Coinlenders: wayner:2.97:0:U
Edit: And thankyou for putting this together.
Topic: CoinLenders, Inputs.io, Tradefortress (HACK) - page 23. (Read 39725 times)
What happened
On October 24rd 6:37am UTC+10:, Inputs.io's hot wallet, of 4000btc, was emptied by a hacker.1 2
TradeFortress claimed the hack occurred on the 26th.3
His Linode administrative account was first accessed by the hacker on Oct 23rd, from IP Address 101.0.79.18, at 11:57am UTC+10 from Australia4.
He gained access to the account by compromising the email address "[email protected]" and requesting a password reset from the Linode server. The reset link was automatically forwarded from the administrative email "[email protected]" to "[email protected]".5
He did not stop forwarding emails until October 27th UTC+10.5
TradeFortress reset his Linode Manager password and logged into it by 8:25pm UTC+10.4
Between 8:25pm UTC+10 and 6:37am UTC+10, Tradefortress did not shut down the site, he did not move any of the coins to a cold wallet, he did not report the theft to local authorities, he did not notify any depositors, and he did not stop any new users from depositing to his site.
Sometime after this but before second hack, TradeFortress enabled 2FA on his Linode Manager.5
On November 8th at 6:01am UTC+10, the server was hacked again using a direct Lish connection, bypassing 2FA and stealing an additional 160 bitcoins.6
By his own admission, TradeFortress was embezzling the deposits of new users to distribute the bitcoins to users that had lost their entire deposits during the hack.
TradeFortress did not have any bitcoins stored in a cold wallet either for CoinLenders.com or Inputs.io.
CoinLenders was affected, because it had a Inputs.io wallet.
If you are a victim.
The following will help you to report to the proper authorities;
United States:
http://travel.state.gov/travel/cis_pa_tw/cis/cis_4522.html
Goal of this thread
I would like Coinlenders users and Inputs.io users to post relevant information, and I would like to put together a list of users and their claims. I have requested similar documentation from TradeFortress.
I am not interested in any kind of speculation, fiction, trolling, unbacked accusations, "pity-me" stories, or any other kind of uninformative posts. They will be deleted.
Public information regarding this hack will be collated and placed here.
This is to assist in investigation, inform those at stake, perform verification and oversight, and prune useless information.
Australian law enforcement activity
TradeFortress and his hosting provider are located in Australia, and although I do not have any hard evidence to post, I am sure that Australian law enforcement has been notified.
TradeFortress' identifying information
https://bitcointalksearch.org/topic/--327178
http://www.abc.net.au/news/2013-11-08/bitcoin-site-hacked-founder-says/5078148
Current plans for remuneration
Inputs.io accounts are being refunded partial amounts inversely proportionate to the amount of BTC they had at Inputs.io, using a sliding scale.
As a rough estimation (see blow), deposits of over 10btc are refunded less than 50%, deposits below 10btc are refunded greater than 50%.
There has been no announcement yet regarding CoinLenders Deposits.
Inputs.io and Coinlenders account balances.
Please send a private message to me, or post below to be added to this list. You will be anonymous unless you explicitly tell me otherwise, or post the information publicly. They will not be verified unless I can get reputable documentation (Most likely from TradeFortress).
I am including interest, because that is owed even if TradeFortress is unable to pay it.
Users will be posted as [Username]:[BTC owed]:[BTC returned]:[Unverified/Verified]
CoinLenders
DumbFruit:955.24559517:199.383
Anonymous:652.92445572:0:U
MaximGuns:531.87697838:0:U
Anonymous:332.2162344:0:U
Anonymous:327.3652095:0:U
summerysnow:299.03625778:0:U
Anonymous:284.39655444:0:U
Anonymous:244:0:U
mion:236.77:0:U
druid:222.7:0:U
Bradyon:226.07010047:0:U
Anonymous:189.36658901:0:U
Anonymous:151.15913821:0:U
dwdoc1:150.42238118:0:U
Anonymous:147.46497819:0:U
Anonymous:144:U
Anonymous:112.13755308:0:U
Anonymous:102.89:0:U
drsteve:102.13386171:0:U
ohyeahok:88:0:U
hwmax:86.93779676:0:U
Anonymous:76.31622447:0:U
ninjaboon:75.23241838:0:U
docdocdoc9:53.98199194:0:U
Anonymous:47:0:U
gotpetum:43.51560284:0:U
BTCWarrior:35.62:0:U
Anonymous:32.15938119:0:U
sleger:30.88981146:0:U
goodtimes73:28.58:0:U
001sonkit:26.44:0:U
currencyforall:21.84629652:0:U
Anonymous:21.14:0:U
Anonymous:20.62151404:0:U
Anonymous:20.01551996:0:U
windywinter:20:20:U <--Mistake
[email protected]:19.89484849:0:U
expodryerase:18.51941806:0:U
MaxwellsDemon:17.45:U
ace207:16.68791006:0:U
4btconly:16.20130365:0:U
nsd:15.90443981:0:U
Anonymous:15.78:0:U
TwinWinNerD:15.55:0:U
flmbg:15.15:0:U
cismasu:15:0:U
Dougie 12.857412:0:U
Anonymous:10.89:0:U
toer:10.77683827:0:U
Anonymous:10.6815:0:U
dunkbc:10.5627535:0:U
davecoin:10.05859733:0:U
gog1:9.80594344:0:U
doctorbit:8.7:0:U
Anonymous:8.39168696:0:U
Anonymous:8.10636761:0:U
InvalidSnack:7.69121463:0:U
Anonymous:6.28562606:0:U
C10H15N:6.00038338:0:U
chrishastie27:5:0:U
batman:5:0:U
gravity_boy:4.01865378:0:U
misterwiser:4.00660825:0:U
gravity_boy:4.01865378:0:U
favdesdu:4:0:U
Dorpsgek:3.66741301:0:U
joele:3.65732106:0:U
mobile314:3.59998956:0:U
ezacarias:3.593:0:U
Xrim:3.5423:0:U
CoinLenders01:3.42991422:0:U
Anonymous:3.14700032:0:U
maraoz:3.0521687:0:U
davedx:3.01:0:U
wayner:2.97:0:U
efc17:2.96594563:0:U
poolbath1:2.84476076:0:U
wheelerscw2000:2.56224724:0:U
hsharrison:2.43970326:0:U
goodhope:2.08111493:0:U
EntropiaFox:1.97655724:0:U
Daytona:1.80:0:U
Anonymous:1.70787314:0:U
artbatista:1.62:0:U
mxisaac:1.50021415:0:U
[email protected]:1.5001855:0:U
ahbartsch:1.42248522:0:U
asanerworld: 1.09027010:0:U
simonsaysmine:1.07027926:0:U
Anonymous:1.0610762:0:U
Zedeius:1.05606876:0:U
kilerz:1.05240088:U
Nesa:1.03:0:U
ccpearce:1:0:U
Total Owed:6514.894239
Total Paid:219.383
Users:94
Inputs.io
TomJeff:440:0:U
Miles:40:0:U
dwdoc1:20.795:8.59:U
HereToTrade:7.74:3.54:U
lonestar108:7.44986999:0:U
simple-dice:4.21:2.58:U -No fee, unconfirmed.
quimpstar:2.785:1.69:U -Unconfirmed
Anonymous:2.2:0:U
Korbman:1.1263595:0.85:U
Anonymous:1:0.74:U
Anonymous:1:0:U
Anonymous:0.55487:0.45:U
Anonymous:0.5:0.4:U
ChrisJ:0.2996:0:U
bitcoincasinoprojof:0.26:0.26:U
niktitan132:0.2445:0.03:U
snuff:0.2856333:0.23:U
Anonymous:0.099:0.08:U
Ashu:0.08238875:0:U
redtwitz:0.08209722:0:U
GoldBit89:0.06972042:0.06:U -No fee, unconfirmed.
Anonymous:0.63:0.5:U
misterwiser:0.03079955:0:U
Total Owed: 531.4448387
Total Paid: 20
Users:23
Food for thought..
I do not show this quote to imply that TradeFortress was a scammer, but that the problem that I find myself in, and how to try to avoid it, was written a year before this event took place. So I'm putting it here in case you find it as educational as I did;
1transaction; http://blockchain.info/tx/9536feebe3a50b94f85ca27d56e669a7209bd4188385d55c5b97227c95cf7f74
2address; http://blockchain.info/address/1EMztWbGCBBrUAHquVeNjWpJKcB8gBzAFx
3https://bitcointalksearch.org/topic/m.3505966
4https://bitcointalksearch.org/topic/m.3505394
5https://bitcointalksearch.org/topic/m.3632208
6http://blockchain.info/tx/d9fd404d60cc65e77a0ab460524d112f1a851430ed431b5aa6840bdf9c42355f
7http://trilema.com/2012/gpg-contracts/
On October 24rd 6:37am UTC+10:, Inputs.io's hot wallet, of 4000btc, was emptied by a hacker.1 2
TradeFortress claimed the hack occurred on the 26th.3
His Linode administrative account was first accessed by the hacker on Oct 23rd, from IP Address 101.0.79.18, at 11:57am UTC+10 from Australia4.
He gained access to the account by compromising the email address "[email protected]" and requesting a password reset from the Linode server. The reset link was automatically forwarded from the administrative email "[email protected]" to "[email protected]".5
He did not stop forwarding emails until October 27th UTC+10.5
TradeFortress reset his Linode Manager password and logged into it by 8:25pm UTC+10.4
Between 8:25pm UTC+10 and 6:37am UTC+10, Tradefortress did not shut down the site, he did not move any of the coins to a cold wallet, he did not report the theft to local authorities, he did not notify any depositors, and he did not stop any new users from depositing to his site.
Sometime after this but before second hack, TradeFortress enabled 2FA on his Linode Manager.5
On November 8th at 6:01am UTC+10, the server was hacked again using a direct Lish connection, bypassing 2FA and stealing an additional 160 bitcoins.6
By his own admission, TradeFortress was embezzling the deposits of new users to distribute the bitcoins to users that had lost their entire deposits during the hack.
TradeFortress did not have any bitcoins stored in a cold wallet either for CoinLenders.com or Inputs.io.
CoinLenders was affected, because it had a Inputs.io wallet.
If you are a victim.
The following will help you to report to the proper authorities;
United States:
http://travel.state.gov/travel/cis_pa_tw/cis/cis_4522.html
Goal of this thread
I would like Coinlenders users and Inputs.io users to post relevant information, and I would like to put together a list of users and their claims. I have requested similar documentation from TradeFortress.
I am not interested in any kind of speculation, fiction, trolling, unbacked accusations, "pity-me" stories, or any other kind of uninformative posts. They will be deleted.
Public information regarding this hack will be collated and placed here.
This is to assist in investigation, inform those at stake, perform verification and oversight, and prune useless information.
Australian law enforcement activity
TradeFortress and his hosting provider are located in Australia, and although I do not have any hard evidence to post, I am sure that Australian law enforcement has been notified.
TradeFortress' identifying information
https://bitcointalksearch.org/topic/--327178
http://www.abc.net.au/news/2013-11-08/bitcoin-site-hacked-founder-says/5078148
Current plans for remuneration
Inputs.io accounts are being refunded partial amounts inversely proportionate to the amount of BTC they had at Inputs.io, using a sliding scale.
As a rough estimation (see blow), deposits of over 10btc are refunded less than 50%, deposits below 10btc are refunded greater than 50%.
There has been no announcement yet regarding CoinLenders Deposits.
Inputs.io and Coinlenders account balances.
Please send a private message to me, or post below to be added to this list. You will be anonymous unless you explicitly tell me otherwise, or post the information publicly. They will not be verified unless I can get reputable documentation (Most likely from TradeFortress).
I am including interest, because that is owed even if TradeFortress is unable to pay it.
Users will be posted as [Username]:[BTC owed]:[BTC returned]:[Unverified/Verified]
CoinLenders
DumbFruit:955.24559517:199.383
Anonymous:652.92445572:0:U
MaximGuns:531.87697838:0:U
Anonymous:332.2162344:0:U
Anonymous:327.3652095:0:U
summerysnow:299.03625778:0:U
Anonymous:284.39655444:0:U
Anonymous:244:0:U
mion:236.77:0:U
druid:222.7:0:U
Bradyon:226.07010047:0:U
Anonymous:189.36658901:0:U
Anonymous:151.15913821:0:U
dwdoc1:150.42238118:0:U
Anonymous:147.46497819:0:U
Anonymous:144:U
Anonymous:112.13755308:0:U
Anonymous:102.89:0:U
drsteve:102.13386171:0:U
ohyeahok:88:0:U
hwmax:86.93779676:0:U
Anonymous:76.31622447:0:U
ninjaboon:75.23241838:0:U
docdocdoc9:53.98199194:0:U
Anonymous:47:0:U
gotpetum:43.51560284:0:U
BTCWarrior:35.62:0:U
Anonymous:32.15938119:0:U
sleger:30.88981146:0:U
goodtimes73:28.58:0:U
001sonkit:26.44:0:U
currencyforall:21.84629652:0:U
Anonymous:21.14:0:U
Anonymous:20.62151404:0:U
Anonymous:20.01551996:0:U
windywinter:20:20:U <--Mistake
[email protected]:19.89484849:0:U
expodryerase:18.51941806:0:U
MaxwellsDemon:17.45:U
ace207:16.68791006:0:U
4btconly:16.20130365:0:U
nsd:15.90443981:0:U
Anonymous:15.78:0:U
TwinWinNerD:15.55:0:U
flmbg:15.15:0:U
cismasu:15:0:U
Dougie 12.857412:0:U
Anonymous:10.89:0:U
toer:10.77683827:0:U
Anonymous:10.6815:0:U
dunkbc:10.5627535:0:U
davecoin:10.05859733:0:U
gog1:9.80594344:0:U
doctorbit:8.7:0:U
Anonymous:8.39168696:0:U
Anonymous:8.10636761:0:U
InvalidSnack:7.69121463:0:U
Anonymous:6.28562606:0:U
C10H15N:6.00038338:0:U
chrishastie27:5:0:U
batman:5:0:U
gravity_boy:4.01865378:0:U
misterwiser:4.00660825:0:U
gravity_boy:4.01865378:0:U
favdesdu:4:0:U
Dorpsgek:3.66741301:0:U
joele:3.65732106:0:U
mobile314:3.59998956:0:U
ezacarias:3.593:0:U
Xrim:3.5423:0:U
CoinLenders01:3.42991422:0:U
Anonymous:3.14700032:0:U
maraoz:3.0521687:0:U
davedx:3.01:0:U
wayner:2.97:0:U
efc17:2.96594563:0:U
poolbath1:2.84476076:0:U
wheelerscw2000:2.56224724:0:U
hsharrison:2.43970326:0:U
goodhope:2.08111493:0:U
EntropiaFox:1.97655724:0:U
Daytona:1.80:0:U
Anonymous:1.70787314:0:U
artbatista:1.62:0:U
mxisaac:1.50021415:0:U
[email protected]:1.5001855:0:U
ahbartsch:1.42248522:0:U
asanerworld: 1.09027010:0:U
simonsaysmine:1.07027926:0:U
Anonymous:1.0610762:0:U
Zedeius:1.05606876:0:U
kilerz:1.05240088:U
Nesa:1.03:0:U
ccpearce:1:0:U
Total Owed:6514.894239
Total Paid:219.383
Users:94
Inputs.io
TomJeff:440:0:U
Miles:40:0:U
dwdoc1:20.795:8.59:U
HereToTrade:7.74:3.54:U
lonestar108:7.44986999:0:U
simple-dice:4.21:2.58:U -No fee, unconfirmed.
quimpstar:2.785:1.69:U -Unconfirmed
Anonymous:2.2:0:U
Korbman:1.1263595:0.85:U
Anonymous:1:0.74:U
Anonymous:1:0:U
Anonymous:0.55487:0.45:U
Anonymous:0.5:0.4:U
ChrisJ:0.2996:0:U
bitcoincasinoprojof:0.26:0.26:U
niktitan132:0.2445:0.03:U
snuff:0.2856333:0.23:U
Anonymous:0.099:0.08:U
Ashu:0.08238875:0:U
redtwitz:0.08209722:0:U
GoldBit89:0.06972042:0.06:U -No fee, unconfirmed.
Anonymous:0.63:0.5:U
misterwiser:0.03079955:0:U
Total Owed: 531.4448387
Total Paid: 20
Users:23
Food for thought..
I do not show this quote to imply that TradeFortress was a scammer, but that the problem that I find myself in, and how to try to avoid it, was written a year before this event took place. So I'm putting it here in case you find it as educational as I did;
This system is obviously far from perfect at the current time. For one, as it is nascent there exists the incentive to follow short term goals : build an identity up to whatever value, then strip it by taking the money and splitting. This has happened so far numerous times, and from a certain perspective it may seem the main economic activity surrounding Bitcoin at the moment, greatly compounded by the yet inept identity-valuation methods used by participants, their unwarranted self confidence (everyone thinks they’re a great judge of men, and everyone thinks their particular assumptions are both correct and warranted), their imbecillic pride manifested in the stupidest way it could, ie trying to keep “things” under wraps and all the rest of typically human failure. For the other, as it is nascent very little is in fact understood or generally known about it, and so gross mistakes happen quite cavalierly.7 -Mircea Popescu
1transaction; http://blockchain.info/tx/9536feebe3a50b94f85ca27d56e669a7209bd4188385d55c5b97227c95cf7f74
2address; http://blockchain.info/address/1EMztWbGCBBrUAHquVeNjWpJKcB8gBzAFx
3https://bitcointalksearch.org/topic/m.3505966
4https://bitcointalksearch.org/topic/m.3505394
5https://bitcointalksearch.org/topic/m.3632208
6http://blockchain.info/tx/d9fd404d60cc65e77a0ab460524d112f1a851430ed431b5aa6840bdf9c42355f
7http://trilema.com/2012/gpg-contracts/
Jump to: