BTER.com hacked| 7170 BTC stolen | DON'T KEEP YOUR MONEY ON AN EXCHANGE | - page 65.

corsaro

legendary

Activity: 1400

Merit: 1000

Quote from: Fernandez on February 16, 2015, 01:28:06 AM

Quote from: kingscrown on February 16, 2015, 01:15:36 AM

anyways - id say the money is gone.

Naturally it is gone. Yet another lesson for the community not to keep funds on exchange.

yes, please do not keep bitcoins deposited into exchange. Use your own wallet.

If you need to exchange, deposit just the btc you need to exchange, and immediately after withdraw the exchanged sums

redsn0w

legendary

Activity: 1778

Merit: 1043

#Free market

Quote from: Fernandez on February 16, 2015, 01:28:06 AM

Quote from: kingscrown on February 16, 2015, 01:15:36 AM

anyways - id say the money is gone.

Naturally it is gone. Yet another lesson for the community not to keep funds on exchange.

After a lot of scams/hacks , now I challenge a person to keep their coins for 24 hours in an online exchange. It is really insane, their security is not good.

Do you know only a few exchanges are using multiSig ?

Fernandez

legendary

Activity: 1008

Merit: 1000

Quote from: kingscrown on February 16, 2015, 01:15:36 AM

anyways - id say the money is gone.

Naturally it is gone. Yet another lesson for the community not to keep funds on exchange.

kingscrown

hero member

Activity: 672

Merit: 500

http://fuk.io - check it out!

my infos say it was inside job..

anyways - id say the money is gone.

good i had nothing htere since 1,5 month after bitbay thinge and didnt bring EXCL to the board Wink

Fernandez

legendary

Activity: 1008

Merit: 1000

This is bad news, but not surprising. Nobody should be keeping any significant amount on any exchange. If they can't learn after so many hacks they deserve to lose their money.

redsn0w

legendary

Activity: 1778

Merit: 1043

#Free market

Quote from: cshelswell on February 16, 2015, 12:37:12 AM

Quote from: Cluster2k on February 15, 2015, 11:01:10 PM

People keep repeating the mantra "don't keep your bitcoins anywhere but in your own wallet". It's almost blaming the victim for being so careless about who they trust. How do these people expect bitcoin commerce to work if businesses are always meant to be fearful of someone taking down an exchange? How many businesses function in a world where Mastercard, Visa, PayPal, etc could at any moment lose all customer funds?

How is an exchange like bitfinex meant to be funded if no one is ever to keep bitcoins on there to fund leveraged positions and earn interest?

Agreed. It's a real problem that the only safe thing to do with your btc is do nothing at all

Not this is not true, the problem here is : a lot of people "trust" the various exchange like a bank, the real purpose of an exchange is | deposit the coin > perform the "exchange" altcoin btc or viceversa > and then withdraw.

Maybe you can be unlucky and deposit/withdraw under the hack attack is being, but this is another story.

hero18688

sr. member

Activity: 392

Merit: 250

Quote from: rich93 on February 16, 2015, 12:50:56 AM

Quote from: stdset on February 16, 2015, 12:39:10 AM

Quote from: nachoig on February 15, 2015, 01:16:55 PM

Bter?

The same who had 50M NXT stolen and contacted NXT devs to do a rollback? And the same from BitBay, which is just a pump and dump scheme?
http://cointelegraph.com/news/113238/chat-logs-allegedly-show-bter-creating-and-pumping-its-own-coin

Why do people still trust in this shitty exchange?

They indeed contacted NXT devs asking for a rollback, but it was not performed. And they managed to make a deal with the hacker, such that he returned most of stolen NXT in exchange for several hundreds BTC. They took that loss upon themselfs, no clients funds were affected, much like Bitstamp did in the recent hack.
But I don't believe they could survive this time, at least without funds being returned somehow. If it indeed was a coldwallet, there is a limited set of suspects, may be there is some hope.

They claim to have contacted the police but does anyone know in which country. I think they are registered in the British Virgin Islands. The website said this.

Bter.com is maintained and operated by MaxCloud Inc. which was registered in British Virgin Islands in 2011.

Which country are the owners of MaxCloud Inc. from?

I think the British Virgin Islands is a tax haven and the owner of most companies registered there do not live there.

Bter.com is a Chinese exchange,located in Shandong Province,China.

rich93

full member

Activity: 595

Merit: 101

Chromia - Relational Blockchain

Quote from: stdset on February 16, 2015, 12:39:10 AM

Quote from: nachoig on February 15, 2015, 01:16:55 PM

Bter?

The same who had 50M NXT stolen and contacted NXT devs to do a rollback? And the same from BitBay, which is just a pump and dump scheme?
http://cointelegraph.com/news/113238/chat-logs-allegedly-show-bter-creating-and-pumping-its-own-coin

Why do people still trust in this shitty exchange?

They indeed contacted NXT devs asking for a rollback, but it was not performed. And they managed to make a deal with the hacker, such that he returned most of stolen NXT in exchange for several hundreds BTC. They took that loss upon themselfs, no clients funds were affected, much like Bitstamp did in the recent hack.
But I don't believe they could survive this time, at least without funds being returned somehow. If it indeed was a coldwallet, there is a limited set of suspects, may be there is some hope.

They claim to have contacted the police but does anyone know in which country. I think they are registered in the British Virgin Islands. The website said this.

Bter.com is maintained and operated by MaxCloud Inc. which was registered in British Virgin Islands in 2011.

Which country are the owners of MaxCloud Inc. from?

I think the British Virgin Islands is a tax haven and the owner of most companies registered there do not live there.

stdset

hero member

Activity: 572

Merit: 506

Quote from: nachoig on February 15, 2015, 01:16:55 PM

Bter?

The same who had 50M NXT stolen and contacted NXT devs to do a rollback? And the same from BitBay, which is just a pump and dump scheme?
http://cointelegraph.com/news/113238/chat-logs-allegedly-show-bter-creating-and-pumping-its-own-coin

Why do people still trust in this shitty exchange?

They indeed contacted NXT devs asking for a rollback, but it was not performed. And they managed to make a deal with the hacker, such that he returned most of stolen NXT in exchange for several hundreds BTC. They took that loss upon themselfs, no clients funds were affected, much like Bitstamp did in the recent hack.
But I don't believe they could survive this time, at least without funds being returned somehow. If it indeed was a coldwallet, there is a limited set of suspects, may be there is some hope.

cshelswell

hero member

Activity: 615

Merit: 500

Quote from: Cluster2k on February 15, 2015, 11:01:10 PM

People keep repeating the mantra "don't keep your bitcoins anywhere but in your own wallet". It's almost blaming the victim for being so careless about who they trust. How do these people expect bitcoin commerce to work if businesses are always meant to be fearful of someone taking down an exchange? How many businesses function in a world where Mastercard, Visa, PayPal, etc could at any moment lose all customer funds?

How is an exchange like bitfinex meant to be funded if no one is ever to keep bitcoins on there to fund leveraged positions and earn interest?

Agreed. It's a real problem that the only safe thing to do with your btc is do nothing at all

flame1012

full member

Activity: 154

Merit: 100

We should discuss if decentralized exchanges are going to be a good alternative and solution against these hacks.

Cluster2k

legendary

Activity: 1692

Merit: 1018

People keep repeating the mantra "don't keep your bitcoins anywhere but in your own wallet". It's almost blaming the victim for being so careless about who they trust. How do these people expect bitcoin commerce to work if businesses are always meant to be fearful of someone taking down an exchange? How many businesses function in a world where Mastercard, Visa, PayPal, etc could at any moment lose all customer funds?

How is an exchange like bitfinex meant to be funded if no one is ever to keep bitcoins on there to fund leveraged positions and earn interest?

redsn0w

legendary

Activity: 1778

Merit: 1043

#Free market

Quote from: smoothie on February 15, 2015, 06:18:33 PM

Quote from: redsn0w on February 15, 2015, 09:53:46 AM

7170 btc stolen - https://bter.com/

This problem can be avoided with the simple use of multiSig address for their cold wallet, an example of an exchange that is using multiSignature addresses is: BIT-X.com

Here some interesting articles about this bad situation :

- http://www.coindesk.com/bter-bitcoin-stolen-cold-wallet-hack
- http://247cryptonews.com/bter-got-hacked-7000-bitcoins-stolen-7-different-accounts/

Here the discussions on reddit :

- http://www.reddit.com/r/Bitcoin/comments/2vz1zq/its_now_officialbtercom_was_hackedlost_7170_btc/
- http://www.reddit.com/r/Bitcoin/comments/2w00yo/three_exchanges_hacked_in_24_hours/

The only way bitcoins get stolen from a "cold" wallet is that the wallet wasn't really cold.

someone had access to it.

How the heck do you think there would be a transaction if the wallet was never touched?

Unless it was an inside job.

It could be possible, we should wait more info from them. Maybe their definition of cold wallet is different from our, it should never be connected on internet.

smoothie

legendary

Activity: 2492

Merit: 1473

LEALANA Bitcoin Grim Reaper

Quote from: redsn0w on February 15, 2015, 09:53:46 AM

7170 btc stolen - https://bter.com/

This problem can be avoided with the simple use of multiSig address for their cold wallet, an example of an exchange that is using multiSignature addresses is: BIT-X.com

Here some interesting articles about this bad situation :

- http://www.coindesk.com/bter-bitcoin-stolen-cold-wallet-hack
- http://247cryptonews.com/bter-got-hacked-7000-bitcoins-stolen-7-different-accounts/

Here the discussions on reddit :

- http://www.reddit.com/r/Bitcoin/comments/2vz1zq/its_now_officialbtercom_was_hackedlost_7170_btc/
- http://www.reddit.com/r/Bitcoin/comments/2w00yo/three_exchanges_hacked_in_24_hours/

The only way bitcoins get stolen from a "cold" wallet is that the wallet wasn't really cold.

someone had access to it.

How the heck do you think there would be a transaction if the wallet was never touched?

Unless it was an inside job.

Borisz

sr. member

Activity: 476

Merit: 251

Quote from: redsn0w on February 15, 2015, 05:51:52 PM

That ip (46.28.204.193) is of the bitcoin node It is not the ip of the "hacker".

Yes I just read that too https://bitcointalksearch.org/topic/he-cant-be-that-stupid-957094

redsn0w

legendary

Activity: 1778

Merit: 1043

#Free market

Quote from: Nixian on February 15, 2015, 05:49:07 PM

Quote from: redsn0w on February 15, 2015, 05:41:02 PM

Quote from: Nixian on February 15, 2015, 05:24:46 PM

Quote from: Borisz on February 15, 2015, 05:17:29 PM

Quote from: Nixian on February 15, 2015, 05:13:48 PM

Is this the thief ?

http://tools.tracemyip.org/lookup/46.28.204.193

Reverse DNS in-addr.arpa:
193.204.28.46.in-addr.arpa domain name pointer hosted-by.solarcom.ch.

http://en.utrace.de/ip-address/193.204.28.46

IP Address:       193.204.28.46
ISP:       GARR Italian Research and Academic Network
Organization:       Universita' degli Studi G. D'Annunzio

https://db-ip.com/193.204.28.46

It is most likely a proxy/VPN that leads to another one and so on.
If someone wants to steal so much money, I guess they make sure to stay safe as much as possible.

Students having the know how , intrest, time and equipment , and watch the ISP Research and academic network

It is not the ip of the hacker but only the ip of the bitcoin node that saw/forwarded the tx for "first" :

https://blockchain.info/it/ip-address/46.28.204.193

The 7120 Bitcoins are distributed equally to 7 accounts, all of them were operated from a Swiss Based IP “46.28.204.193”

source : http://247cryptonews.com/bter-got-hacked-7000-bitcoins-stolen-7-different-accounts/

Was just opinion ,i'm still new at this bitcoin stuff, keep my bet open tho Wink

That ip (46.28.204.193) is of the bitcoin node It is not the ip of the "hacker".

Nixian

member

Activity: 81

Merit: 10

Quote from: redsn0w on February 15, 2015, 05:41:02 PM

Quote from: Nixian on February 15, 2015, 05:24:46 PM

Quote from: Borisz on February 15, 2015, 05:17:29 PM

Quote from: Nixian on February 15, 2015, 05:13:48 PM

Is this the thief ?

http://tools.tracemyip.org/lookup/46.28.204.193

Reverse DNS in-addr.arpa:
193.204.28.46.in-addr.arpa domain name pointer hosted-by.solarcom.ch.

http://en.utrace.de/ip-address/193.204.28.46

IP Address:       193.204.28.46
ISP:       GARR Italian Research and Academic Network
Organization:       Universita' degli Studi G. D'Annunzio

https://db-ip.com/193.204.28.46

It is most likely a proxy/VPN that leads to another one and so on.
If someone wants to steal so much money, I guess they make sure to stay safe as much as possible.

Students having the know how , intrest, time and equipment , and watch the ISP Research and academic network

It is not the ip of the hacker but only the ip of the bitcoin node that saw/forwarded the tx for "first" :

https://blockchain.info/it/ip-address/46.28.204.193

The 7120 Bitcoins are distributed equally to 7 accounts, all of them were operated from a Swiss Based IP “46.28.204.193”

source : http://247cryptonews.com/bter-got-hacked-7000-bitcoins-stolen-7-different-accounts/

Was just opinion ,i'm still new at this bitcoin stuff, keep my bet open tho Wink

redsn0w

legendary

Activity: 1778

Merit: 1043

#Free market

Quote from: Nixian on February 15, 2015, 05:24:46 PM

Quote from: Borisz on February 15, 2015, 05:17:29 PM

Quote from: Nixian on February 15, 2015, 05:13:48 PM

Is this the thief ?

http://tools.tracemyip.org/lookup/46.28.204.193

Reverse DNS in-addr.arpa:
193.204.28.46.in-addr.arpa domain name pointer hosted-by.solarcom.ch.

http://en.utrace.de/ip-address/193.204.28.46

IP Address:       193.204.28.46
ISP:       GARR Italian Research and Academic Network
Organization:       Universita' degli Studi G. D'Annunzio

https://db-ip.com/193.204.28.46

It is most likely a proxy/VPN that leads to another one and so on.
If someone wants to steal so much money, I guess they make sure to stay safe as much as possible.

Students having the know how , intrest, time and equipment , and watch the ISP Research and academic network

It is not the ip of the hacker but only the ip of the bitcoin node that saw/forwarded the tx for "first" :

https://blockchain.info/it/ip-address/46.28.204.193

Borisz

sr. member

Activity: 476

Merit: 251

Quote from: nachoig on February 15, 2015, 05:19:34 PM

Quote from: Borisz on February 15, 2015, 05:11:19 PM

Quote from: nachoig on February 15, 2015, 05:06:55 PM

Exchanges shouldn't be used as traditional banks.

They are similar in the aspect that they both hold large sums of money. And Bter was also giving interest on funds held by the users.

Like a savings account? If they are doing this, unless that interest are being paid from the exchange fees, they don't have 100% reserves.

BTW, I'm just aksing myself how they do to recover the stolen BTC. If they don't get it back, they should go to the market and re-buy those BTC. But a good question here is if they'll do this.

Maybe that is the actual 7000 missing that added up over time Cheesy

Seriously. The yearly interest was varying daily, sometimes 0.9%/year, other days or weeks went up to 5%/year. According to Bter, this interest was coming from and based on their trading fees and volume.

Nixian

member

Activity: 81

Merit: 10

Quote from: Borisz on February 15, 2015, 05:17:29 PM

Quote from: Nixian on February 15, 2015, 05:13:48 PM

Is this the thief ?

http://tools.tracemyip.org/lookup/46.28.204.193

Reverse DNS in-addr.arpa:
193.204.28.46.in-addr.arpa domain name pointer hosted-by.solarcom.ch.

http://en.utrace.de/ip-address/193.204.28.46

IP Address:       193.204.28.46
ISP:       GARR Italian Research and Academic Network
Organization:       Universita' degli Studi G. D'Annunzio

https://db-ip.com/193.204.28.46

It is most likely a proxy/VPN that leads to another one and so on.
If someone wants to steal so much money, I guess they make sure to stay safe as much as possible.

Students having the know how , intrest, time and equipment , and watch the ISP Research and academic network

Topic: BTER.com hacked| 7170 BTC stolen | DON'T KEEP YOUR MONEY ON AN EXCHANGE | - page 65. (Read 119723 times)