Topic: bustadice – Next Generation Dice - page 18. (Read 37526 times)

This is probably the reason why many websites especially exchanges usually require a confirmation by email if there is a withdraw attempt. I agree some types of phishing attacks are pretty easy to miss and if you are one of the unlucky ones to actually send your username, password, and 2FA code to a phishing site then its the email confirmation that can actually save you.

I actually found it odd why Bitfinex asks for a different 2FA code when you attempt a legit withdraw. Basically you can't login with 2FA and in less than 120 seconds attempt a withdraw because the 2FA code will be a repeat and it will ask you to wait for a new 2FA code before doing a withdraw. Then I realized it was to prevent a phishing attack because even if you accidently send your username, password and initial 2FA code why would you wait 2 minutes and enter another 2FA code? Most likely you would know something was up and immediately stop and investigate, and even if you sent the second 2FA code most likely you would get an email confirmation that you would halt.

Its pretty crazy how elaborate some of these scams have gotten on casinos and exchanges.

Brandname advertisemets are in most cases phishing or other social engineering they are doing nothing to prevent it

Honestly, browsers (and ICANN) have really dropped the ball. The amount of homograph domain attacks I've seen is absolutely absurd to the point of turning the URL bar virtually useless. I've almost been phished myself by a site, whose domain rendered virtually perfectly -- the only way I realized something was amiss was my password manager was not filling the result. Literally the only way to see the domain wasn't what i was expecting, was running it through a unicode decoder.

And another common attack-vector is enabled by Google being almost (?) semi-complicit by allowing people to bid for ads for $BRANDNAME when it's clear people are just googling (often via url bar) for $BRANDNAME

And of course it's also sad that passwordless logins have not got more traction -- as I think the whole idea of a password as a shared secret is just fundamentally bad.


But yeah, there's also some shit you just can't sanely prevent -- like people tricked into running malware

We don't know how he browse and the practices he do on the web but it's probably he's just searching it through search engines and clicks the first website to show. As we know and being aware of it, the first result is most likely to be an ad/sponsored google ads and google doesn't care about it unless it's reported many times.

It could also be a spyware which has been explained by devans clearly if somebody is interested and requires of downloading some shortcuts to win against bustadice or other casinos.

I also wonder the same thing. Maybe browsers should be doing more from an UI/UX perspective in protecting the user from his carelessness and gullibility.

Then after that, try to bookmark the bustadice site to avoid phishing sites.
It's easy to save it as a bookmark by clicking the star in the upper right of the Chrome browser.

I wonder why people keep being phished in these days? There are already multiple extensions that are verified by chrome to secure accounts.

*wipe/reflash/reinstall OS before using again.

If he got phished he can also check his browsing history, maybe something will ring a bell.

Check the device you did use for accessing bustadice for any malware or trojans, It's likely you got phished and someone stole your money. If that is the case here then nothing can be done you just lost it, bro.

Yes thanks Daniel and apologies for my urgency.  Got a bit too heated and still am frustrated about the situation.  I appreciate your help and take back my earlier posts. 

.14 BTC may not be much for you BTC Titans on here lol but it really means a great deal to me and I am really left not knowing what to do here.   

snooched, so far I have responded to all of your emails within 12 hours, so I'm not sure why you are framing it as if I'm ignoring you in some of your posts. Please have some understanding for why I cannot reply to all emails immediately: As I also run bustabit I receive dozens of emails every day and on particularly busy days there can be upwards of 100 messages. It is impossible to respond to every email right away while also getting anything else done that day. For that reason I only check my inbox a few times a day and ask that people wait up to 24 hours for my response, which I believe is reasonable.

bustadice doesn't provide account support via the forum and I don't publicly comment on support requests, so if you have questions regarding the specifics of your support request please keep them to our existing email thread. That being said, I will state a few general things:

Withdrawing from bustadice requires the account's login credentials. It is impossible to withdraw from bustadice without knowing the account's password and 2FA code (if enabled). The same applies to deleting an account. Someone being able to withdraw from an account or delete it means that they knew its login credentials.

bustadice does not store users' password anywhere and there is no indication whatsoever that bustadice itself was compromised. In my experience, when a user's login credentials are compromised it is usually because their computer is infected by malware (especially if they recently tried some sort of "bustadice hack", "bustadice predictor" or similar) or they inadvertently showed the attacker their login credentials, e.g. while sharing their screen.

Are you sure that you did send funds to the right address?

No one will believe you when you don't have any evidence other than stories.

AFAIK, no one faced this kind of issue while using Bustadice.

500BTC loan and claiming a reputed gambling site scammed you, Am I the only one get feeling of trolls here.

Seems unlikely. Bustadice is quoting me 2531 satoshis for an instant withdrawal (although that amount is constantly changing), while the amount missing is 143023 satoshis, which to me seems way too high to chalk off as fees.
Assuming everything in your story is as described, it could give interesting insight. I would try chase up exactly what happened. We have a few possibilities if your account was compromised:

a) They gambled the $10, then decided with withdraw the rest.

If so, why were they not worried about getting noticed?


b) They withdrew everything but $10, which they left to gamble.

If so, this seems to indicate they are a compulsive gambler, or something?


c) They were sloppy and just threw away $10?  

If so, weird. The withdrawal form has a "max" (and iirc default to it).




I would be careful to not try do your own blockchain analysis, it's quite a bit more subtle than you imagine. Just report the direct address you were given (even though it currently has 0 balance), if you didn't withdraw there -- and let the experts try track where it flowed to.

Thanks I will try chainanalysis.

As to the discrepancy in the amount of 0.001~ I am assuming that it is attributable to the commission or fees that bustadice takes for withdrawals? Or deposits? Could be wrong.

I checked and it appears that my funds are now parked at a BTC address with a total of approximately .18 or so BTC. The funds are sitting there so hopefully chainanalysis will help.

Thanks for your suggestion.


Edit* realized I didn’t respond directly to the post above. Yes Daniel provided me that address after spamming his emails and the support link with my requests. He stated that there was only one withdrawal and that was the address he provided.

Apologies for the heated OP that I posted but hope it is understandable that I’m frustrated about this and being new to crypto doesn’t help much in terms of my understanding and attempt in seeking a resolution here.

I think the "paid by a competitor to post lies" is something that seems logical, but in my estimation pretty much never happens. I'm not exactly sure why, but if I had to guess, the competitors that would ostensibly benefit the most are in that position because they've worked hard on building a trustworthy brand and focused on making a good product.  Plus a bunch of FUD around bitcoin-casinos could likely indirectly harm them more than what they'd directly gain.



Ok. So that's interesting. So it means the withdrawal happened:

2019-12-10 14:36

And the deposit you linked to earlier would've confirmed at:

2019-12-10 14:34

---

So basically within 2 minutes of the funds hitting your account, they were withdrawn. You also mention your account was deleted, which requires a passwords. So my money is strongly on someone else must have had your account/password?

You could also probably consider contacting chainalysis.com, and asking them to flag that address. They work with a lot of exchanges, and it's possible it'll help lead to the recover of your funds if they are deposited to an exchange or something like that


--

Edit: Did Daniel actually give your that address? Or did you just find it on a block-explorer? Because it doesn't really add-up to me. You deposited 0.14 BTC, but then 0.13856977 BTC was immediately sent to that address.  So there's about ~$10 missing. If it was a compromised account, why wouldn't they take the entire balance of the account? It would be odd for them to gamble on a compromised account (as the real owner would likely notice) and it would be odd to not hit "max" on the withdrawal form.

Update: Daniel did reply and kindly provided the bitcoin address to which my funds (and the only withdrawal transaction) were withdrawn to.  I'm left with the BTC address

bc1qd26c4eev3vhz3jgyd6wu38hnaglwa7l6z0r6fs

Any ideas?  Crypto-newb here.  Thanks

Lol I give up.

Yes, a troll, and a scammer probably... litigation financing my ass.


Much attorney wow legal:

https://bustadice.com/tos

https://imgur.com/VrBuxkFhttps://imgur.com/VrBuxkF

Sigh.. not a troll.  5-500BTC loan for litigation case financing.  The 0.05 loan was legitimate and now no longer needed as my funds were cleared by Coinbase (ACH transfer).

See photo for my primedice account showing the transaction hash

Or just a troll. This user was asking for a 500 BTC loan for "litigation": https://bitcointalksearch.org/topic/usa-litigation-financingfunding-honest-request-and-call-for-help-5206716

And then for a 0.05 BTC loan: https://bitcointalksearch.org/topic/005-btc-loan-24hr-return-0055-5207241


Thanks for confirming.

Transaction Hash: ee4eda28118baa194b43ed1a37dd1d59312119fa0e3760ccf87f2ee5c6fddfa9

I am not making this up nor am I being paid by anyone to post lies here.  The fact is that I sent .14 BTC from my primedice account to my bustadice account.  I also added 2FA to my bustadice account and then shortly thereafter, I was logged out and my account was deleted.

I have kindly asked Daniel Evans to look into this issue, to which I've received a response that it must be my fault?  I have kindly asked Mr. Evans to please provide any and all information that you can about this, including the login times/IP addresses for my account - silence.

So please, I am kindly requesting once more that Mr. Evans provide any and all information with regards to my account that was deleted (not on my own accord) to which I have a balance of .14 BTC.

At the very least, you can be a responsible owner of your gaming site and assist with finding out what happened rather than reply by saying it was my fault or that I'm paid to do write negative things about your site.



On that note, accepting offers to write negative posts about bustadice for .14 BTC.  10 posts for .14 BTC thanks all.

*****EDIT******* The offer above is sarcasm only and not an actual offer to write negative posts about bustadice.  Thanks all.