Topic: [Emergency ANN] Bitcoinica site is taken offline for security investigation - page 55. (Read 224562 times)

How you reached the conclusion that address is a vanity address? Seems pretty random to me with the exception of the EML part

Is this relevant?

http://www.bestsoftware4download.com/software/k-bitcoin-market-t-free-eml-into-pst-download-czwzfidi.html

What ...

Another thing I was just thinking since Mt.Gox blacklists "tainted funds"  - they should go ahead and entertain the person to send their coins "to cash" out but never cash them out thus retrieving the coins again ?

I doubt that's intended. The EML prefix probably is, though.

Thanks, bud. Stupid me. Read it several times, but only now it makes sense.

Aside:

Whoever created this vanity address 1EMLwAwseowTkDtKnEHRKrwQvzi4HShxSX is the cracker. Notice that there is only one number in it--a 4. That took a while.

"we" == the readers in this forum, especially following this thread

You know, 'WE' as in 'US'.

"we" == the readers in this form, especially in this thread 

Maybe I'm just "fishing" here, but who is "we" in the following?


~Bruno~

What email?  Has the attacker sent out an e-mail?


Account history shows balances, deposits, withdrawals and transactions all tied to my username.

If that is what will be leaked in the "mass leak"', there will be some interesting discoveries.  Discoveries like, for instance, the amount of past trading profits.   Will there be some ammended returns filed for the 2011 tax year as a result?

Particularly of interest would be the link between username and bitcoin addresses used for all deposits and withdraws.

That would be quite useful when doing flow analysis:
 - http://toolongdidntread.com
 - http://anonymity-in-bitcoin.blogspot.com/2011/07/bitcoin-is-not-anonymous.html

I'm going to go out there and say Zho   zho tounged his own service!!!

How convenient ... after Intersango gets bitcoinica some "hacker" steals all the coins.

Zhoutong was the only one awake during the "hack" ... why am I not surprised

to clarify: in my previous post, I just pasted in a statement, which appeared on bitcoinica.blogspot.com yesterday afternoon. It was the first sort-of official statement. We didnt get any verification if it was really official. The user "myself" re-posted it on this thread, I saved a copy locally, which I reposted here.

--Ichthyo

..just to repost that statement
bitcoinica.blogspot.com

---

It is with much regret that we write to inform our users of a recent security breach at Bitcoinica. At approximately 1:00pm GMT, our live production servers were compromised by an attacker and they used this access to deplete our online wallet of 18547 BTC.

We will learn more as we investigate, but would like to address early concerns.
We have suspended operations while we focus on our investigation.
The overwhelming majority of our bitcoin deposits were not stolen.
The thief stole from us not you. All withdrawal requests will be honored.
The database was most likely compromised.

The last point has important implications for the following:

PASSWORDS
Bitcoinica uses the most stringent best practices for password security.* Therefore, it is extremely unlikely that even full database access would give the attacker knowledge of your Bitcoinica password. It is always best not to reuse passwords among different online services and we recommend changing passwords if you have done this.

IDENTIFYING DOCUMENTS
All identifying documents for verified customers are stored on separate servers at a separate data center and separately encrypted. Even full access to website database would not give the attacker access to this data.

USER INFORMATION
Other user information that you've provided upon account creation is stored in the database. If the attacker has full access to the database, they would have access to this information. This would include your username, email and account history, but not information about your banking details outside of Bitcoinca. Users should be especially suspicious of any emails received to your Bitcoinica email address. It is always a best practice to never click an email link to login to any online service.

We're providing this notice primarily for the protection of our users.

We will have more to say soon about the circumstances surrounding this attack and what we will do to handle it.

- The Bitcoinica Team




* For the technically inclined, we salt and encrypt passwords with bcrypt.
Posted 36 minutes ago by Bitcoinica

I've seen. In this thread. Do not have been compromised. Verification of the data - not been compromised.

Looks like he is advertising the fatal flaw that allowed the compromise, the email server.

It was in this thread but appears to have been removed.
[/quote]

I read it here also.

If Bitcoinica was sold, the new owners would have to be a registered FSP also. I just can't go and buy a real estate brokerage business--I must be licensed, among other things.

Well the Admins should still see it and those in the community that keep the forum downloaded.