Topic: [GLBSE] Introducing: Bitcoin Syndicate, a new mining op trading publicly! - page 4. (Read 23210 times)
August 13, 2012, 02:55:08 PM
Any status updates? Dividends from remaining hashing power? Properly redacted police report regarding MTGox theft?
July 30, 2012, 02:40:25 PM
https://mtgox.com/press_release_20120605.html
gox supported google authenticator as early as june 05
hindsight 20/20
gox supported google authenticator as early as june 05
hindsight 20/20
July 27, 2012, 07:18:32 AM
https://bitcointalk.org/index.php?topic=95738.0;topicseen
another reused password leads to pwned gox account.
another reused password leads to pwned gox account.
July 26, 2012, 09:32:56 AM
Just a quick update. Still nothing from the police, and I did get the MTGOX Evidence packet, it didn't really tell me anything new other than verify that in the logs the attack came in the stated number of attempts over a couple days. It will be more useful to provide to the police to simplify their job (and hopefully get more traction from them). Also the previous login attempts did come from random IP addresses all over the place.
Interesting enough, I got an email from mtgox yesterday offering me a free yubikey (due to the "rash of security and hacking issues lately") whatever that means. Seemed to be a general form letter they sent out to several customers, and not directly related to the syndicate. Too bad they didn't offer that a month ago...
Anyway, that aside, I'm working on a couple other angles that may result in returning some of the mining power we lost. I don't want to get people's hopes up, so I won't go into detail, but if it pans out it won't quite be back to full strength, but it will be a good boost in the right direction.
Thanks again for your patience.
Interesting enough, I got an email from mtgox yesterday offering me a free yubikey (due to the "rash of security and hacking issues lately") whatever that means. Seemed to be a general form letter they sent out to several customers, and not directly related to the syndicate. Too bad they didn't offer that a month ago...
Anyway, that aside, I'm working on a couple other angles that may result in returning some of the mining power we lost. I don't want to get people's hopes up, so I won't go into detail, but if it pans out it won't quite be back to full strength, but it will be a good boost in the right direction.
Thanks again for your patience.
July 18, 2012, 11:44:21 AM
I completely understand that it will take some time to get an actual police report, in no way did I mean release proof immediately. IMO, when you can get a copy post it on the BTCSYN forum and a link to the post here.
Hearing how closely you were working with Enterpoint I can see why you felt confident swapping hardware out. Shame they were not able to accept your payment in bitcoins in a reasonable timeframe.
Hearing how closely you were working with Enterpoint I can see why you felt confident swapping hardware out. Shame they were not able to accept your payment in bitcoins in a reasonable timeframe.
July 18, 2012, 09:32:15 AM
I wasn't too happy with the liquidate current FPGAs motion when I read it. Turns out that is the source of the stolen funds. May I ask what the reasoning was behind that move? The Cairnsmore1 devices don't even have a full working bitstream yet. Yes I know you can't rewind, but the whole maneuver there is a bit puzzling without some explanation of the reasoning involved.
Hey, to clarify the decision process there in point form (I believe most of this was clarified in either the discussion about, or the actual motion thread itself, but I may be wrong):- I was working closely with Enterpoint from before their release
- I was working on a bitstream for their boards which should perform very well
- I was the FIRST person not from Enterpoint to have my hands on a cairnsmore board for development (board serial #0001, first one off the lines). I was well aware of the hardware state, and it's capabilities.
- I was also well aware of their capabilities to release a very high power bitstream
- The hardware was designed to be 100% compatible with an out of the box icarus bitstream, but with twice the FPGA chips it would be twice as powerful as an icarus with no bitstream needed
- Unfortunately what we didn't know when making the decision was a small error was made (swapping the tx/rx pins between first and second fpga for each icarus chain) which made it incompatible.
- I'm also the one who developed the current bitstream for the cairnsmore which is a port of the icarus bitstream (which is FAR more difficult than you would think).
- I'm also currently working on a "fixed" version of the icarus port, in addition to a new completely unique bitstream for the cairnsmore (in parallel to the same effort going on at Enterpoint).
- Regardless, we were having major stability issues with our Icarus boards. Mostly due to the flaky usb chip used by ngzhang (which he admitted he would be replacing in the next gen).
- The cairnsmore boards not only had a nicer "industry standard" FTDI chip, but it was a high end, and capable chip. In addition to their Controller FPGA, and some infrastructure they added, their boards were far superior for stability.
- The cairnsmore boards carry a warranty far superior to Icarus.
- Once the cairnsmore attains it's "potential". It will be at LEAST equal to 2x an icarus, but with the strong suspicion that it will be more like 3x an icarus board in the end
- With this all said, the cairnsmore board is overall far superior to the icarus boards. Even at full retail of $950 USD (compared to over $500 USD per icarus)
- We were only getting about 75% yield out of the icarus due to stability and other issues
- Add in the short term discount to $640 on the cairnsmore boards
- Also consider that for a very short window due to unavailability of icarus, and no news on lancelot, there was a spike in the value of an icarus board due to supply/demand
- Because of all the above factors, we were able to offload our icarus boards for what we paid for them, redirect that money into almost 50% discounted cairnsmore.
- With those things considered, if we had NOT had the money stolen, we would have at LEAST seen a match in hashing power during the development phase while working with a sub-par bitstream
- Once a "Real" bitstream was released, we would see at LEAST double the hashing performance we had before, if not triple the hashing power on the best case.
- I think with that information available, the limited risk at the time (I could not have forseen someone hacking the account and stealing the money). It was a no-brainer move.
- We see 1 month of downtime, to double/triple our returns.
That's the reasoning that went into it. So again, at the time, with the information available, it was an extremely smart move. (unfortunately with the money being stolen any potential benefit has been shot to hell)
Glasswalker continuing to work to make BTCSYN whole (by this I mean continuing to operate with the reduced resources) and also posting a copy of the police report in a timely fashion (blacking out anything sensitive) would help reduce the fallout from this.
As for this, I am currently working to make BTCSYN whole. As you say by continuing to operate with the reduced resources, and seeking other means to improve our position to at the very least something resembling where we started out before the liquidation. Best case, we recover the funds, and can get back on track with just the loss of time, but that's a fairly optimistic view at this time.
As for releasing a copy of the police report. I believe I clarified this in one of my posts on one of the threads here but:
- I went to the police station and filed a police report via their "standard" procedure.
- The proof I got from this is a reciept for the police report, bearing the officers name and badge number which took the report, and a case number for the case we now have open.
- I did NOT get a full paper copy of the report.
- I asked if I could get one, they told me they cannot provide that at this time, First it needs to go to an investigator, and later a full report will be produced. At that time I can request a copy for a fee.
- I have not been contacted by them yet to follow up. The officer who took the report told me that it would be going to either Fraud or CyberCrime (or a joint effort between them). And it may be "several weeks" before I hear anything more.
- Unfortunately since there are only 2 data points on the reciept, both of which are potentially sensitive, Blacking those out would kind of defeat the purpose.
- I don't want to release that reciept to the general public, because I don't know if that would negatively impact the investigation (ie hordes of people inundate the officer with questions, harassment, or any other issues, who knows how it could affect it).
- So until I'm contacted by the investigator, and I am told it is safe to release it (and what I can release) I can't do that.
- What I HAVE done, is release a full scan of this reciept to MagicalTux at MTGox, as well as to Nefario at GLBSE. They are both aware of the situation, and the full details, and they have both offered their support in trying to resolve it.
- If you wish to verify that the report is legit, I suggest you contact one of those 2 individuals (and hopefully they are willing to verify for you).
I hope all this info helps clarify the situation for you, and hopefully re-instates some form of trust in me during this difficult process.
Thanks for your understanding.
July 17, 2012, 05:56:10 PM
I hold a few shares of BTCSYN, was looking at the old motions and then wondering at the recent buy/sell activity. Funnily, I wasn't too happy with the liquidate current FPGAs motion when I read it. Turns out that is the source of the stolen funds. May I ask what the reasoning was behind that move? The Cairnsmore1 devices don't even have a full working bitstream yet. Yes I know you can't rewind, but the whole maneuver there is a bit puzzling without some explanation of the reasoning involved.
Glasswalker continuing to work to make BTCSYN whole (by this I mean continuing to operate with the reduced resources) and also posting a copy of the police report in a timely fashion (blacking out anything sensitive) would help reduce the fallout from this.
-Crosspost from https://bitcointalksearch.org/topic/m.1036967
Glasswalker continuing to work to make BTCSYN whole (by this I mean continuing to operate with the reduced resources) and also posting a copy of the police report in a timely fashion (blacking out anything sensitive) would help reduce the fallout from this.
-Crosspost from https://bitcointalksearch.org/topic/m.1036967
July 16, 2012, 10:29:49 AM
There is not much to report here at this point. I have discussed further with MTGox, who *may* be offering a loan of some sorts, but they were very unclear and MagicalTux is hard to get in contact with sometimes (I can get him to answer vaguely, but when I ask for more details, he never responds).
As for reimbursing the shareholders. Here is the hard truth, some people may not like it, but that's how it is:
I'm doing my best to rebuild the syndicate. I want to continue operation, meaning shares owned will be shares in the syndicate still. If/Once we can rebuild into something equalling what it was, then your shares will be worth what they were before this incident. And who knows, likely more. But this has been a major setback. This loss is very large for us, and it means that we won't be likely hitting our initial forecasted growth rate.
Regardless of what happens, I'm trying my best to continue operation. I'm not simply folding up shop and walking away.
THAT is how I plan on "compensating" the shareholders. Not by doing something extra to give money back or taking out loans in my own name, or anything along those lines. I am doing what I can within reason to rebuild.
Am I responsible for reimbursing the company for the money lost? no I'm not. And I won't be. I don't have that much cash on hand (hell I'm tight for cash myself at the moment). And I highly doubt anyone will be giving me a loan (even if I was willing to incur that extra liability on my own to rebuild, which I'm not).
There is a reason that in the real world people adopt the incorporation model. It's called protection from liability for the executives/directors. The CEO of a real corporation is not responsible for personally paying back his shareholders in the event there are major losses. The shareholders can vote to dismiss the CEO and put a new one in his place, and if for example the CEO is found guilty of actual fraud (embezzlement, stealing from the company and so on) then there can be criminal charges in place, and perhaps some small form of restitution required to be paid. But under no circumstances in the real world is the CEO responsible for personally injecting funds into the business...
In this case, a terrible thing has happened. We had a large amount of money stolen from us. The person who is responsible is the one who stole it. And to a small degree Enterpoint/MtGox due to the delays. But as I said before already, I stand by my decisions. I didn't do anything WRONG here. There were choices that I could have done differently had I had different information at my disposal at the time (and it's easy to look back and say oh you should have done this instead of that, with the info we have now in hindsight) but in the end. I stand by my decisions, stand by the fact I did nothing wrong, and so I am not responsible for putting $12K back into the syndicate.
I am doing my job to try and rebuild, come up with a plan to continue operation, and hopefully recover the funds if possible.
So far not much progress on support from MtGox, I still have a week or two to wait for an answer from Enterpoint. And I am exploring some other options.
In the meantime I have not heard from law enforcement yet. I was told it could be a number of weeks before they contact me. I will follow up with them in another week or two to check in on status.
I have received the evidence packet from mtgox, and I am reviewing it. If I find anything of use (that wouldn't be damaging to the case to publish) I will post it up.
Until something changes, we will continue mining with the founders rigs, and working towards a plan of action. At that time I will hold a series of motions to decide on a final course of action based on the available options. Once the course of action is chosen by motion. Trading will be un-frozen at glbse.
Again, I'm sorry if this goes against what some people feel they are entitled to. But this is just how it is.
