Hacked BitcoinTalk Data Finally Surfaces On Dark Net - page 2.

Zadicar

legendary

Activity: 1386

Merit: 1020

DGbet.fun - Crypto Sportsbook

Quote from: ethereumhunter on September 07, 2016, 04:26:56 AM

i can not imagine how to do that, cracked password is far beyond from my imagination and i can not figure out how to do that. i hope that bitcointalk will be fine and will be ok, for the forum and for the member especially. and i hope nothing will be happen with bitcoin community and we should not be worried.

Cracking passwords would be difficult for the hackers since it was encrypted ,same as others said that you would need a super computer to crack it. I guess its up to you if you change your password as of now since its a little bit worrying for us that our account could possibly be compromised and possibly get by someone.

Cashew

sr. member

Activity: 391

Merit: 250

Very useful information mate ! There should be a sticky somewhere or a messsage like the one that announce new versions of Bitcoin Core. My password has 60~70 bits of entropy, so that's definitively not worth trying to crack it.

pooya87

legendary

Activity: 3472

Merit: 10611

Quote from: Wind_FURY on September 08, 2016, 11:05:18 PM

Quote from: springgers on September 07, 2016, 05:39:19 AM

I suppose everyone already considered the data compromised even if they did not see it officially on sale, I changed my passwords after every recent issue occurring in BCT as well as the CEX.IO data compromise and I changed all the passwords used on these sites. I think everyone should do that as well.

cex.io was hacked? I have not heard about this. Please post more details about it and when it happened. To my knowledge I have not heard or seen any hacks that involved cex.io funds being stolen.

account hack is different from the site itself being hacked. (although it seems like cex.io was hacked in 2013) but i think he is talking about his own account being compromised and most of the google results about cex.io hack also suggests.

Wind_FURY

legendary

Activity: 2898

Merit: 1823

Quote from: springgers on September 07, 2016, 05:39:19 AM

I suppose everyone already considered the data compromised even if they did not see it officially on sale, I changed my passwords after every recent issue occurring in BCT as well as the CEX.IO data compromise and I changed all the passwords used on these sites. I think everyone should do that as well.

cex.io was hacked? I have not heard about this. Please post more details about it and when it happened. To my knowledge I have not heard or seen any hacks that involved cex.io funds being stolen.

Teraboy

hero member

Activity: 2282

Merit: 505

Quote from: Rinder on September 08, 2016, 07:06:45 PM

Soo looks like the attack were something personal or some competitor trying to put bitcointalk, down its insane since the hack several hackeds accounts had been sold and hacked, i do hope this wont affect the current accounts.

But the hacked account is already sold in this time just a data of bitcoin talk is really hacking at may in the past year, and we know from some news is already tell us, if the hacker is starting for selling the data for a few days ago and the data is encrypted by SHA 256 algorithm. but i hate about the ddos can make site is downtime for several hours. Will be better for changing your password in this time for avoiding a worst thing.

Rinder

hero member

Activity: 868

Merit: 500

Soo looks like the attack were something personal or some competitor trying to put bitcointalk, down its insane since the hack several hackeds accounts had been sold and hacked, i do hope this wont affect the current accounts.

jackg

copper member

Activity: 2856

Merit: 3071

https://bit.ly/387FXHi lightning theory

Quote from: pearnapple on September 07, 2016, 01:39:50 PM

Quote from: ethereumhunter on September 07, 2016, 04:26:56 AM

i can not imagine how to do that, cracked password is far beyond from my imagination and i can not figure out how to do that. i hope that bitcointalk will be fine and will be ok, for the forum and for the member especially. and i hope nothing will be happen with bitcoin community and we should not be worried.

in my opinion no one is going to crack it any time soon, in order to be really safe i think that it would be better to just change your password

There's not realy much danger if you don't though.
It is designed to be impossible tocrack and it will be almost impossible to crack. There willbe some ways of cacing it (mainly brute-force to get it). Maybe with a high qubit computer you could do itbut they are probably more expensive than useful for this.

pearnapple

sr. member

Activity: 504

Merit: 250

CryptoTalk.Org - Get Paid for every Post!

Quote from: ethereumhunter on September 07, 2016, 04:26:56 AM

i can not imagine how to do that, cracked password is far beyond from my imagination and i can not figure out how to do that. i hope that bitcointalk will be fine and will be ok, for the forum and for the member especially. and i hope nothing will be happen with bitcoin community and we should not be worried.

in my opinion no one is going to crack it any time soon, in order to be really safe i think that it would be better to just change your password

springgers

sr. member

Activity: 294

Merit: 251

I suppose everyone already considered the data compromised even if they did not see it officially on sale, I changed my passwords after every recent issue occurring in BCT as well as the CEX.IO data compromise and I changed all the passwords used on these sites. I think everyone should do that as well.

ethereumhunter

hero member

Activity: 2912

Merit: 541

Leading Crypto Sports Betting & Casino Platform

i can not imagine how to do that, cracked password is far beyond from my imagination and i can not figure out how to do that. i hope that bitcointalk will be fine and will be ok, for the forum and for the member especially. and i hope nothing will be happen with bitcoin community and we should not be worried.

coynedterm

hero member

Activity: 882

Merit: 500

Quote from: Wind_FURY on September 05, 2016, 11:04:45 PM

This just out in the news. What are the implications of this as a regular user of BCT? Should we be worried about this?

http://themerkle.com/hacked-bitcointalk-user-data-finally-surfaces-on-dark-net/

"Just a few days ago, the data stolen from the BitcoinTalk.org hack in 2015 was posted for sale on dark net. A hacker going by DoubleFlag, is selling BitcoinTalk.org’s database. The same hacker is said to be responsible for the 68 million emails and hashed passwords from Dropbox that went for sale on dark net not too long ago.

BitcoinTalk.org was originally hacked in May of 2015, but the data wasn’t posted until a few days ago. DoubleFlag seems to have been the first one able to get his hands on it, and no one after him for that matter. The stolen data was only accessible by using data breach notification sites like Hacked-DB and LeakedSource."

No problem if anyone collect our data because I don't put any sensitive data on any site and Bette if they could send few bitcoin in my wallet.... just kidding. But honestly why they are worried about this platform. We can earn from here so why should they attack bitcointalk. If they have allergic to bitcointalk then they could jump from 5th storey and die.

Betwrong

legendary

Activity: 3514

Merit: 2246

🌀 Cosmic Casino

Quote from: Tyrantt on September 06, 2016, 12:46:12 PM

if you ask me, he can take my encrypted password and shove it up his ass.

Thanks for this comment, I laughed.

I have read all the comments above and I think this comment sums them up perfectly.

Stealing is wrong btw, too bad some people do not realize that when they are stealing it's bad for them in the first place.

ImHash

hero member

Activity: 924

Merit: 506

I think they are using the stolen data to attack the forum.

JeffBrad12

hero member

Activity: 3010

Merit: 538

Leading Crypto Sports Betting & Casino Platform

Quote from: Wind_FURY on September 07, 2016, 12:20:34 AM

Isn't it strange that we are getting DDOSed after this news? Is it just coincidence or is someone or there is a group out there attacking BTC? Are there people out there that hate this community?

I don't think so, I doubt for defining where from the attack is coming, and what the aim of attacking this site, but I hope will never getting attack again.

Wind_FURY

legendary

Activity: 2898

Merit: 1823

Isn't it strange that we are getting DDOSed after this news? Is it just coincidence or is someone or there is a group out there attacking BTC? Are there people out there that hate this community?

jackg

copper member

Activity: 2856

Merit: 3071

https://bit.ly/387FXHi lightning theory

Quote from: Kprawn on September 06, 2016, 12:43:27 PM

It sucks to continuously change passwords, but it's worth the time and effort spend on that, if you compare that to the time and effort it took you to

build a reputation and a higher rank over the years you spend on this forum. Is Satoshi's account one of the affected users, or is his account

disabled? Well, time to change my password again. Roll Eyes

That's inaccurate.
No passwords in their raw form can really be taken, if they could, the bitcoin network would've already failed.
Like how private keys are hashes of specific thngs and tey are almost impossible to break. Breaking these encrypted passwords would take lots of "brute force" to do it.

Instead of qustioning if satoshi is one of the effeted members, maybe try to find if the admins were breached of this issue? Even though they will change teir passwords often (probably) it cannot be ruled out that their passwords are also being sold here.

If you pay attention to this:

Quote from: theymos on September 06, 2016, 02:52:07 AM

Quote from: mjsbuddha on September 06, 2016, 02:46:09 AM

What year did you change the hashing algorithm? From what I saw in the database some users who didn't logon after 2012 were not in it.

July 2012.

He last logged in in december 2010! Definitely before that time so he's not on that database.

Quote from: ?? on ??

Quote from: 2legit2 on September 06, 2016, 10:04:31 AM

Quote from: jackg on September 06, 2016, 02:15:52 AM

To clarify, they're selling SHA256 passwords? Hashed passwords! There is great difficulty in converting several hundred thousand of these in one go and highly trusted members may change passwords often so little money can be gotton from this.

yeah to be honest it would be really hard to get the passwords then i think we are safe but we most probably should change passwords

Not probably, but i think you must change the password. The hacker might compare hashed password with SHA-256 database or have hints such as birth date, hobby, etc.
There are some account hacked because this leaked password, you might check this thread if you're curious : https://bitcointalksearch.org/topic/i-just-hacked-3-and-scammed-3-members-1544686

What you have to think is, why would he sell these for only 1BTC. and So late on. As if he can't really be bothered with this thing and is probably not even selling the right hashed passwords.

There also bitcoin address staking that comes into acount here as you will still be able to recover accounts that have their passwords compromised.

Tyrantt

hero member

Activity: 1022

Merit: 564

Need some spare btc for a new PC

if you ask me, he can take my encrypted password and shove it up his ass.

Kprawn

legendary

Activity: 1904

Merit: 1074

It sucks to continuously change passwords, but it's worth the time and effort spend on that, if you compare that to the time and effort it took you to

build a reputation and a higher rank over the years you spend on this forum. Is Satoshi's account one of the affected users, or is his account

disabled? Well, time to change my password again. Roll Eyes

yayayo

legendary

Activity: 1806

Merit: 1024

The hack was already discovered shortly after it happened. I think theymos urged all users to change their passwords. At least I did. Besides that I think all users that follow best security practices - which means randomly generated, long passwords with special characters - are safe anyway. In my opinion the database has been finally posted, because the hacker has extracted all passwords that he could find and now dumps the useless rest of the db.

Given the high number of users here it's pretty clear that the hacker was able to obtain several passwords which of course is bad news, because it encourages further hacking attempts. Bitcointalk is an attractive target because trusted accounts can be easily used to defraud users. Hopefully the affected users have learned their lesson and are now using safe passwords.

ya.ya.yo!

amacar2

legendary

Activity: 1120

Merit: 1008

CryptoTalk.Org - Get Paid for every Post!

As password is hashed with sha256 than i think it will take too long for anyone to decrypt one password which will certainly not be profitable to hacker by any means. The only reason some may buy this is to grab email list of bitcoin users to promote some shitty/scam/ponzi/fishing products in future.

Topic: Hacked BitcoinTalk Data Finally Surfaces On Dark Net - page 2. (Read 2849 times)