Blockchain.info asking for private keys- is my system compromised?

BitCoinDream

legendary

Activity: 2394

Merit: 1216

The revolution will be digital

Quote from: mdotstrange on September 25, 2014, 07:43:08 PM

I have most all of my coins stored in paper wallets created with Blockchain.info

I've used Blockchain.info a ton to send/receive with my hot wallet- today after I pressed "send" to send a small amount of btc from blockchain.info using my laptop I got these browser popups that asked for the private keys to my paper wallets- I initially thought that maybe I had tried to send more btc than was in my hot wallet but that was not the case-

I use 2FA with authenticator with blockchain btw

Has anyone ever seen this? Is it normal behavior for blockchain.info or is my system/browser compromised?

Thanks!

This is a highly abnormal behavior from blockchain.info and U r definitely compromised. Please provide us the URL u used to log into blockchain.info as there are numerous phishing site of similar name.

Sarahiko

hero member

Activity: 772

Merit: 500

Same thing happen to me when i tried to send bitcoin from a watch only address, so maybe that would be the case

The00Dustin

hero member

Activity: 807

Merit: 500

Quote from: santaClause on September 25, 2014, 08:47:42 PM

male-ware

sexist or feminist?

Quote from: mdotstrange on September 25, 2014, 09:04:56 PM

I had enough funds in my hot wallet for the transaction and after canceling the private key requests the transaction went through fine.

And yes my paper wallets are watch only so maybe for some reason it was trying to draw funds from them-

I'm going to reformat my laptop just in case- thank you for the replies.

Better safe than sorry, however, if you had malware that was trying to get your private keys, I would suspect it would have also stolen the remaining contents of your online wallet while you were logged into blockchain.info. The only reasons I could imagine this not happening are as follows:
1) It can't tell what the hot and cold funds are, so the prompt was caused by malware attempting to steal it all that and hitting cancel thwarted it.
2) You use 2FA and a separate authorization code is required for each transaction, even back to back.

Regardless, if I were unsure in your scenario, I would move my hot funds to a completely different wallet generated separately out of an abundance of caution, however, I have no experience with blockchain.info wallets, so I don't know if this would be necessary, beneficial, or even possible.

mdotstrange

newbie

Activity: 33

Merit: 0

I had enough funds in my hot wallet for the transaction and after canceling the private key requests the transaction went through fine.

And yes my paper wallets are watch only so maybe for some reason it was trying to draw funds from them-

I'm going to reformat my laptop just in case- thank you for the replies.

santaClause

full member

Activity: 183

Merit: 100

I would speculate that the amount being sent was more then what is available in your hot wallet, and you have your paper wallets loaded on your 'account' as a watch only address, so blockchain.info was trying to spend the funds because it had to but didn't have the private keys.

Were you trying to spend more that was available in your hot wallet on your specific blockchain.info account?

If this is not the case then you may have some kind of male-ware

juju

sr. member

Activity: 381

Merit: 250

Quote from: mdotstrange on September 25, 2014, 07:43:08 PM

I have most all of my coins stored in paper wallets created with Blockchain.info

I've used Blockchain.info a ton to send/receive with my hot wallet- today after I pressed "send" to send a small amount of btc from blockchain.info using my laptop I got these browser popups that asked for the private keys to my paper wallets- I initially thought that maybe I had tried to send more btc than was in my hot wallet but that was not the case-

I use 2FA with authenticator with blockchain btw

Has anyone ever seen this? Is it normal behavior for blockchain.info or is my system/browser compromised?

Thanks!

Don't paste your private key anywhere. This sounds really Phishy, I don't have any experience using Blockchain.info other than as a visual block explorer, so it might be normal.

Honestly I would advise you to never paste your private key into a dialog. I would import the private keys into a new bitcoin-qt wallet or armory wallet using https://en.bitcoin.it/wiki/Importprivkey , ensure that the key pairs are generated on a new operating system offline, then format over this OS after making redundant offline backups. Nuke your current machine and get new ip.

If you want to use Blockchain.info try out their mobile app. avoid using it on a traditional computer, create a few transactions on the offline machine then broadcast an amount of Bitcoin your comfortable losing into your new mobile wallet. (I would check out the breadwallet if you have iOS)

Skinnkavaj

sr. member

Activity: 469

Merit: 250

English Motherfucker do you speak it ?

1. Are you on the right Blockchain.info? Not a pishing site?
2. Can it be that you have watch only addresses?
3. Have you tried logging in from another computer?

mdotstrange

newbie

Activity: 33

Merit: 0

I have most all of my coins stored in paper wallets created with Blockchain.info

I've used Blockchain.info a ton to send/receive with my hot wallet- today after I pressed "send" to send a small amount of btc from blockchain.info using my laptop I got these browser popups that asked for the private keys to my paper wallets- I initially thought that maybe I had tried to send more btc than was in my hot wallet but that was not the case-

I use 2FA with authenticator with blockchain btw

Has anyone ever seen this? Is it normal behavior for blockchain.info or is my system/browser compromised?

Thanks!

Topic: Blockchain.info asking for private keys- is my system compromised? (Read 1146 times)