, 2015, 12:33:17 PM

Quote from: Brad Harrison on August 10, 2015, 09:48:00 PM

You can use online PDF viewers so you do not have to open it with your pc

This will not save you if the PDF has inbuilt malicious code on it. It's irrelevant if you open it by downloading it on your PC or temporally on a website. If you are on Windows I wouldn't open dodgy ass PDFs.

+1
PDF files can store whole directory structures and all sorts of code. I would not open a PDF in a windows computer at all.

thejaytiesto

legendary

Activity: 1358

Merit: 1014

Quote from: Brad Harrison on August 10, 2015, 09:48:00 PM

You can use online PDF viewers so you do not have to open it with your pc

This will not save you if the PDF has inbuilt malicious code on it. It's irrelevant if you open it by downloading it on your PC or temporally on a website. If you are on Windows I wouldn't open dodgy ass PDFs.

LiteCoinGuy

legendary

Activity: 1148

Merit: 1011

In Satoshi I Trust

I advise everyone on Firefox to be EXTREMELY careful and to update Firefox ASAP as there is a file stealer exploit, when opening pdf, and I find it very suspicious to see bitcoin pdf getting posted all over. Even tho this might not apply to the OP, it's good to know and to be careful.

http://www.zdnet.com/article/mozilla-urges-users-to-update-firefox-with-file-stealing-exploit-in-wild/ http://gizmodo.com/theres-a-firefox-exploit-in-the-wild-you-should-update-1722658068 http://www.cnet.com/news/firefox-users-security-flaw-to-fix/

Thekool1s

legendary

Activity: 1512

Merit: 1218

Change is in your hands

Quote from: Amph on August 11, 2015, 03:11:00 AM

it is the reason why i would not give my ID ever to exchange, in the remote case that they are hacked, which isn't even so remote, because it happened, hacker can steal your identity and use it for malicious activity

it can be very dangerous

Yup its a common sense, and most of these hacks are done by themselves to make profits, Hacking is just a cover up because they know the loop holes etc. We cant trust any exchange with our coins or ID cards because I think we have learned many times already

Amph

legendary

Activity: 3206

Merit: 1069

it is the reason why i would not give my ID ever to exchange, in the remote case that they are hacked, which isn't even so remote, because it happened, hacker can steal your identity and use it for malicious activity

it can be very dangerous

SteadyCryptos

newbie

Activity: 7

Merit: 0

Careful with those PDF files appearing everywhere all of a sudden, there's an exploit on firefox that allow your file (including wallet.dat) to be stolen when opening a pdf..

Update firefox ASAP!

http://www.zdnet.com/article/mozilla-urges-users-to-update-firefox-with-file-stealing-exploit-in-wild/
http://gizmodo.com/theres-a-firefox-exploit-in-the-wild-you-should-update-1722658068

coinableS

legendary

Activity: 1442

Merit: 1179

This was a big deal when it happened. It was down for days, my loan on BTCjam was linked to the BTCjam price in BTC so if the price fell, my payments increased and I thought it could create a flash crash. So I just paid the loan off right then. Anyways, I don't think bitstamp's image really fully recovered from this hack, they used to be one of the big boys and now bitfinex took their place.

EternalWingsofGod

hero member

Activity: 700

Merit: 500

Quote from: GermanGiant on August 10, 2015, 07:54:26 PM

https://bitstampincidentreport.files.wordpress.com/2015/07/270137312-bitstamp-incident-report-2-20-15.pdf

Source: https://www.reddit.com/r/bitcoin_uncensored/comments/3gidpl/ever_wonder_what_happened_with_the_bitstamp_hack/

Warning: I found some links in the PDF, which I did not click. Be careful about them as those may take you to some malicious place.

Gave it a read thanks for sharing.
I found the part about it being an active investigation interesting and wonder if the culprit was caught also the effort the hacker put in the attack.
Bitstamp did not restart their server but acted and used a backup, and Xapo was not a bad choice so respect there.

Wary

hero member

Activity: 798

Merit: 1000

Who's there?

"Bitstamp is working closely with the Secret Service, FBI and UK cybercrime investigators to apprehend and prosecute the hacker, and we are very close to doing so."

Not as close as they thought Sad

. Half-year have passed and still no arrests.

Outlander

legendary

Activity: 1218

Merit: 1000

Thanks for sharing! Phishing attack is like overwhelming waves. The hackers can target the hot wallets easily!

BTCjust

sr. member

Activity: 241

Merit: 250

that can be called "confidential document"?

Brad Harrison

full member

Activity: 168

Merit: 100

You can use online PDF viewers so you do not have to open it with your pc

TrueBeliever

member

Activity: 78

Merit: 10

very interesting reading. thanks for sharing.

GermanGiant

hero member

Activity: 784

Merit: 500

https://bitstampincidentreport.files.wordpress.com/2015/07/270137312-bitstamp-incident-report-2-20-15.pdf

Source: https://www.reddit.com/r/bitcoin_uncensored/comments/3gidpl/ever_wonder_what_happened_with_the_bitstamp_hack/

Warning: I found some links in the PDF, which I did not click. Be careful about them as those may take you to some malicious place.

Topic: Bitstamp hack confidential document has been leaked (Read 1329 times)