I will post up more information once I have more to post. As I said before, it will be a bit of a long haul here, Police are slow to move on anything, everything else will take weeks at least, and so expect some silence, before I have the information available to me to come up with some meaningful ideas to put forth to a vote.
Thanks for your patience, understanding, and support (for those of you giving any/all of the above)
As for reimbursing the shareholders. Here is the hard truth, some people may not like it, but that's how it is:
I'm doing my best to rebuild the syndicate. I want to continue operation, meaning shares owned will be shares in the syndicate still. If/Once we can rebuild into something equalling what it was, then your shares will be worth what they were before this incident. And who knows, likely more. But this has been a major setback. This loss is very large for us, and it means that we won't be likely hitting our initial forecasted growth rate.
Regardless of what happens, I'm trying my best to continue operation. I'm not simply folding up shop and walking away.
THAT is how I plan on "compensating" the shareholders. Not by doing something extra to give money back or taking out loans in my own name, or anything along those lines. I am doing what I can within reason to rebuild.
Am I responsible for reimbursing the company for the money lost? no I'm not. And I won't be. I don't have that much cash on hand (hell I'm tight for cash myself at the moment). And I highly doubt anyone will be giving me a loan (even if I was willing to incur that extra liability on my own to rebuild, which I'm not).
There is a reason that in the real world people adopt the incorporation model. It's called protection from liability for the executives/directors. The CEO of a real corporation is not responsible for personally paying back his shareholders in the event there are major losses. The shareholders can vote to dismiss the CEO and put a new one in his place, and if for example the CEO is found guilty of actual fraud (embezzlement, stealing from the company and so on) then there can be criminal charges in place, and perhaps some small form of restitution required to be paid. But under no circumstances in the real world is the CEO responsible for personally injecting funds into the business...
In this case, a terrible thing has happened. We had a large amount of money stolen from us. The person who is responsible is the one who stole it. And to a small degree Enterpoint/MtGox due to the delays. But as I said before already, I stand by my decisions. I didn't do anything WRONG here. There were choices that I could have done differently had I had different information at my disposal at the time (and it's easy to look back and say oh you should have done this instead of that, with the info we have now in hindsight) but in the end. I stand by my decisions, stand by the fact I did nothing wrong, and so I am not responsible for putting $12K back into the syndicate.
I am doing my job to try and rebuild, come up with a plan to continue operation, and hopefully recover the funds if possible.
So far not much progress on support from MtGox, I still have a week or two to wait for an answer from Enterpoint. And I am exploring some other options.
In the meantime I have not heard from law enforcement yet. I was told it could be a number of weeks before they contact me. I will follow up with them in another week or two to check in on status.
I have received the evidence packet from mtgox, and I am reviewing it. If I find anything of use (that wouldn't be damaging to the case to publish) I will post it up.
Until something changes, we will continue mining with the founders rigs, and working towards a plan of action. At that time I will hold a series of motions to decide on a final course of action based on the available options. Once the course of action is chosen by motion. Trading will be un-frozen at glbse.
Again, I'm sorry if this goes against what some people feel they are entitled to. But this is just how it is.
I will post up more information once I have more to post. As I said before, it will be a bit of a long haul here, Police are slow to move on anything, everything else will take weeks at least, and so expect some silence, before I have the information available to me to come up with some meaningful ideas to put forth to a vote.
Thanks for your patience, understanding, and support (for those of you giving any/all of the above)
July 16, 2012, 08:04:50 AM
Fair enough, thanks. The main reason I only posted in one spot was to try and contain constructive chat to a single spot so I wasn't constantly posting in several spots, but as it seems that's unavoidable... Thanks!
Just tell everyone what's your plan for compensating the external shareholders. If you have already announced such plan yet, ignore this post.
FYI, I have no shares anymore since long time ago. It's sharp declining price on GLBSE that draws my intention here. As Glasswalker once claimed ,they don't forced anyone into buying their shares. Those words were said during some not very pleasant topic which ask them to compensate the company when their promised hash rate cannot meet. Glasswalker said, those hash rate is not hard promised, the contract said they will only try their best to do so. So after they say those words, I started to sell shares, a large bunch of shares, until I have none of them.
However, I want to say, talkative Glasswalker, you don't have to explain us the details. I don't think the shareholders really care.
Just tell everyone what's your plan for compensating the external shareholders, if you cannot find the money back with the help of police. those shares You executive team get by providing several months of hashrate but no firm hardware is really cheap in the accounting standard, which imply you should do good job to the company and create value, not let the money stolen.
Even if you can get a proof from the police that the money is not stolen by yourself or other executive team, this "if" cannot make an excuse for you not to take responsibility after this disaster.
Seek a loan from your relatives and friends or local bank or credit card, or simply withdraw some money from your bank account. Anyway, just make sure that the "company" don't have to pay the theft money.
Give back the company dollars.
July 12, 2012, 08:46:25 AM
Fair enough, thanks. The main reason I only posted in one spot was to try and contain constructive chat to a single spot so I wasn't constantly posting in several spots, but as it seems that's unavoidable... Thanks!
July 12, 2012, 05:44:12 AM
Quote
Major Announcement. PLEASE READ
Postby Glasswalker » Sat Jul 07, 2012 12:10 pm
Ok, I know I've been silent last little bit and I want to apologize for this.
There is some very big, and very unfortunate news I need to post, and I have had to wait a few days to gather more complete information first.
Here is the series of events that led up to this point:
- We sold our FPGAs as planned, made good money for them
- Due to exchange rate jump, we had potential for a large profit
- A motion was passed for me to move the money out and make the purchase as required
- Enterpoint had said that they would be able to work with us for a bitcoin "friendly" payment, but they needed to do some research first
- I moved the funds to MTGox so I could exchange out to USD to take advantage of the exchange rate increase
- I sold off to USD, giving us exactly $12,189 USD sitting in our mtgox balance.
- Enterpoint got busy, and was unable to do the research required to allow us to pay them in either bitcoin, or ideally via mtgox code
- I attempted to do some of the research for them
- I discussed with MagicalTux at mtgox, and he said to email both Enterpoint, and his direct email, and that he would respond to any questions ASAP.
- Enterpoint emailed questions to MagicalTux at MTGox on the 16/17 of June with his questions.
- Due to some delays on MTGox end, they did not reply at all (silence) for over 2 weeks.
- Because of all these delays, the process has been "halted" since then, with the money sitting idle in mtgox.
- Due to the exchange rate, and fees, I didn't want to pull the money back out while we waited as we would have taken a loss.
- This is why there has been no update, I have been waiting for it to move forward.
Now... that gets us up to date... Now the bad news:
- On July 4th, I woke up sick. Not feeling well. So at 9am I contacted my employer told them I wasn't coming in. I went back to bed
- I slept until noon, and when I woke up I was still not feeling well, so I went and checked my email.
- In my email I discovered that On July 4th 2012, at 14:34:19 GMT (10:34am EDT my local time) there was a withdraw from my mtgox account.
- I checked and an IP address 130.83.54.115 Initiated a withdraw from my account at this time.
- Someone had gained access to my account illegally, they sold off the USD for bitcoin, and withdrew the bitcoin while I slept.
- The bitcoin transaction can be seen at: http://blockchain.info/tx-index/1125467 ... 07dc2f12f7
- I did some quick research, and gathered the info, and within about 30min, I contacted mtgox to notify them of fraud, both via IRC and their support email.
- I then left my house to go immediately to the local police and file a police report.
- I've been given an open case number from the Ottawa Police. Someone from either Fraud or Cyber Crime will contact me to investigate.
- MTGox confirmed the attacker started the attack on the 1st of July, and the same attacker used 6 login attempts across 4 days. The 6th succeeded.
- This implies that they had my password somehow.
- My password was a strong 11 digit password, containing a nice mix of all character types.
- It was re-used on 3-4 sites only, and most of those are full financial institutions.
- I was NOT the victim of any type of phishing.
- The only computer I ever access those accounts from were locked down well, and behind strongly secured networks.
- At this point I assume there must have been another compromise somewhere else, that led the attacker to the knowledge of some passwords
- I have confirmed the wallet, and btcsyn secure servers are not compromised.
- I have since rolled all my passwords to extremely secure passwords, and enabled 2 factor auth everywhere that supports it.
- I now no-longer repeat ANY passwords ANYWHERE.
- Could I have done this earlier? sure, but it is an EXTREME measure that even the most paranoid rarely take.
- MTGox is fedexing me an evidence packet, containing all logs/data from a security audit of the account. That should be here soon
- I've traced the IP to a technical university in Germany. I have contacted them to notify them of the incident.
- At the very least (and most likely) it's just a zombie compromised machine on their network, but perhaps they can help gather evidence.
- I have also investigated any possible sources for the password compromise. I have yet to find one.
- The Bitcoins remain unspent as of this writing. (which is abnormal for a large bitcoin theft).
- I've contacted all major e-wallet services to see if they control the receiving address. If so we could use law enforcement to recover the funds.
- So far some have responded that they do not control the address (but they were happy to check for us). I am still waiting on a couple to respond.
- MTGox is also investigating further, and offers full support to us and law enforcement in the investigation.
- MTGox has also mentioned they "Might" be able to help us out by providing some funds
- This "help" wouldn't be a "reimbursement" as that would be admitting guilt on their end, instead it would take the form of some type of loan terms.
- I have yet to determine the final details of what this would look like, once I know I'll let you know (I'm still discussing with MagicalTux)
- Enterpoint wants to help too. Right now they have too strong order demand, so they must fulfill those orders with our reserved boards.
- BUT they say within 2-3 weeks, they have a solution they may be able to provide us boards in a way to help us out (without needing up-front payment)
- Again, unknown what the exact terms of this look like, but I'm still discussing. Once I know, I'll let you know.
- As of right now, I am sitting on approximately $700 CAD that was to be used for infrastructure (Rack gear, PSU, cabling, and so on) for the boards.
- That money is going to stay still for now, until we decide on a course of action. If needed it will be converted back into BTC.
- We do have some liquid assets, and the founder rigs continue to mine. We are not "bankrupt" though this is a MAJOR setback.
- Immediately after this happened one shareholder (I will not name) was in the mtgox support channel when it happened
- They did not get the full details, but they did get enough to guess, they contacted me via PM to confirm, and I would not lie to them.
- This shareholder agreed not to disclose the incident at all.
- In addition the founders (being as they work with me every day) found out the day after the incident.
- So in total 7 people knew after the incident. No more.
- Shortly after this, our stock price crashed. This means someone knew that it happened. I've checked with all the founders but one who is unreachable
- So that leaves the missing founder, or the shareholder who saw, or the thief as possibilities.
- ie: I am hoping to find out who initiaited the sell off as it could be a potential lead. IF you have info to this regard, let me know.
- To protect the asset, I have spoken with Nefario from GLBSE. He has offered his support in this situation as well.
- At my request, he has frozen all trading on BTCSYN stock, until we have determined, and voted on a course of action at which time trading will resume.
- At this point I have gone as far as I can on my own. And I have all the "solid" info I can get, so it was time to release it to bring everyone up to speed.
- I'm sure you can understand this was a delicate situation and had to be handled with great care. (hence the delay)
- Right now I am in a holding pattern. I am waiting on more info from mtgox, enterpoint, and a contact from local law enforcement
- Also possibly more info from e-wallets, and/or the university in Germany.
- Law enforcement may take WEEKS to get to me, as their caseload is high. There is nothing I can do about that.
- So when I get more info, I'll share it.
- I'll do my best to communicate on here, but I will not be here for constant badgering, or status checks, or whatever.
- Understand this is putting huge stress on me as well, and so I am doing my best.
- I still have hopes we will be able to recover the funds. But if not, hopefully one of the options (or both) with Enterpoint/MTGox will help us continue in some fashion.
- Please don't let this thread degrade into a flame war. If it does I'll moderate accordingly.
- Slinging accusations or baseless claims around at this point will do nothing but hurt matters, stress everyone out, and possibly slow things down.
- Constructive suggestions, assistance, and feedback are welcomed, and I will do my best to accomodate (accept, work with, and respond to posts).
In closing, I stand by my decisions that led to this point. And while the outcome was catastrophic, based on the information and options available at the time, I feel that I made the right decisions at the time.
I agree, in hindsight, many things can look obvious, or like they should have been done differently, but you can't re-evaluate decisions made with hindsight, it doesn't work that way.
This is a horrible day in the history of BTCSYN, and it will go down as a catastrophe. But at this point it is not the end, and I am doing everything I can to:
- Recover the funds if possible (we can have hope)
- Come up with possible courses of action that give BTCSYN a viable future as a business, allowing your investments to remain valuable
Thanks for your support, and understanding through this.
- Paul Mumby
Glasswalker
I would like to leave this here, as a backup. Postby Glasswalker » Sat Jul 07, 2012 12:10 pm
Ok, I know I've been silent last little bit and I want to apologize for this.
There is some very big, and very unfortunate news I need to post, and I have had to wait a few days to gather more complete information first.
Here is the series of events that led up to this point:
- We sold our FPGAs as planned, made good money for them
- Due to exchange rate jump, we had potential for a large profit
- A motion was passed for me to move the money out and make the purchase as required
- Enterpoint had said that they would be able to work with us for a bitcoin "friendly" payment, but they needed to do some research first
- I moved the funds to MTGox so I could exchange out to USD to take advantage of the exchange rate increase
- I sold off to USD, giving us exactly $12,189 USD sitting in our mtgox balance.
- Enterpoint got busy, and was unable to do the research required to allow us to pay them in either bitcoin, or ideally via mtgox code
- I attempted to do some of the research for them
- I discussed with MagicalTux at mtgox, and he said to email both Enterpoint, and his direct email, and that he would respond to any questions ASAP.
- Enterpoint emailed questions to MagicalTux at MTGox on the 16/17 of June with his questions.
- Due to some delays on MTGox end, they did not reply at all (silence) for over 2 weeks.
- Because of all these delays, the process has been "halted" since then, with the money sitting idle in mtgox.
- Due to the exchange rate, and fees, I didn't want to pull the money back out while we waited as we would have taken a loss.
- This is why there has been no update, I have been waiting for it to move forward.
Now... that gets us up to date... Now the bad news:
- On July 4th, I woke up sick. Not feeling well. So at 9am I contacted my employer told them I wasn't coming in. I went back to bed
- I slept until noon, and when I woke up I was still not feeling well, so I went and checked my email.
- In my email I discovered that On July 4th 2012, at 14:34:19 GMT (10:34am EDT my local time) there was a withdraw from my mtgox account.
- I checked and an IP address 130.83.54.115 Initiated a withdraw from my account at this time.
- Someone had gained access to my account illegally, they sold off the USD for bitcoin, and withdrew the bitcoin while I slept.
- The bitcoin transaction can be seen at: http://blockchain.info/tx-index/1125467 ... 07dc2f12f7
- I did some quick research, and gathered the info, and within about 30min, I contacted mtgox to notify them of fraud, both via IRC and their support email.
- I then left my house to go immediately to the local police and file a police report.
- I've been given an open case number from the Ottawa Police. Someone from either Fraud or Cyber Crime will contact me to investigate.
- MTGox confirmed the attacker started the attack on the 1st of July, and the same attacker used 6 login attempts across 4 days. The 6th succeeded.
- This implies that they had my password somehow.
- My password was a strong 11 digit password, containing a nice mix of all character types.
- It was re-used on 3-4 sites only, and most of those are full financial institutions.
- I was NOT the victim of any type of phishing.
- The only computer I ever access those accounts from were locked down well, and behind strongly secured networks.
- At this point I assume there must have been another compromise somewhere else, that led the attacker to the knowledge of some passwords
- I have confirmed the wallet, and btcsyn secure servers are not compromised.
- I have since rolled all my passwords to extremely secure passwords, and enabled 2 factor auth everywhere that supports it.
- I now no-longer repeat ANY passwords ANYWHERE.
- Could I have done this earlier? sure, but it is an EXTREME measure that even the most paranoid rarely take.
- MTGox is fedexing me an evidence packet, containing all logs/data from a security audit of the account. That should be here soon
- I've traced the IP to a technical university in Germany. I have contacted them to notify them of the incident.
- At the very least (and most likely) it's just a zombie compromised machine on their network, but perhaps they can help gather evidence.
- I have also investigated any possible sources for the password compromise. I have yet to find one.
- The Bitcoins remain unspent as of this writing. (which is abnormal for a large bitcoin theft).
- I've contacted all major e-wallet services to see if they control the receiving address. If so we could use law enforcement to recover the funds.
- So far some have responded that they do not control the address (but they were happy to check for us). I am still waiting on a couple to respond.
- MTGox is also investigating further, and offers full support to us and law enforcement in the investigation.
- MTGox has also mentioned they "Might" be able to help us out by providing some funds
- This "help" wouldn't be a "reimbursement" as that would be admitting guilt on their end, instead it would take the form of some type of loan terms.
- I have yet to determine the final details of what this would look like, once I know I'll let you know (I'm still discussing with MagicalTux)
- Enterpoint wants to help too. Right now they have too strong order demand, so they must fulfill those orders with our reserved boards.
- BUT they say within 2-3 weeks, they have a solution they may be able to provide us boards in a way to help us out (without needing up-front payment)
- Again, unknown what the exact terms of this look like, but I'm still discussing. Once I know, I'll let you know.
- As of right now, I am sitting on approximately $700 CAD that was to be used for infrastructure (Rack gear, PSU, cabling, and so on) for the boards.
- That money is going to stay still for now, until we decide on a course of action. If needed it will be converted back into BTC.
- We do have some liquid assets, and the founder rigs continue to mine. We are not "bankrupt" though this is a MAJOR setback.
- Immediately after this happened one shareholder (I will not name) was in the mtgox support channel when it happened
- They did not get the full details, but they did get enough to guess, they contacted me via PM to confirm, and I would not lie to them.
- This shareholder agreed not to disclose the incident at all.
- In addition the founders (being as they work with me every day) found out the day after the incident.
- So in total 7 people knew after the incident. No more.
- Shortly after this, our stock price crashed. This means someone knew that it happened. I've checked with all the founders but one who is unreachable
- So that leaves the missing founder, or the shareholder who saw, or the thief as possibilities.
- ie: I am hoping to find out who initiaited the sell off as it could be a potential lead. IF you have info to this regard, let me know.
- To protect the asset, I have spoken with Nefario from GLBSE. He has offered his support in this situation as well.
- At my request, he has frozen all trading on BTCSYN stock, until we have determined, and voted on a course of action at which time trading will resume.
- At this point I have gone as far as I can on my own. And I have all the "solid" info I can get, so it was time to release it to bring everyone up to speed.
- I'm sure you can understand this was a delicate situation and had to be handled with great care. (hence the delay)
- Right now I am in a holding pattern. I am waiting on more info from mtgox, enterpoint, and a contact from local law enforcement
- Also possibly more info from e-wallets, and/or the university in Germany.
- Law enforcement may take WEEKS to get to me, as their caseload is high. There is nothing I can do about that.
- So when I get more info, I'll share it.
- I'll do my best to communicate on here, but I will not be here for constant badgering, or status checks, or whatever.
- Understand this is putting huge stress on me as well, and so I am doing my best.
- I still have hopes we will be able to recover the funds. But if not, hopefully one of the options (or both) with Enterpoint/MTGox will help us continue in some fashion.
- Please don't let this thread degrade into a flame war. If it does I'll moderate accordingly.
- Slinging accusations or baseless claims around at this point will do nothing but hurt matters, stress everyone out, and possibly slow things down.
- Constructive suggestions, assistance, and feedback are welcomed, and I will do my best to accomodate (accept, work with, and respond to posts).
In closing, I stand by my decisions that led to this point. And while the outcome was catastrophic, based on the information and options available at the time, I feel that I made the right decisions at the time.
I agree, in hindsight, many things can look obvious, or like they should have been done differently, but you can't re-evaluate decisions made with hindsight, it doesn't work that way.
This is a horrible day in the history of BTCSYN, and it will go down as a catastrophe. But at this point it is not the end, and I am doing everything I can to:
- Recover the funds if possible (we can have hope)
- Come up with possible courses of action that give BTCSYN a viable future as a business, allowing your investments to remain valuable
Thanks for your support, and understanding through this.
- Paul Mumby
Glasswalker
It's a copy of your post at btcsyn forum.
July 09, 2012, 09:06:18 AM
The police report was submitted with the Ottawa Police. I have a reciept from them for it's submission on paper. And I have the name/badge number of the officer that took it, along with an open case number with them.
I will not be posting all this info on the public forum just yet until I hear back from the investigating officer, because I don't want to complicate their case by them suddenly getting inundated with calls about it from speculators and such on this forum.
I can however confirm I have sent scanned copies of this reciept to MagicalTux at MtGox, as well as I have sent the details (and will send the scanned copy upon request) to Nefario at GLBSE.
Yes I can prove I've submitted it. And if you want validation, you can ask one of those 2 individuals. Please keep in mind this is a sensitive situation, and until I know what I can and can't do, I'm being careful with things so that I don't potentially negatively impact the investigation.
As for the password repeats... I maintain, while it's "best practice" to use 100% strong passwords, never repeating, and 2 factor everywhere, VERY FEW people even in the security industry actually do this. I can't quote an exact number, but I do know the percentage is extremely small. Hell, we have national banks here in Canada which don't even ALLOW passwords longer than 6 digit numerical passwords... And none of them that I know of support 2 factor auth for anything less than major corporate accounts doing frequent international wire transfers over $10,000. (and at a significant cost). None of the creditcard companies (or banks who offer creditcards) support 2 factor auth for those at all (to my knowledge)
Have I learned from this, and ramped up my security? yes. I now do use 100% strong passwords, with no repeats, and 2 factor where possible. (and I am still rolling passwords for things, it will likely take me weeks to roll them all). All the ones using this compromised password were rolled already, but I have hundreds of passwords that need to be migrated to the new "proper" setup. (and no that number is not an exaggeration, also it's taking a long time because I already did my best to avoid overlap as much as possible in that large volume of passwords).
And yes I did use a secure password facility for most of the "really important" stuff. But this was my personal mtgox account, which usually doesn't handle more than a couple hundred btc at most once every few months for less than 24h at a time. It wasn't worth the effort/cost in my opinion. But under this freak situation I ended up stuck moving large amounts of syndicate money through that account, and it got stuck there for a long period of time due to circumstances beyond my control.
Lastly, this breach impacted me more heavily than any of the shareholders can even understand. Not only did I have more invested in this than anyone else (to my knowledge, if I'm mistaken, then I apologise). But I also have access to many highly sensitive systems, and classified information. (most of which is not protected to the level everyone here suggests I should have protected my personal mtgox account with by the way). And even the remote chance that my accounts were compromised means that my employer now needs to do a full security audit as well. And lastly there is the reputation hit this causes, combined with the added stress of dealing with the lynch mob that has formed here on these forums. (and attacks on my practices which I'm pretty sure at least 50% of the attackers don't "practice what they preach" but since it isn't their accounts under a microscope they can feel comfortable slinging their hypocrisy at me)
Anyway, sorry if I'm getting a bit touchy on this topic, but it feels kinda shitty when you try and really do something positive, and are trying your best, and it not only blows up in your face, but suddenly people are accusing you of being a criminal because of it... And I'm stressed out dealing with this, and dealing with trying to maintain my day job at the same time (which is very demanding as well right now).
I will not be posting all this info on the public forum just yet until I hear back from the investigating officer, because I don't want to complicate their case by them suddenly getting inundated with calls about it from speculators and such on this forum.
I can however confirm I have sent scanned copies of this reciept to MagicalTux at MtGox, as well as I have sent the details (and will send the scanned copy upon request) to Nefario at GLBSE.
Yes I can prove I've submitted it. And if you want validation, you can ask one of those 2 individuals. Please keep in mind this is a sensitive situation, and until I know what I can and can't do, I'm being careful with things so that I don't potentially negatively impact the investigation.
As for the password repeats... I maintain, while it's "best practice" to use 100% strong passwords, never repeating, and 2 factor everywhere, VERY FEW people even in the security industry actually do this. I can't quote an exact number, but I do know the percentage is extremely small. Hell, we have national banks here in Canada which don't even ALLOW passwords longer than 6 digit numerical passwords... And none of them that I know of support 2 factor auth for anything less than major corporate accounts doing frequent international wire transfers over $10,000. (and at a significant cost). None of the creditcard companies (or banks who offer creditcards) support 2 factor auth for those at all (to my knowledge)
Have I learned from this, and ramped up my security? yes. I now do use 100% strong passwords, with no repeats, and 2 factor where possible. (and I am still rolling passwords for things, it will likely take me weeks to roll them all). All the ones using this compromised password were rolled already, but I have hundreds of passwords that need to be migrated to the new "proper" setup. (and no that number is not an exaggeration, also it's taking a long time because I already did my best to avoid overlap as much as possible in that large volume of passwords).
And yes I did use a secure password facility for most of the "really important" stuff. But this was my personal mtgox account, which usually doesn't handle more than a couple hundred btc at most once every few months for less than 24h at a time. It wasn't worth the effort/cost in my opinion. But under this freak situation I ended up stuck moving large amounts of syndicate money through that account, and it got stuck there for a long period of time due to circumstances beyond my control.
Lastly, this breach impacted me more heavily than any of the shareholders can even understand. Not only did I have more invested in this than anyone else (to my knowledge, if I'm mistaken, then I apologise). But I also have access to many highly sensitive systems, and classified information. (most of which is not protected to the level everyone here suggests I should have protected my personal mtgox account with by the way). And even the remote chance that my accounts were compromised means that my employer now needs to do a full security audit as well. And lastly there is the reputation hit this causes, combined with the added stress of dealing with the lynch mob that has formed here on these forums. (and attacks on my practices which I'm pretty sure at least 50% of the attackers don't "practice what they preach" but since it isn't their accounts under a microscope they can feel comfortable slinging their hypocrisy at me)
Anyway, sorry if I'm getting a bit touchy on this topic, but it feels kinda shitty when you try and really do something positive, and are trying your best, and it not only blows up in your face, but suddenly people are accusing you of being a criminal because of it... And I'm stressed out dealing with this, and dealing with trying to maintain my day job at the same time (which is very demanding as well right now).
July 09, 2012, 02:05:09 AM
You used the same password on 3 different financial sites .....
Where is the police report and can you prove you have actually submitted it ?
Where is the police report and can you prove you have actually submitted it ?
July 08, 2012, 08:54:51 PM
Gewure: What are you talking about? Your whole post was way off base... See inline responses below:
Lastly, I'm still trying to recover the funds.
Plus if we continue to operate, in a couple months we could have mined a fair bit still even at 5-6 GHash. The 700CAD we have is enough for one cairsmore, which should soon be at 1GHash, so that's a bit more mining power, and so on. And all that is if none of the other plans pan out (help from mtgox, and help from enterpoint, or recovering the stolen funds).
So if you didn't like those terms, you likely should have read further into the bylaws before investing. Most of our other investors had no problems with those terms.
Also, I'm not sure what that has to do with anything related to the theft of the $12K, or why you're bringing it up now.
I'm not sure where you are getting any of these numbers from. We lost $12K (about 1800BTC roughly, don't have the tx in front of me). not 3000BTC. We never had 3000BTC to loose in the first place. Our stock price fluctuated, and our total stock in circulation might have been at 3000BTC at one time, but that's purely market speculation on our total value. Our actual assets were approximately 1700BTC originally which at the time was worth about $9000, since then we sold the icarus to buy cairsmore, the money from that plus some of our mining profits, totalled up to about 1800btc. Which we sold for $12K USD to use to buy cairsmore boards. Which all said and done would have doubled our mining capacity in mhash/s. But the $12K was stolen... That's the short version of the syndicate history. I'm not sure where you see loosing 3000BTC anywhere in that.
Overall: There is already enough panic going on around here, not to mention the witch-hunt that has started in the other thread about this theft (apparently I underestimated this communities thirst for blood, that thread has mostly been pure speculation, and aggression toward me personally, without caring about any of the facts, so I refuse to return there, I will however continue to respond here).
Anyway, point being please double-check your facts before throwing additional accusations or statements out there and contributing to the chaos.
Thanks.
So.. basically BTC-SYN will be worth 700 canadian dollars in some months. 700/12000 makes 0.053 Dollar per share! woohoo!
That's completely incorrect. IF we were to liquidate today, we would be worth 700CAD plus the bitcoins still in our wallet right now. But I don't intend to liquidate. I intend to keep operating, and I am trying to piece together several plans of action which the shareholders can then vote on (one of which may be liquidation, but it will be up to a vote, and honestly I would prefer if we can keep it afloat to recover some of the loss). Lastly, I'm still trying to recover the funds.
Plus if we continue to operate, in a couple months we could have mined a fair bit still even at 5-6 GHash. The 700CAD we have is enough for one cairsmore, which should soon be at 1GHash, so that's a bit more mining power, and so on. And all that is if none of the other plans pan out (help from mtgox, and help from enterpoint, or recovering the stolen funds).
when the fuck did you put up this new contract?!! i didnt vote on it and i doubt anybody would!
..explain this to me.
Umm what the hell? The shareholder loan clause was in the bylaws originally BEFORE the IPO. It was altered only once, which was to EXTEND the terms of the loan (to make our commitment longer). That was the only alteration, and it was done under a passed motion. Specifically Motion ID #81 for which more details can be found here http://forum.btcsyn.com/viewtopic.php?f=8&t=22..explain this to me.
So if you didn't like those terms, you likely should have read further into the bylaws before investing. Most of our other investors had no problems with those terms.
Also, I'm not sure what that has to do with anything related to the theft of the $12K, or why you're bringing it up now.
bitcoin syndicate lost 3000 bitcoin in under a year?! 100% of its value?
I'm not sure where you are getting any of these numbers from. We lost $12K (about 1800BTC roughly, don't have the tx in front of me). not 3000BTC. We never had 3000BTC to loose in the first place. Our stock price fluctuated, and our total stock in circulation might have been at 3000BTC at one time, but that's purely market speculation on our total value. Our actual assets were approximately 1700BTC originally which at the time was worth about $9000, since then we sold the icarus to buy cairsmore, the money from that plus some of our mining profits, totalled up to about 1800btc. Which we sold for $12K USD to use to buy cairsmore boards. Which all said and done would have doubled our mining capacity in mhash/s. But the $12K was stolen... That's the short version of the syndicate history. I'm not sure where you see loosing 3000BTC anywhere in that.
Overall: There is already enough panic going on around here, not to mention the witch-hunt that has started in the other thread about this theft (apparently I underestimated this communities thirst for blood, that thread has mostly been pure speculation, and aggression toward me personally, without caring about any of the facts, so I refuse to return there, I will however continue to respond here).
Anyway, point being please double-check your facts before throwing additional accusations or statements out there and contributing to the chaos.
Thanks.
July 08, 2012, 03:05:23 PM
we would probably be better off with you beeing a player and loosing half the money to a casino.. 
i put 50 btc into this, cause you were sooooo promising. should have sold them 1 month ago, when i stressed that nothing is happening.
..reminds me of southpark.
"AAAAAND ITS GONE."
i put 50 btc into this, cause you were sooooo promising. should have sold them 1 month ago, when i stressed that nothing is happening.
..reminds me of southpark.
"AAAAAND ITS GONE."
July 08, 2012, 03:03:46 PM
Quote
5.1 - Loan of Mining Hardware By Founders
The founding members will initially contribute their own personal mining hardware to the syndicate. They will be rewarded for this contribution in the form of shares as is outlined in section 4.1
This contribution of hardware will be a loan. The hardware will be returned to the original owner when one of the following conditions is met (whichever comes first)
* Midnight on March 31st 2013 is reached (one year from the end of the initial ipo period)
* The average mining power of hardware fully owned by the Syndicate (measured and averaged over a 30 day period) exceeds 50 GHash/s
* The Syndicate is dissolved via the terms of section 3.5
* A motion is passed under the normal terms of section 3.3 which ends the loan period prematurely, granting the hardware back to the original owner
Once the loan has completed, the founding member who owns the hardware may choose to continue to contribute it's mining power to the Syndicate as they see fit, but they can also stop contributing whenever they choose after this point
The founding members will initially contribute their own personal mining hardware to the syndicate. They will be rewarded for this contribution in the form of shares as is outlined in section 4.1
This contribution of hardware will be a loan. The hardware will be returned to the original owner when one of the following conditions is met (whichever comes first)
* Midnight on March 31st 2013 is reached (one year from the end of the initial ipo period)
* The average mining power of hardware fully owned by the Syndicate (measured and averaged over a 30 day period) exceeds 50 GHash/s
* The Syndicate is dissolved via the terms of section 3.5
* A motion is passed under the normal terms of section 3.3 which ends the loan period prematurely, granting the hardware back to the original owner
Once the loan has completed, the founding member who owns the hardware may choose to continue to contribute it's mining power to the Syndicate as they see fit, but they can also stop contributing whenever they choose after this point
LOL
So.. basically BTC-SYN will be worth 700 canadian dollars in some months. 700/12000 makes 0.053 Dollar per share! woohoo!
when the fuck did you put up this new contract?!! i didnt vote on it and i doubt anybody would!
..explain this to me.
bitcoin syndicate lost 3000 bitcoin in under a year?! 100% of its value?
...
July 08, 2012, 02:45:25 PM
GLBSE needs a better system for notifying people a symbol is locked...
hm, different error message would make more sense. sure
July 07, 2012, 04:41:06 PM
does anybody else has a problem trying to put an order on BTCSYN?
it says BTCSYN not found
it says BTCSYN not found
The same.
GLBSE needs a better system for notifying people a symbol is locked...
July 07, 2012, 04:29:05 PM
password It was re-used on 3-4 sites only, and most of those are full financial institutions.
You can't reuse passwords on any sites anymore, 1 password for each site. There was news about 60-70 banks that got hacked a week or two ago, possible password stolen from your bank.
People need to start using google auth or yubikey.
You can't reuse passwords on any sites anymore, 1 password for each site. There was news about 60-70 banks that got hacked a week or two ago, possible password stolen from your bank.
People need to start using google auth or yubikey.
July 07, 2012, 12:12:14 PM
Hey guys, to answer your questions, there has been a major announcement put up in the announcements forum on btcsyn.com
Please see it here: http://forum.btcsyn.com/viewtopic.php?f=6&t=84
Thanks.
Please see it here: http://forum.btcsyn.com/viewtopic.php?f=6&t=84
Thanks.
Jump to: