Pages:
Author

Topic: Cryptsy, BTC-E and Hotmail account hacked (Read 3079 times)

legendary
Activity: 3766
Merit: 1217
December 09, 2013, 10:33:48 AM
#21
Which anti-virus you were using in your system? How come the hacker got in to your Hotmail, when the anti-virus was active?
full member
Activity: 168
Merit: 100
December 09, 2013, 09:49:58 AM
#20
Dude, relax!
I did check the website and know the service and others like this one.
I just cannot trust nobody with this kind of data.
Thats all.

Hehe, it's fine. I just get annoyed that people leap to conclusions without first seeking to understand, something common to the bitcoin space. As I mentioned the Lastpass system addresses precisely that point - TNO. Trust No-One. You are sensible to consider that, and if open source only fits your criteria then great.
full member
Activity: 186
Merit: 100
December 09, 2013, 08:26:36 AM
#19
Go and research Lastpass. It is TNO (Trust No-One) and PIE (Pre-Internet Encryption). The encrypted password vault is replicated to all the browsers you have it installed in, and the Lastpass servers. They cannot decrypt it. There is an iPhone App too. It's really an amazing product if you can be bothered to look.

So you say that you trust this Lastpass service with all of your passwords.
Ok. I just cannot do that. I handle passwords to access Wallets, Email, Dedicated Servers, Shared servers, Homebanking, etc, etc.
No, I cannot afford to trust nobody but me.
I use a set of different passwords for my stuff. They are all well formed and will never be part of any dictionary.
And I can remember my passwords because I must do so.
People rembered complete books for years.


If you cannot be bothered to look at it then fine. If you did you would realize all your concerns are addressed. Anyway it seems I'm wasting my time, a bit like trying to explain bitcoin to Peter Schiff..

Dude, relax!
I did check the website and know the service and others like this one.
I just cannot trust nobody with this kind of data.
Thats all.
hero member
Activity: 490
Merit: 500
December 09, 2013, 08:20:14 AM
#18
Learn a lesson, use 2fa and different passwords. Go relax it could have been more. Also it's probably the person closest to you if not a hacker.

Yeah I had 2fa for Cryptsy. Just had another thought, Bitcointalk got hacked recently and passwords were stolen... I had same/similar passwords it is possible they could have performed an alphabet brute force? Oh well no point worrying about it, you're right I could have loss waaay more. Read a post here were a guy lost 25,000 BTC 2 years ago...

Always use different username/password combinations on different sites. For me, I use 10minutemail in most cases, even the account got compromised it won't be associated with my other accounts.
full member
Activity: 168
Merit: 100
December 09, 2013, 07:59:15 AM
#17
Go and research Lastpass. It is TNO (Trust No-One) and PIE (Pre-Internet Encryption). The encrypted password vault is replicated to all the browsers you have it installed in, and the Lastpass servers. They cannot decrypt it. There is an iPhone App too. It's really an amazing product if you can be bothered to look.

So you say that you trust this Lastpass service with all of your passwords.
Ok. I just cannot do that. I handle passwords to access Wallets, Email, Dedicated Servers, Shared servers, Homebanking, etc, etc.
No, I cannot afford to trust nobody but me.
I use a set of different passwords for my stuff. They are all well formed and will never be part of any dictionary.
And I can remember my passwords because I must do so.
People rembered complete books for years.


If you cannot be bothered to look at it then fine. If you did you would realize all your concerns are addressed. Anyway it seems I'm wasting my time, a bit like trying to explain bitcoin to Peter Schiff..
full member
Activity: 186
Merit: 100
December 09, 2013, 07:34:22 AM
#16
Go and research Lastpass. It is TNO (Trust No-One) and PIE (Pre-Internet Encryption). The encrypted password vault is replicated to all the browsers you have it installed in, and the Lastpass servers. They cannot decrypt it. There is an iPhone App too. It's really an amazing product if you can be bothered to look.

So you say that you trust this Lastpass service with all of your passwords.
Ok. I just cannot do that. I handle passwords to access Wallets, Email, Dedicated Servers, Shared servers, Homebanking, etc, etc.
No, I cannot afford to trust nobody but me.
I use a set of different passwords for my stuff. They are all well formed and will never be part of any dictionary.
And I can remember my passwords because I must do so.
People rembered complete books for years.
hero member
Activity: 658
Merit: 502
Doesn't use these forums that often.
December 09, 2013, 07:04:46 AM
#15
Go and research Lastpass. It is TNO (Trust No-One) and PIE (Pre-Internet Encryption). The encrypted password vault is replicated to all the browsers you have it installed in, and the Lastpass servers. They cannot decrypt it. There is an iPhone App too. It's really an amazing product if you can be bothered to look.
No, but they could add custom JS, being non-open source.
Use KeePass.
full member
Activity: 168
Merit: 100
December 09, 2013, 06:57:48 AM
#14
Go and research Lastpass. It is TNO (Trust No-One) and PIE (Pre-Internet Encryption). The encrypted password vault is replicated to all the browsers you have it installed in, and the Lastpass servers. They cannot decrypt it. There is an iPhone App too. It's really an amazing product if you can be bothered to look.
newbie
Activity: 3
Merit: 0
December 09, 2013, 06:55:19 AM
#13
Yeah...upon reading this I've changed my Cryptsy password and added 2fa with my phone number.  Sorry to hear that happened to you OP.
full member
Activity: 186
Merit: 100
December 09, 2013, 06:30:19 AM
#12
Use Lastpass to generate a 30 char password for every website you have. I don't know any of my passwords because all my usernames and all my passwords are different on every site I have registered on.

But then how will you store your passwords? Storing them by writing down in paper is not safe.

Exactly ...
http://en.wikipedia.org/wiki/Single_point_of_failure
legendary
Activity: 3766
Merit: 1217
December 09, 2013, 06:25:01 AM
#11
Use Lastpass to generate a 30 char password for every website you have. I don't know any of my passwords because all my usernames and all my passwords are different on every site I have registered on.

But then how will you store your passwords? Storing them by writing down in paper is not safe.
full member
Activity: 186
Merit: 100
December 09, 2013, 06:01:30 AM
#10
Use Lastpass to generate a 30 char password for every website you have. I don't know any of my passwords because all my usernames and all my passwords are different on every site I have registered on.

And where do you store your passwords?
full member
Activity: 168
Merit: 100
December 09, 2013, 05:57:17 AM
#9
Use Lastpass to generate a 30 char password for every website you have. I don't know any of my passwords because all my usernames and all my passwords are different on every site I have registered on.
member
Activity: 80
Merit: 10
Cryptocurrency, best creation ever!
December 09, 2013, 05:54:48 AM
#8
Learn a lesson, use 2fa and different passwords. Go relax it could have been more. Also it's probably the person closest to you if not a hacker.

Yeah I had 2fa for Cryptsy. Just had another thought, Bitcointalk got hacked recently and passwords were stolen... I had same/similar passwords it is possible they could have performed an alphabet brute force? Oh well no point worrying about it, you're right I could have loss waaay more. Read a post here were a guy lost 25,000 BTC 2 years ago...

What kind of 2FA do they implement?

They send a unique code to your email address.
full member
Activity: 186
Merit: 100
hero member
Activity: 593
Merit: 505
Wherever I may roam
December 09, 2013, 05:33:56 AM
#6
Learn a lesson, use 2fa and different passwords. Go relax it could have been more. Also it's probably the person closest to you if not a hacker.

Yeah I had 2fa for Cryptsy. Just had another thought, Bitcointalk got hacked recently and passwords were stolen... I had same/similar passwords it is possible they could have performed an alphabet brute force? Oh well no point worrying about it, you're right I could have loss waaay more. Read a post here were a guy lost 25,000 BTC 2 years ago...

What kind of 2FA do they implement?
sr. member
Activity: 434
Merit: 250
December 09, 2013, 05:17:03 AM
#5
I think the biggest lesson is don't store coins or fiat in exchanges. Use them to exchange then withdraw back to your wallet straightaway. The only reason you shouldn't do this is if you want to day trade or do inter-exchange arbitrage.

Also, of course, encrypt your local wallet with a very strong password.
full member
Activity: 210
Merit: 100
Crypto News & Tutorials - Coinramble.com
December 09, 2013, 04:57:42 AM
#4
Learn a lesson, use 2fa and different passwords. Go relax it could have been more. Also it's probably the person closest to you if not a hacker.

Yeah I had 2fa for Cryptsy. Just had another thought, Bitcointalk got hacked recently and passwords were stolen... I had same/similar passwords it is possible they could have performed an alphabet brute force? Oh well no point worrying about it, you're right I could have loss waaay more. Read a post here were a guy lost 25,000 BTC 2 years ago...

That could exactly be the case if you used the same password here on any of your mail or on Cryptsy!
member
Activity: 80
Merit: 10
Cryptocurrency, best creation ever!
December 09, 2013, 04:40:54 AM
#3
Learn a lesson, use 2fa and different passwords. Go relax it could have been more. Also it's probably the person closest to you if not a hacker.

Yeah I had 2fa for Cryptsy. Just had another thought, Bitcointalk got hacked recently and passwords were stolen... I had same/similar passwords it is possible they could have performed an alphabet brute force? Oh well no point worrying about it, you're right I could have loss waaay more. Read a post here were a guy lost 25,000 BTC 2 years ago...
legendary
Activity: 2912
Merit: 1060
December 09, 2013, 04:36:42 AM
#2
Learn a lesson, use 2fa and different passwords. Go relax it could have been more. Also it's probably the person closest to you if not a hacker.
Pages:
Jump to: