Topic: BTC hacked from blockchain wallet - page 2. (Read 578 times)

Maybe it would be possible if you could recall what did you do prior to that incident (any information would help) so that the community could help analyze what happened and give further suggestions and recommendations.

Sorry, but this logic is flawed... It's not because you didn't have a problem with online wallets (yet) that they're safe to use. It's perfectly possible for a hacker to get his/her hands on the xprv, the seed phrase or the derived private keys (sometimes even without using the gui), in this case no email security, sms, 2fa, biometric security will help you... As soon as a hacker can derive private keys belonging to addresses that "belong" (for a lack of better terminology... When using online wallets, your funds belong to the wallet company) to you and were funded, he'll be able to rob you (even if the online wallet goes down).

Bottom line:
"if you're not (the only one) in controll of your private keys, you're not (the only one) in controll of your funds", this is true no matter which company, which 2FA measures, which guarantees,...

You many not have secured your wallet well. Once the funds was in your wallet and you have the personal private keys to the wallet then it would be very difficult for another person to conduct transaction you wouldn't know about it. It seems the  blockchain wallet has been compromised by someone who know about your private keys.

This is exactly why I DO NOT recommend anyone using Blockchain.com or any similar online wallets.
It is much easier for hackers to get your information, or website can be hacked.
Best thing is to have your own private key that never touches any internet website.
I consider them similar like exchnanges, even if they are more secure.

Best use some cold wallet (hardware or desktop), and double backup seed/private key.

Sorry to hear what happened to you...
and I hope you will get much more Bitcoin in future!

I've been using an online wallet and I don't have a problem.

These kinds of sites have their own security, you can always connect your email, some have their 2FA, some even require a phone number and I am wondering how can someone access your wallet without you being notified of that. Two points to consider, it is either your fault or the sites fault but I don't think the site will just let someone use your balance without logging to your account.

They really have some issues, for example on one of my account, I was always unable to log in even after email verification, that was happening only on one wallet, others are still working fine.
Also checking email has no idea, user had to gain access on email in order to log in on blockchain.com's website, so he would delete information.
But there would be some issue from OP's side, if there is security breach on Blockchain.com then not only his but a lot, really a lot of wallets would be hacked, security breach can't get only one user's account into other's hands, breach gives access on some part of wallets.
Hard case OP, can you think more deeply and remember, what happened? Did you install unknown antivirus? Pirate windows?

A similar incident happened to me about a year ago and unfortunately I didn't get any help from Blockchain support. I mean, I'm sorry, but I don't think you can find a solution.

Still, think twice if there is a possibility that the private key may have been stolen!

This is one of the risks of having digital assets in crypto. You are very upset with losing your assets because if it is made money is also very decent. Actions like this sometimes we also don't realize because we feel that the private keys are stored securely.

This obviously becomes a lesson for you and provides information with other users. So for the future be more cautious in storing digital assets.

This is something new for me. Wasn't it good before? Everyone should have own their own private keys/seed. I can not remember when was the last time I used blockchain wallet but as a newbie it was very handy for me long ago.

I hate Coinbase by the way.

Your information was compromised for sure. I am afraid to tell you that, there are nothing much you can do now. This is the reason I do not use online hot wallets even I do not use a standard wallet for large percentage of my Bitcoins. I use 2/2 multiSig wallet. 

My suggestion is that - consider it as a lesson and move on. Sorry for your lose.

My BTC address: 1FgpbfQ8nVMS523Btnyv3rxhF7YxtiEdr7
Created with blockchain.com 2 years ago.
Funds received more than a year ago. It was safe during all period, I always paid much attention to security.
The loss was realized yesterday, Aug 27, 2019 morning, I turned on computer, checked my e-mail as usual (again there was no notification from blockchain.com),
before that, the computer was turned off all night.

2019-08-27 07:03:08
Amount: 0.035 BTC (350 USD)
Transaction ID: 4d412c58ab3dba8a138557e41e9ace1c8b36ee3d44107a930c8f31f0198d2b93
Recipient address: 1PdXxtu8Laq773RXT5q5pp6qtaG3HvSw2r

Good.
All the others said is correct: there's much bigger chance that your private key was "leaked" than something on their side. However, the first thing to do is to check your address(es) with another block explorer to make sure indeed your funds are gone and there's no other issue.

About the "leak", there are a lot of ways to happen: from malware and key loggers to accessing a phishing site or storing the data in e-mail, cloud services, or somebody you know physically accessing (your computer/account, or the paper where it was written onto). As you can see, all are on your side (and against you) OP.

