crappy php website..
when will people learn to not have their wallets and trade engines on the exact same server as the customers GUI.
not
(user)----(whole business function server)
but it should be
(user)----(PHP echo/RUBY GUI server)-----(trade engine server)------(wallet server)
by having the important stuff on a separate server, DDos attacks wont stunt functions of the engine or wallet functions. and you can even mirror the echo/guy server if a DDOS occurs to keep connections active
aswell as allowing security precautions to be added at each server to triple secure the whole plan so that hackers can be spotted before getting to the wallet server.
Topic: BTCT.com hacked and lost 107 btc - page 3. (Read 4648 times)
...and now their website is offline.
...aaaaand it's gone.
I'll never trust any online service be that a wallet and or an exchange.
clear.
Let me guess. BTCT is one of those exchanges that tries to attract deposits via interest-bearing accounts?
Yeah - they got 'hacked'.
Yeah - they got 'hacked'.
What do you mean by 'attract deposits via interest-bearing accounts'
And how is that relevant to hacking? Please explain. 
Let me guess. BTCT is one of those exchanges that tries to attract deposits via interest-bearing accounts?
Yeah - they got 'hacked'.
Yeah - they got 'hacked'.
...and now their website is offline.
...aaaaand it's gone.
Let me guess. BTCT is one of those exchanges that tries to attract deposits via interest-bearing accounts?
Yeah - they got 'hacked'.
Yeah - they got 'hacked'.
How do they sleep at night holding customer funds and not ensuring at least basic parameter of hot and cold wallet. I saw on their site, they have written that they will return the customers funds so they must be employing cold and hot wallet. This must be a very small amount compared to their deposits.
This sites never ensure enough security....
Yeah, it sounds like they weren't following best practices for the safe keeping of their BTC if they were able to run off with that much. Never store that much BTC in a hot wallet =/
When the companies are supposed to store most of their funds in cold wallets, how is it possible that they loose so much funds. Alternatively, if 107 btc's only accounts for lets say 3-5% which might be kept in the hot wallet, then it shouldn't matter as the company should be able to pay back their customers if not instantly, then within sometime by their operating incomes.
The fact however remains that if a Webserver has access to the wallets, their is always a possibility of hacking. There is not much any of us can do as the hacks keep evolving and if you dont know about a vulnerability, then there is not much you can do to prevent it. Its not like the Crypto companies are as big as google that they can be on top of everything. Thus, the only option is to sever the link between the webserver and the wallet server and still make them talk somehow. Its very difficult to do but possible.
The fact however remains that if a Webserver has access to the wallets, their is always a possibility of hacking. There is not much any of us can do as the hacks keep evolving and if you dont know about a vulnerability, then there is not much you can do to prevent it. Its not like the Crypto companies are as big as google that they can be on top of everything. Thus, the only option is to sever the link between the webserver and the wallet server and still make them talk somehow. Its very difficult to do but possible.
8btc report:
BTCT.com is a bitpay-like website in China, featuring online hashrate trade.
As per the official statement, hacker hacked the wallet server and use RPC command to dump private key and then get away with coins.
tx:https://blockchain.info/zh-cn/tx/392195d6f1f615c2a1b8fde7dbecbcbe5d332bd6ee83d0dcc3b66567c6c2af32
Currently the merchant page is down only with the statement on its frontpage.
20 btc bounty was placed to hunt down the hacker.
BTCT.com is a bitpay-like website in China, featuring online hashrate trade.
As per the official statement, hacker hacked the wallet server and use RPC command to dump private key and then get away with coins.
tx:https://blockchain.info/zh-cn/tx/392195d6f1f615c2a1b8fde7dbecbcbe5d332bd6ee83d0dcc3b66567c6c2af32
Currently the merchant page is down only with the statement on its frontpage.
20 btc bounty was placed to hunt down the hacker.
I'm not surprised with this news.
It seems nothing is 100 % secure online today.
This is risk we have to accept by using online services.
I'll never trust any online service be that a wallet and or an exchange.
All boast 100% secure and what not but this just goes to show again that if there is a will there is a way.
All boast 100% secure and what not but this just goes to show again that if there is a will there is a way.
Agreed, how can you achieve "Security and control over your money" when you are trusting somebody else with it (Counter-party risk)?
I'll never trust any online service be that a wallet and or an exchange.
All boast 100% secure and what not but this just goes to show again that if there is a will there is a way.
All boast 100% secure and what not but this just goes to show again that if there is a will there is a way.
8btc report:
BTCT.com is a bitpay-like website in China, featuring online hashrate trade.
As per the official statement, hacker hacked the wallet server and use RPC command to dump private key and then get away with coins.
tx:https://blockchain.info/zh-cn/tx/392195d6f1f615c2a1b8fde7dbecbcbe5d332bd6ee83d0dcc3b66567c6c2af32
Currently the merchant page is down only with the statement on its frontpage.
20 btc bounty was placed to hunt down the hacker.
BTCT.com is a bitpay-like website in China, featuring online hashrate trade.
As per the official statement, hacker hacked the wallet server and use RPC command to dump private key and then get away with coins.
tx:https://blockchain.info/zh-cn/tx/392195d6f1f615c2a1b8fde7dbecbcbe5d332bd6ee83d0dcc3b66567c6c2af32
Currently the merchant page is down only with the statement on its frontpage.
20 btc bounty was placed to hunt down the hacker.
Jump to: