Hacked account recovery | Bitcointalksearch.org

ibminer

legendary

Activity: 1789

Merit: 2535

Goonies never say die.

Quote from: theta on January 27, 2019, 05:37:20 AM

Recovery worked, I got my account back, thanks everyone!

Now, I see that I have -2 trust, which was justified while it was under the control of the hacker(s), but can it be reset now? Or should I just contact the people that voted negatively?

Looks like an account recovery has happened according to seclog, I've removed my feedback.

FatBen

jr. member

Activity: 34

Merit: 18

Code:

January 18, 2019, 01:14:13 PM - theta - manual recovery, ownership change queued (completed)
January 25, 2019, 01:25:01 PM - theta - manual recovery, previously-queued ownership change completed
Today at 10:10:00 AM - theta - password reset via email
Today at 10:10:16 AM - theta - woke up

Congratulations mate, the recovery speed was quite impressive.

Quote from: theta on January 27, 2019, 05:37:20 AM

should I just contact the people that voted negatively?

Yep, just contact them to remove the negative tags

theta

full member

Activity: 164

Merit: 100

Recovery worked, I got my account back, thanks everyone!

Now, I see that I have -2 trust, which was justified while it was under the control of the hacker(s), but can it be reset now? Or should I just contact the people that voted negatively?

theta1

newbie

Activity: 21

Merit: 0

Quote from: mapuche33 on December 27, 2018, 10:50:39 PM

Merry Christmas!

here: https://bitcointalksearch.org/topic/account-recoveries-are-moving-again-5089781

Thank you! Email sent, fingers crossed. Happy new year!

mapuche33

jr. member

Activity: 55

Merit: 15

Merry Christmas!

here: https://bitcointalksearch.org/topic/account-recoveries-are-moving-again-5089781

theta1

newbie

Activity: 21

Merit: 0

bump

theta1

newbie

Activity: 21

Merit: 0

One more nudge. More than a year has passed now.

mapuche33

jr. member

Activity: 55

Merit: 15

Time flees.. no updates so far, very disappointed about staff management and their false promises. Cry

I see you was lucky enough to lock your account within the 15 days window.. many others (including myself) were hijacked, used their profiles for spam / deceiving others, sold the accounts multiple times and even ignored all recovery & ban attempts from their legitimate owners.
Recovery of hacked accounts should be #1 priority, it is not rocket science and even a single volunteer could revert most of the damage that hackers has been making consistently over the years because of a second market that allows account buying/selling. Admins are well aware of this but they don't care nor enforce the rules or security measures.

theta1

newbie

Activity: 21

Merit: 0

Quote from: mapuche33 on August 27, 2018, 10:30:10 AM

I wonder why your compromised Full Member account theta with only -2 red trust reports to be Last Active on: November 23, 2017, 05:37:28 PM . What made the spammer abbandon it ?

Hi,
I'm not sure I understand the question, but the last activity is in Nov 23, 2017 because that's when I locked the account. I did it immediately as soon as I received the notification that my password was changed, as I mentioned that in the very beginning of this thread. So it's not that the hacker abandoned it, it's that it's locked and can't access it themselves.

Quote from: mapuche33 on August 27, 2018, 10:30:10 AM

Either way, I just ignored your hacked account (however not sure if my current rank makes any difference) once you manage to recover your account you'll have to sign another message to confirm it, so I can remove my red trust.
I believe starting a red trust campaign on those hacked accounts who has been reported + verified successfully will cause a significantly harm on those scammers who bought your hacked account for spamming / shady purposes.

I guess you are referring to a case where a hacker uses a hacked account successfully for a long period, in which case reducing their trust would compromise their strategy. In my case the hacker didn't even manage to post a single message because I locked the account immediately.
I would love to have my account back and remove the red trust and go back to where we were. Perhaps as we approach the 1 year anniversary, a moderator will help me recover it! Roll Eyes

mapuche33

jr. member

Activity: 55

Merit: 15

I wonder why your compromised Full Member account theta with only -2 red trust reports to be Last Active on: November 23, 2017, 05:37:28 PM . What made the spammer abbandon it ?

Either way, I just ignored your hacked account (however not sure if my current rank makes any difference) once you manage to recover your account you'll have to sign another message to confirm it, so I can remove my red trust.
I believe starting a red trust campaign on those hacked accounts who has been reported + verified successfully will cause a significantly harm on those scammers who bought your hacked account for spamming / shady purposes.

theta1

newbie

Activity: 21

Merit: 0

bump

Got Hacked

newbie

Activity: 1

Merit: 0

Hello,
I created this account as my account got hacked. So I PMed theymos with a bitcoin signed message, hoping to get back my access. This message is to make sure that It's me who PMed thymos. My hacked and locked account User name is: arghabd; Hope it helps.
Thanks a lot.

theta1

newbie

Activity: 21

Merit: 0

bump
can someone please take a look?

vagnavs2

newbie

Activity: 18

Merit: 0

Anyone here have any success? Been waiting since October 27

theta1

newbie

Activity: 21

Merit: 0

bump

theta1

newbie

Activity: 21

Merit: 0

Quote from: Shazam!!! on January 16, 2018, 04:49:50 PM

theta1's signed message is good. I verified it before, but I do not see the other thread it was in.
Probably removed because of this thread. Hopefully someone can look into this soon, and the many other accounts like
this. It would be nice if the forum would allow a "team" of volunteers to work on this issue. I'd sign up for it, and try
to clear some space on this board.

Thank you. Is any mod watching please?

Shazam!!!

full member

Activity: 350

Merit: 158

#takeminingback

theta1's signed message is good. I verified it before, but I do not see the other thread it was in.
Probably removed because of this thread. Hopefully someone can look into this soon, and the many other accounts like
this. It would be nice if the forum would allow a "team" of volunteers to work on this issue. I'd sign up for it, and try
to clear some space on this board.

hoticotk

newbie

Activity: 116

Merit: 0

Quote from: theta1 on January 16, 2018, 11:38:30 AM

Yes, indeed. I have however already signed the required message with an address that was shown in my profile, as you can see from the discussion in this thread. I have sent the signed message to Theymos and Cyrus, and have received no response yet. I will wait for longer, while hoping that another mod /admin will help with action being taken to restore my account.

me too, i have been waiting for long without any response

theta1

newbie

Activity: 21

Merit: 0

Yes, indeed. I have however already signed the required message with an address that was shown in my profile, as you can see from the discussion in this thread. I have sent the signed message to Theymos and Cyrus, and have received no response yet. I will wait for longer, while hoping that another mod /admin will help with action being taken to restore my account.

singlebit

sr. member

Activity: 518

Merit: 264

Quote from: theta1 on November 23, 2017, 04:31:53 PM

Earlier today I received an email saying that the email address of my bitcointalk account (theta) was changed, and then another one saying that my password was changed.
The only option available was to lock the account and then try to recover it.
I did lock it and then checked the instructions for recovery (https://bitcointalksearch.org/topic/recovering-hacked-accounts-or-accounts-with-lost-passwords-497545). They require signing a bitcoin address or a PGP key that was previously mentioned and therefore is known to belong to the account holder.
The problem is I haven't publicly disclosed either so according to these instructions I can't recover my account.
I find this hard to believe.
First of all, how come an email address change is allowed without confirmation or at the very least time-locking from the previous email address? And how come I can't recover it now, again by returning ownership to the original email address?
There must be another way to recover it. What shall I do?

The way that you only to recover your account is using your blockchain wallet staking in your account.

theta1

newbie

Activity: 21

Merit: 0

Bump

yogisp1

newbie

Activity: 6

Merit: 0

the same problem ..
icant sig in my older acount

hilariousetc

legendary

Activity: 2954

Merit: 3060

Join the world-leading crypto sportsbook NOW!

Quote from: dissident on January 12, 2018, 01:12:48 PM

How does this happen? Do people simply guess easy passwords? My password for this one includes symbols, numbers and shit.

Yeah, the very weak ones can be broken in seconds. There are websites where you can check how strong your password is such as: https://howsecureismypassword.net/

Try something similar to your password and see what it says, but merely using a dictionary word with a couple of symbols and numbers doesn't make it unbreakable but the longer it is with numerous symbols and numbers will make it much stronger. Ideally it should be some random gibberish with a lot of symbols and numbers and upper and lower case.

theta1

newbie

Activity: 21

Merit: 0

Yes, brute force very likely, aided by very bad forum design, in that they allow a user to change the account's registered email address without requiring approval by the old email or at least giving the option to reject the change! If it weren't for that the hack would be fruitless, as the rightful owner could easily change the password back (whereas right now the only defence is to lock the account).

dissident

sr. member

Activity: 280

Merit: 250

How does this happen? Do people simply guess easy passwords? My password for this one includes symbols, numbers and shit.

vagnavs2

newbie

Activity: 18

Merit: 0

I started this process October 27th. Losing hope on recovering my account. I would pay a small sum to recover it.

theta1

newbie

Activity: 21

Merit: 0

Bump
Can someone please look into this?

stevenwin19991

brand new

Activity: 0

Merit: 0

Hi i also Hacked my account someone ..He change password and Email address and then i locked my account ..

currently i report again and again admin with new account no one reply me ..too long ..

How to do help me ...Anyone know what ways is faster to recover back account ?

Shazam!!!

full member

Activity: 350

Merit: 158

#takeminingback

Quote from: theta1 on January 06, 2018, 01:12:11 PM

Quote from: Shazam!!! on January 04, 2018, 04:42:23 PM

Quote from: ?? on ??

Once either Cyrus or Theymos reset the account, please let us know how the notification process work... Do they reply to our PM or do we periodically check the email address we asked them to reset to? Thank you for the clarification!

You will receive a PM that simply says: UNLOCKED. That's all I received when
mine was unlocked last month. My account wasn't hacked so, it could also contain
simple instruction for keeping your account safe.

Was that a PM in the new account?

Yes, it's in the new account, in which you have sent the signed message.

theta1

newbie

Activity: 21

Merit: 0

Quote from: Shazam!!! on January 04, 2018, 04:42:23 PM

Quote from: ?? on ??

Once either Cyrus or Theymos reset the account, please let us know how the notification process work... Do they reply to our PM or do we periodically check the email address we asked them to reset to? Thank you for the clarification!

You will receive a PM that simply says: UNLOCKED. That's all I received when
mine was unlocked last month. My account wasn't hacked so, it could also contain
simple instruction for keeping your account safe.

Was that a PM in the new account?

dxbcoin

member

Activity: 280

Merit: 12

Oh I just learned something pretty practical. Thanks a lot guys!

Shazam!!!

full member

Activity: 350

Merit: 158

#takeminingback

Quote from: ?? on ??

Once either Cyrus or Theymos reset the account, please let us know how the notification process work... Do they reply to our PM or do we periodically check the email address we asked them to reset to? Thank you for the clarification!

You will receive a PM that simply says: UNLOCKED. That's all I received when
mine was unlocked last month. My account wasn't hacked so, it could also contain
simple instruction for keeping your account safe.

theta1

newbie

Activity: 21

Merit: 0

Bump
Hope a mod will have a look

Quote from: theta1 on December 16, 2017, 11:36:49 AM

Quote from: ibminer on December 16, 2017, 10:50:09 AM

Quote from: theta1 on December 16, 2017, 10:01:44 AM

Thanks for verifying the message. Can you please clarify what you mean regarding the date.
2017.11.24 is the day after the hack. I received the email about my account's email address and password change on Thu, Nov 23, 2017 at 5:35 PM (GMT), then followed the instructions to lock my account, created this new account and posted this thread on the same day, and then I tried to find a btc address linked to me. I found the one you posted as well, and signed it on November 24th (the following day).
Is there something else that I need to do?

Sorry - that was a typo, and is fixed now. Embarrassed

FWIW, I believe you've satisfied the requirements for recovery, the archived address goes back to 2013, so it's enough proof. Cyrus or theymos are the only two that can recover the account though, and it can take some time. If you have sent messages to both, waiting is your only next step.

Thank you. That's fine, I can wait, I just don't want to lose the account. I assume it remains locked until further action is taken by the mods?

Shazam!!!

full member

Activity: 350

Merit: 158

#takeminingback

Quote from: hoticotk on December 16, 2017, 04:20:41 PM

Hello please help me.
my account was hacked too,
i sent message to @ Cyrus
But i dont know how to sign the message,

Follow these directions.

https://bitcointalksearch.org/topic/how-to-sign-a-message-990345

You will also need proof of your address from an older post before it was hacked.
Put your address into google search. Hope this helps a little. Goodluck!!!

hoticotk

newbie

Activity: 116

Merit: 0

Hello please help me.
my account was hacked too,
i sent message to @ Cyrus
But i dont know how to sign the message,

theta1

newbie

Activity: 21

Merit: 0

Quote from: ibminer on December 16, 2017, 10:50:09 AM

Quote from: theta1 on December 16, 2017, 10:01:44 AM

Thanks for verifying the message. Can you please clarify what you mean regarding the date.
2017.11.24 is the day after the hack. I received the email about my account's email address and password change on Thu, Nov 23, 2017 at 5:35 PM (GMT), then followed the instructions to lock my account, created this new account and posted this thread on the same day, and then I tried to find a btc address linked to me. I found the one you posted as well, and signed it on November 24th (the following day).
Is there something else that I need to do?

Sorry - that was a typo, and is fixed now. Embarrassed

FWIW, I believe you've satisfied the requirements for recovery, the archived address goes back to 2013, so it's enough proof. Cyrus or theymos are the only two that can recover the account though, and it can take some time. If you have sent messages to both, waiting is your only next step.

Thank you. That's fine, I can wait, I just don't want to lose the account. I assume it remains locked until further action is taken by the mods?

ibminer

legendary

Activity: 1789

Merit: 2535

Goonies never say die.

Quote from: theta1 on December 16, 2017, 10:01:44 AM

Thanks for verifying the message. Can you please clarify what you mean regarding the date.
2017.11.24 is the day after the hack. I received the email about my account's email address and password change on Thu, Nov 23, 2017 at 5:35 PM (GMT), then followed the instructions to lock my account, created this new account and posted this thread on the same day, and then I tried to find a btc address linked to me. I found the one you posted as well, and signed it on November 24th (the following day).
Is there something else that I need to do?

Sorry - that was a typo, and is fixed now. Embarrassed

FWIW, I believe you've satisfied the requirements for recovery, the archived address goes back to 2013, so it's enough proof. Cyrus or theymos are the only two that can recover the account though, and it can take some time. If you have sent messages to both, waiting is your only next step.

theta1

newbie

Activity: 21

Merit: 0

Quote from: ibminer on December 16, 2017, 09:08:34 AM

Quote from: ibminer on December 06, 2017, 12:40:50 PM

Quote from: theta1 on November 23, 2017, 04:31:53 PM

I did lock it and then checked the instructions for recovery (https://bitcointalksearch.org/topic/recovering-hacked-accounts-or-accounts-with-lost-passwords-497545). They require signing a bitcoin address or a PGP key that was previously mentioned and therefore is known to belong to the account holder.
The problem is I haven't publicly disclosed either so according to these instructions I can't recover my account.
I find this hard to believe.

Can you sign a message from this address?

1DUFbqqEf8PeH2ZpKf7ovLWpVLMh6urP63

https://web.archive.org/web/20140715150836/https://bitcointalk.org/index.php?action=profile;u=84992

Message was signed and verified in PM, signed message was dated "2017.11.24" which appears to be before the suspected hack. I've left feedback to alert others.

Quote

-----BEGIN BITCOIN SIGNED MESSAGE-----
My account theta has been hacked. Please reset the email to . The current date is 2017.11.24.
-----BEGIN SIGNATURE-----
1DUFbqqEf8PeH2ZpKf7ovLWpVLMh6urP63
G3Ze1Ug1KQy2rjt972Wrx8a7JhB6ykUHcV2AUyUUOqRhU02ufgJylGyIWSRykq6wf/BX19zqMXeRVN4zVtLdIFA=
-----END BITCOIN SIGNED MESSAGE-----

Thanks for verifying the message. Can you please clarify what you mean regarding the date.
2017.11.24 is the day after the hack. I received the email about my account's email address and password change on Thu, Nov 23, 2017 at 5:35 PM (GMT), then followed the instructions to lock my account, created this new account and posted this thread on the same day, and then I tried to find a btc address linked to me. I found the one you posted as well, and signed it on November 24th (the following day).
Is there something else that I need to do?

ibminer

legendary

Activity: 1789

Merit: 2535

Goonies never say die.

Quote from: ibminer on December 06, 2017, 12:40:50 PM

Quote from: theta1 on November 23, 2017, 04:31:53 PM

I did lock it and then checked the instructions for recovery (https://bitcointalksearch.org/topic/recovering-hacked-accounts-or-accounts-with-lost-passwords-497545). They require signing a bitcoin address or a PGP key that was previously mentioned and therefore is known to belong to the account holder.
The problem is I haven't publicly disclosed either so according to these instructions I can't recover my account.
I find this hard to believe.

Can you sign a message from this address?

1DUFbqqEf8PeH2ZpKf7ovLWpVLMh6urP63

https://web.archive.org/web/20140715150836/https://bitcointalk.org/index.php?action=profile;u=84992

Message was signed and verified in PM, signed message was dated "2017.11.24", which is after the suspected hack.
I've left feedback to alert others.

Quote

-----BEGIN BITCOIN SIGNED MESSAGE-----
My account theta has been hacked. Please reset the email to . The current date is 2017.11.24.
-----BEGIN SIGNATURE-----
1DUFbqqEf8PeH2ZpKf7ovLWpVLMh6urP63
G3Ze1Ug1KQy2rjt972Wrx8a7JhB6ykUHcV2AUyUUOqRhU02ufgJylGyIWSRykq6wf/BX19zqMXeRVN4zVtLdIFA=
-----END BITCOIN SIGNED MESSAGE-----

BackBachvsUp

copper member

Activity: 257

Merit: 0

Seems a lot of people got their account stolen :|
Mine was stolen yesterday, only just two weeks to become a full member.
I already reported mine to admin but I'm stupid, I submitted the wrong data.
Now I have to wait for another 24 hour to be able to send another pm.

theta1

newbie

Activity: 21

Merit: 0

PM sent last night

theta1

newbie

Activity: 21

Merit: 0

Quote from: ibminer on December 06, 2017, 12:40:50 PM

Quote from: theta1 on November 23, 2017, 04:31:53 PM

I did lock it and then checked the instructions for recovery (https://bitcointalksearch.org/topic/recovering-hacked-accounts-or-accounts-with-lost-passwords-497545). They require signing a bitcoin address or a PGP key that was previously mentioned and therefore is known to belong to the account holder.
The problem is I haven't publicly disclosed either so according to these instructions I can't recover my account.
I find this hard to believe.

Can you sign a message from this address?

1DUFbqqEf8PeH2ZpKf7ovLWpVLMh6urP63

https://web.archive.org/web/20140715150836/https://bitcointalk.org/index.php?action=profile;u=84992

YES!
This is the address I signed and sent the signed message to Cyrus and Theymos in PM.
I'll send it to you too (in about 6 minutes that I will be allowed to with this new account)
edit: it's 1 hour actually, not 6 minutes, so I'll send you the PM later.
edit2: there's another limit, of 2 PMs a day, so your PM with the signed message (that 4 other people including Theymos and Cyrus already have) will arrive later tonight.

ibminer

legendary

Activity: 1789

Merit: 2535

Goonies never say die.

Quote from: theta1 on November 23, 2017, 04:31:53 PM

I did lock it and then checked the instructions for recovery (https://bitcointalksearch.org/topic/recovering-hacked-accounts-or-accounts-with-lost-passwords-497545). They require signing a bitcoin address or a PGP key that was previously mentioned and therefore is known to belong to the account holder.
The problem is I haven't publicly disclosed either so according to these instructions I can't recover my account.
I find this hard to believe.

Can you sign a message from this address?

1DUFbqqEf8PeH2ZpKf7ovLWpVLMh6urP63

https://web.archive.org/web/20140715150836/https://bitcointalk.org/index.php?action=profile;u=84992

vetal1212

newbie

Activity: 52

Merit: 0

Hello, I would like to know if my account on Bitkojntolk got hacked, how can I restore it? And do you need documents?)

KWH

legendary

Activity: 1904

Merit: 1045

In Collateral I Trust.

Read the sticky in meta.

DeeDee_2

newbie

Activity: 26

Merit: 0

I've had the same problem today.

Somebody can help me?

I've lock the account with the option:

then you can visit the following link within 14 days in order to lock the account:

https://bitcointalk.org/index.php?action=seclock;u=368688;t=1512321576;o=Y2lnYXJyb3NleGlAZ21haWwuY29t;n=QlRDRGVlRGVlQHlhbmRleC5jb20%3D;c=PEdzKGXBuflStusl1gbGtl%2BTC%2B2MonPKm8tgQOHw02A%3D

theta1

newbie

Activity: 21

Merit: 0

Earlier today I received an email saying that the email address of my bitcointalk account (theta) was changed, and then another one saying that my password was changed.
The only option available was to lock the account and then try to recover it.
I did lock it and then checked the instructions for recovery (https://bitcointalksearch.org/topic/recovering-hacked-accounts-or-accounts-with-lost-passwords-497545). They require signing a bitcoin address or a PGP key that was previously mentioned and therefore is known to belong to the account holder.
The problem is I haven't publicly disclosed either so according to these instructions I can't recover my account.
I find this hard to believe.
First of all, how come an email address change is allowed without confirmation or at the very least time-locking from the previous email address? And how come I can't recover it now, again by returning ownership to the original email address?
There must be another way to recover it. What shall I do?

Topic: Hacked account recovery (Read 1370 times)