But as started: good. Don't use online services to hold your money, especially if you don't believe in their safety (and blockchain.com is old, big and targeted by a lot of phishing). Use something safer. If you don't plan to spend, generate safely(!) a paper wallet and put your (next) bitcoins there. Or use a hardware wallet. Or use air-gaped cold storage, already an USB stick with Tails can do that if you make sure it'll never go online and read how to properly use cold storage.

Blockchain can't access your account, so it is unlikely that a security breach at Blockchain is the cause.

@bxmail can you tell us your bitcoin address, a transaction id, and a full story?
it would be more helpful if you can share the story from the beginning
about how you received the bitcoin, when you realize you lost it,
and what you do with your computer during that time? did you just create the account recently?
any information can help us figure out what happened to your bitcoin

I've used blockchain.com and there's a verification everytime I log in, it doesn't go directly to my wallet. Having that said about the notifications, there's an email notification before proceeding.

If you have checked it already and no notification has ever found. Did you looked at the other folders of your email? sometimes it's on spam folder and other unnecessary folders of our email. Otherwise, this is like the case that I've seen before that his funds were retrieved by someone although he's really technically aware of what he does and knows how to protect his funds including private keys, recovery phrases and login details.

I really, really, really don't like any online wallet, exchange wallet, casino wallet,... Basically any wallet that doesn't make sure you're the only one in controll over your private keys, is open source and has a sufficient recovery scenario in case they ever dissapear is a big no-go for me...

So, in this case, i'm defenately NOT defending blockchain.info/com. However, i do urge you to see things from their perspective: how many emails do you think they get on a daily basis about people that have been hacked and try to blame them for their loss? I'm pretty sure 99,9% of those cases actually involve a user installing malware, falling for a phising attack or exposing their seed/private key/blockchain credentials. If a helpdesk employee gets 1000 complaints, and 999 of them are a PICNIC (problem in chair, not in computer) problem, it's pretty normal that he misses the 1 actual complaint.

That being said, blockchain has been around for a long time, never having met you, i'd also jump to the conclusion that the odds of you running a vulnerable system, having a malicious plugin, running a virus, having your credentials or seed phrase stolen somehow are larger than the odds of a vulnerability in blockchain's system. Mind you, i'm talking about odds, not certainty's... Like i said, i have never met you, i have no proof, i haven't seen anything about you => It's just statistically speaking from my rather lengthy experience in this community, i'd say the odds of the problem being on your side are bigger than the odds of the problem being on their side...

I try not to victim blame... It doesn't really matter if it was blockchain, a virus, a plugin, an OS vulnerabilitly... It was awefull for you to lose your funds, and it's defenately somebody else's fault (i'm not being sarcastic here!).

Anyways, it was a rather expensive lessen for you, i'd recommand to switch to a more secure wallet... Pop $100 and buy a hardware wallet. If not, take an old pc, remove the network card and install a cold (air gapped) wallet. Or learn about paper wallets (do be carefull, you need to take caution and follow the proper procedure to create one of those)

Yes it is most probalby due to the mistakes we ignore...We need to be bit more alert mygiftcardsite

Most of the lost funds in the wallet, it is very certain because of mistakes that we do not realize.
because many methods of people who are not responsible for doing tricks so that people's funds can be taken in his wallet.
clearly that the wallet is absolutely certain to be safe, now you only need to be introspected whether you have done anything unknowingly which resulted in funds being taken.
some easy methods to do are:
-Don't open email links that you don't recognize.
-get used to opening that often do through bookmarks, do not manually through google because a lot of data that resembles.

[/quote]
Check your email, whenever you login or have new transactions from your blockchain account they usually send out notifications.

The hacker can't get your private key because on blockchain's wallet they don't give out private keys anymore unless you've been using their wallet since the old version and your old addresses was imported.
[/quote]

Thank you, there was no email notification, and, right, they couldn't get my private keys, the true reason was blockchain.com security breach, which they never admit.

Check your email, whenever you login or have new transactions from your blockchain account they usually send out notifications.

The hacker can't get your private key because on blockchain's wallet they don't give out private keys anymore unless you've been using their wallet since the old version and your old addresses was imported.

[/quote]
I'm not talking in favour of blockchain.com, but however we cross check there are possible chances to miss the private keys and passwords. For me it happened in 2016, further I was very careful in handling my private keys and paawords. Till date haven't encountered any problems. You can trace the last transaction from your wallet and the corresponding ip, which might make it clear whether it has happened from your location.
[/quote]

Thanks for your advise, do you know how to trace the IP from transaction or receiving wallet address?