Topic: BITTREX ACCOUNT GOT HACKED NOTHING CAN BE DONE NOW - page 2. (Read 318 times)
BITTREX ACCOUNT GOT HACKED NEED HELP
So Guys recently ,I posted a thread in which i said my account got hacked and all the bitcoins were transferred by hacker to Different Address . So i already created a ticket there and they have finally replied me today
and i am posting here what they have said in their statements
Dianna (Bittrex Support)
Apr 15, 15:20 PDT
Hi,
Thank you for your inquiry.
Actions performed in the reported unauthorized access to your account required access to your email. Please make sure to secure your email account.
Please know that we take each of these reports seriously, and that we have investigated potential causes of your loss of funds. Based on information you provided and other information that we have gathered, it is clear that your login credentials (username/password combination) were lost outside of the Bittrex environment. In other words, someone stole your credentials and logged in masquerading as you. It is most likely that you (a) visited a phishing site that is designed to look and behave like Bittrex’s site (see the example below), (b) that someone has compromised your email and/or wireless mobile device account, or (c) that you used the same username/password combination for another site or service that was compromised. In each of these scenarios, the people who logged into your Bittrex account and moved your funds had already obtained your valid login credentials before they visited the Bittrex site. This is one of the hardest forms of account compromise to combat because there is no way for Bittrex to identify unauthorized parties when they are using your valid credentials.
We have observed that sometimes this type of compromise happens when a user accidentally downloads a malicious application to their phone or mobile device. As mentioned above, we have also observed several examples of phishing sites appearing on Google and other search results for “Bittrex.” Here is an example that shows the fake Bittrex sites along with the real sites.
When users click on links to these sites, they are tricked into providing their login credentials, which the phishing site owners immediately use to log into Bittrex and to conduct trades or withdrawals that move funds out of your account. These are sophisticated attacks that are very difficult, if not impossible, to reliably detect or stop in real-time. The only reliable way to prevent this from happening is to vigilantly secure your login credentials and to change them often.
While we are sorry that your funds were lost, it is ultimately your responsibility to maintain the security of your login credentials. There really is no way to recover your funds at this time. If you have not already done so, we strongly encourage you to do the following:
Always browse directly to https://www.bittrex.com instead of searching for it.
Review your recent browsing history to identify whether you unintentionally visited and surrendered your credentials to any phishing site.
Scan your computer and mobile devices for malicious software.
Change all of your passwords, and take steps to secure your other online accounts.
Change your Bittrex password to a unique and complex password that is not used anywhere else.
Check with your wireless provider to make sure that you have set your wireless account to require a unique PIN in order to make modifications to authorized users of your service.
Enable two-factor authentication on your Bittrex account, and if it was already enabled, disable and re-enable it.
Report the event to your local law enforcement and encourage them to contact us if they need additional information about the incident.
If you have disabled your account, please reply here once you have changed your password and secured your account with two-factor authentication.
If you would like to view your account logon history to conduct research about what happened at the time of compromise, you can view it by clicking “Settings->Summary.” Below you will find a copy of the relevant logs.
Activity Ip UserAgent TimeStamp
ENABLE_2FA 37.221.112.106 Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0 2019-03-17 20:19:22Z
PENDING_2FA 37.221.112.106 Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0 2019-03-17 20:19:04Z
VERIFY_WITHDRAWAL_SUCCESS 37.221.112.106 Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0 2019-03-17 20:18:28Z
WITHDRAWAL_EMAIL_SENT 37.221.112.106 Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0 2019-03-17 20:18:19Z
LOGIN 37.221.112.109 Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0 2019-03-17 20:17:31Z
VERIFY_NEW_IP 37.221.112.109 Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0 2019-03-17 20:17:16Z
VERIFY_NEW_IP 37.221.112.106 Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0 2019-03-17 20:17:15Z
UNKNOWN_IP_LOGIN 37.221.112.109 Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0 2019-03-17 20:17:04Z
LOGIN 37.221.112.106 Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0 2019-03-17 20:16:55Z
VERIFY_NEW_IP 37.221.112.106 Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0 2019-03-17 20:16:46Z
VERIFY_NEW_IP 37.221.112.110 Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0 2019-03-17 20:16:45Z
UNKNOWN_IP_LOGIN 37.221.112.106 Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0 2019-03-17 20:16:32Z
Again, we are very sorry that this happened to your account. If you have any further questions, please do not hesitate to contact us again.
Best Regards,
Dianna @ Bittrex
So , They have washed their Hands on the situation and declined to help me what's Left is Regret
I dont know how the hacker got access to my account though i always try to be secure but now who knows whats wrong that time
Requested
If anyone Interested in least helping me please Donate a small amount of bitcoin to me that would not loss you but could be a life saver for me
Thank you For Reading
DONATION - 1B7vmxMoUk4qAQZKn17NMnFEoNY18n7KQs
So Guys recently ,I posted a thread in which i said my account got hacked and all the bitcoins were transferred by hacker to Different Address . So i already created a ticket there and they have finally replied me today
and i am posting here what they have said in their statements
Dianna (Bittrex Support)
Apr 15, 15:20 PDT
Hi,
Thank you for your inquiry.
Actions performed in the reported unauthorized access to your account required access to your email. Please make sure to secure your email account.
Please know that we take each of these reports seriously, and that we have investigated potential causes of your loss of funds. Based on information you provided and other information that we have gathered, it is clear that your login credentials (username/password combination) were lost outside of the Bittrex environment. In other words, someone stole your credentials and logged in masquerading as you. It is most likely that you (a) visited a phishing site that is designed to look and behave like Bittrex’s site (see the example below), (b) that someone has compromised your email and/or wireless mobile device account, or (c) that you used the same username/password combination for another site or service that was compromised. In each of these scenarios, the people who logged into your Bittrex account and moved your funds had already obtained your valid login credentials before they visited the Bittrex site. This is one of the hardest forms of account compromise to combat because there is no way for Bittrex to identify unauthorized parties when they are using your valid credentials.
We have observed that sometimes this type of compromise happens when a user accidentally downloads a malicious application to their phone or mobile device. As mentioned above, we have also observed several examples of phishing sites appearing on Google and other search results for “Bittrex.” Here is an example that shows the fake Bittrex sites along with the real sites.
When users click on links to these sites, they are tricked into providing their login credentials, which the phishing site owners immediately use to log into Bittrex and to conduct trades or withdrawals that move funds out of your account. These are sophisticated attacks that are very difficult, if not impossible, to reliably detect or stop in real-time. The only reliable way to prevent this from happening is to vigilantly secure your login credentials and to change them often.
While we are sorry that your funds were lost, it is ultimately your responsibility to maintain the security of your login credentials. There really is no way to recover your funds at this time. If you have not already done so, we strongly encourage you to do the following:
Always browse directly to https://www.bittrex.com instead of searching for it.
Review your recent browsing history to identify whether you unintentionally visited and surrendered your credentials to any phishing site.
Scan your computer and mobile devices for malicious software.
Change all of your passwords, and take steps to secure your other online accounts.
Change your Bittrex password to a unique and complex password that is not used anywhere else.
Check with your wireless provider to make sure that you have set your wireless account to require a unique PIN in order to make modifications to authorized users of your service.
Enable two-factor authentication on your Bittrex account, and if it was already enabled, disable and re-enable it.
Report the event to your local law enforcement and encourage them to contact us if they need additional information about the incident.
If you have disabled your account, please reply here once you have changed your password and secured your account with two-factor authentication.
If you would like to view your account logon history to conduct research about what happened at the time of compromise, you can view it by clicking “Settings->Summary.” Below you will find a copy of the relevant logs.
Activity Ip UserAgent TimeStamp
ENABLE_2FA 37.221.112.106 Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0 2019-03-17 20:19:22Z
PENDING_2FA 37.221.112.106 Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0 2019-03-17 20:19:04Z
VERIFY_WITHDRAWAL_SUCCESS 37.221.112.106 Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0 2019-03-17 20:18:28Z
WITHDRAWAL_EMAIL_SENT 37.221.112.106 Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0 2019-03-17 20:18:19Z
LOGIN 37.221.112.109 Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0 2019-03-17 20:17:31Z
VERIFY_NEW_IP 37.221.112.109 Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0 2019-03-17 20:17:16Z
VERIFY_NEW_IP 37.221.112.106 Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0 2019-03-17 20:17:15Z
UNKNOWN_IP_LOGIN 37.221.112.109 Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0 2019-03-17 20:17:04Z
LOGIN 37.221.112.106 Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0 2019-03-17 20:16:55Z
VERIFY_NEW_IP 37.221.112.106 Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0 2019-03-17 20:16:46Z
VERIFY_NEW_IP 37.221.112.110 Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0 2019-03-17 20:16:45Z
UNKNOWN_IP_LOGIN 37.221.112.106 Mozilla/5.0 (X11; Linux x86_64; rv:56.0) Gecko/20100101 Firefox/56.0 2019-03-17 20:16:32Z
Again, we are very sorry that this happened to your account. If you have any further questions, please do not hesitate to contact us again.
Best Regards,
Dianna @ Bittrex
So , They have washed their Hands on the situation and declined to help me what's Left is Regret
I dont know how the hacker got access to my account though i always try to be secure but now who knows whats wrong that time
Requested
If anyone Interested in least helping me please Donate a small amount of bitcoin to me that would not loss you but could be a life saver for me
Thank you For Reading
DONATION - 1B7vmxMoUk4qAQZKn17NMnFEoNY18n7KQs
Jump to: