Meh we have to move to decentralized exchanges. No one will ever be able to figure out what happened for sure...
Topic: BTER.com hacked| 7170 BTC stolen | DON'T KEEP YOUR MONEY ON AN EXCHANGE | - page 54. (Read 119723 times)
February 20, 2015, 07:05:25 AM
Meh we have to move to decentralized exchanges. No one will ever be able to figure out what happened for sure...
February 20, 2015, 06:58:49 AM
This address (17o5z) gets credited in the amount of exactly 10 bitcoins every day since the hack from a lot of small wallets. What could they be doing, maybe selling fiat in an effort to accumulate a bitcoin "misery" fund?
BTW, in order to continue using their hot wallet, they must be absolutely 100% sure it's not compromised. Otherwise they should have moved all BTC left in the hot wallet to a new wallet.In the case of bter I wouldn't be that sure. Remember, they have already been hacked two times, so it won't come as surprise if this wallet gets hacked next too.
Who hasn't yet hacked bter?
February 20, 2015, 06:48:26 AM
This address (17o5z) gets credited in the amount of exactly 10 bitcoins every day since the hack from a lot of small wallets. What could they be doing, maybe selling fiat in an effort to accumulate a bitcoin "misery" fund?
BTW, in order to continue using their hot wallet, they must be absolutely 100% sure it's not compromised. Otherwise they should have moved all BTC left in the hot wallet to a new wallet. February 20, 2015, 06:28:16 AM
Forget what I said, that doesn't make sense, since the funds went directly from the cold wallet to the hackers address and not to the hot wallet.
So I looks like the "hacker" didn't have access to the hot wallet or it wasn't in his interest to empty it.
17o5z is one of Bter's hot wallet addresses.So I looks like the "hacker" didn't have access to the hot wallet or it wasn't in his interest to empty it.
What are the other bter's hot wallet addresses and will this list be exhaustive? How many bitcoins do they have in total right now?
Here are some of their addresses though:
http://www.walletexplorer.com/wallet/Bter.com/addresses
http://www.walletexplorer.com/wallet/Bter.com-output/addresses
This address (17o5z) gets credited in the amount of exactly 10 bitcoins every day since the hack from a lot of small wallets. What could they be doing, maybe selling fiat in an effort to accumulate a bitcoin "misery" fund?
February 20, 2015, 06:25:59 AM
Meh we have to move to decentralized exchanges. No one will ever be able to figure out what happened for sure...
February 20, 2015, 06:19:54 AM
Forget what I said, that doesn't make sense, since the funds went directly from the cold wallet to the hackers address and not to the hot wallet.
So I looks like the "hacker" didn't have access to the hot wallet or it wasn't in his interest to empty it.
17o5z is one of Bter's hot wallet addresses.So I looks like the "hacker" didn't have access to the hot wallet or it wasn't in his interest to empty it.
What are the other bter's hot wallet addresses and will this list be exhaustive? How many bitcoins do they have in total right now?
Here are some of their addresses though:
http://www.walletexplorer.com/wallet/Bter.com/addresses
http://www.walletexplorer.com/wallet/Bter.com-output/addresses
February 20, 2015, 06:15:21 AM
Forget what I said, that doesn't make sense, since the funds went directly from the cold wallet to the hackers address and not to the hot wallet.
So I looks like the "hacker" didn't have access to the hot wallet or it wasn't in his interest to empty it.
17o5z is one of Bter's hot wallet addresses.So I looks like the "hacker" didn't have access to the hot wallet or it wasn't in his interest to empty it.
What are the other bter's hot wallet addresses and will this list be exhaustive? How many bitcoins do they have in total right now?
February 20, 2015, 06:13:17 AM
It is most probably the first option, the hacker didn't have the access to their hot wallet, and this is demonstrate that the cold wallet it was not a real cold wallet. I think (maybe) :
1) a bad generation of the cold wallet's addresses,
2) an error/mistake of an employee, that had connected the cold wallet to "internet",
3)An inside job.
1) I think this option is the least probable among others.1) a bad generation of the cold wallet's addresses,
2) an error/mistake of an employee, that had connected the cold wallet to "internet",
3)An inside job.
2) Just connection is unlikely to be enough. They must have had a trojan in their 'cold' wallet system. What they were using their 'cold' wallet for, to get infected??? BTW if this option is really what happened, they likely were infected between Feb 2nd and Feb 14th.
3) Must be thoroughly investigated in any cold wallet theft case.
February 20, 2015, 05:54:12 AM
Forget what I said, that doesn't make sense, since the funds went directly from the cold wallet to the hackers address and not to the hot wallet.
So I looks like the "hacker" didn't have access to the hot wallet or it wasn't in his interest to empty it.
17o5z is one of Bter's hot wallet addresses.So I looks like the "hacker" didn't have access to the hot wallet or it wasn't in his interest to empty it.
That's why I said "the funds went directly from the cold wallet to the hackers address and not to the hot wallet"
But everything is a big "MAYBE" and we are only speculating..
February 20, 2015, 05:50:46 AM
Google translate on their Weibo page suggests that the hacker compromised the mechanism for refilling the hot wallet from the 'cold', allowing them to empty it.
Forget what I said, that doesn't make sense, since the funds went directly from the cold wallet to the hackers address and not to the hot wallet.
So I looks like the "hacker" didn't have access to the hot wallet or it wasn't in his interest to empty it.
It is most probably the first option, the hacker didn't have the access to their hot wallet, and this is demonstrate that the cold wallet it was not a real cold wallet. I think these are the three possible scenarios (maybe) :
1) a bad generation of the cold wallet's addresses,
2) an error/mistake of an employee, that had connected the cold wallet to "internet",
3) An inside job.
February 20, 2015, 05:48:53 AM
Forget what I said, that doesn't make sense, since the funds went directly from the cold wallet to the hackers address and not to the hot wallet.
So I looks like the "hacker" didn't have access to the hot wallet or it wasn't in his interest to empty it.
17o5z is one of Bter's hot wallet addresses. So I looks like the "hacker" didn't have access to the hot wallet or it wasn't in his interest to empty it.
February 20, 2015, 05:45:24 AM
Google translate on their Weibo page suggests that the hacker compromised the mechanism for refilling the hot wallet from the 'cold', allowing them to empty it.
Forget what I said, that doesn't make sense, since the funds went directly from the cold wallet to the hackers address and not to the hot wallet.
So I looks like the "hacker" didn't have access to the hot wallet or it wasn't in his interest to empty it.
February 20, 2015, 05:39:09 AM
Google translate on their Weibo page suggests that the hacker compromised the mechanism for refilling the hot wallet from the 'cold', allowing them to empty it.
That might explain the two transaction 10 minutes prior the 7K. 1 and 2Yeah, and the final balance is 160 bitcoins as of now. So they have something in the stash, and not all of their bitcoins got stolen.
February 20, 2015, 05:38:37 AM
Google translate on their Weibo page suggests that the hacker compromised the mechanism for refilling the hot wallet from the 'cold', allowing them to empty it.
That might explain the two transaction 10 minutes prior the 7K. 1 and 2We can't be sure what exactly happened. It looks like it was a trojan, but insider theft would probably look exctly the same.
February 20, 2015, 05:22:36 AM
If they refund the stolen bitcoins somehow I will continue using Bter, if not I'm out. Forever.
"If they will reopen their cryptocurrency exchange, will you use it again or not ?"
Yes i Will, if not, I quite cause i have lost time and money at MtGox, at CryptoRush, at Black Arrow miners... and then at Bter.
My moral is finally down.
Go go Bter.com
If they refund the stolen bitcoins somehow I will continue using Bter, if not I'm out. Forever.
we are the same at this topic.
I'm not sure if I would ever go back. Depends on how they handle the situation.
Part of the trust is gone.
Thanks for your opinions, I will not re-use bter as cryptocurrency exchange; why ? Because this is the second "hack" and they aren't "professional and secure" this is my personal opinion.
February 20, 2015, 03:02:47 AM
Yes. Looks like they took shortcuts and got burned.
February 20, 2015, 01:57:36 AM
Google translate on their Weibo page suggests that the hacker compromised the mechanism for refilling the hot wallet from the 'cold', allowing them to empty it.
That would mean the wallet is electronically connected (can generate and propagate its own transactions) which really means the wallet was "warm"...
Would you really need nearly 2 million dollars worth of BTC on call, "just in case"? The majority of that should have been in offline, truly cold storage; it would take a few hours at most for a staff member to fund the hot wallet if a customer or customers needed to withdraw large amounts of BTC.
February 19, 2015, 07:27:57 PM
If they refund the stolen bitcoins somehow I will continue using Bter, if not I'm out. Forever.
we are the same at this topic.
I'm not sure if I would ever go back. Depends on how they handle the situation.
Part of the trust is gone.
February 19, 2015, 04:29:59 PM
"If they will reopen their cryptocurrency exchange, will you use it again or not ?"
Yes i Will, if not, I quite cause i have lost time and money at MtGox, at CryptoRush, at Black Arrow miners... and then at Bter.
My moral is finally down.
Go go Bter.com
Jump to: