Author

Topic: !!Hacker Stole bitcoins from Blockchain Wallets!! (Read 6362 times)

newbie
Activity: 6
Merit: 0
September 18, 2014, 04:53:07 AM
#37
I Have same problem my btc 4,36 after I sent btc small 0.02 btc,
stolen this address https://blockchain.info/id/address/1LhRRTFcnarqWjjyrD2cVRNBAK9zYqF3v2
My PC very good securty, and my password no same any web.

blockchain not safe  Sad
legendary
Activity: 2464
Merit: 1037
CEO @ Stake.com and Primedice.com
Btw name of the thread should be changed. Don't ever call that guys Hackers , they are not hackers.
member
Activity: 109
Merit: 10
Developer
Today saw fake blockchain.info advertisement at google search page via adsense.
So seems this is the way it works.
member
Activity: 112
Merit: 10
Just had some BTC stolen from this address.  I used Chrome on Windows 7.   Figured out what happened:

I googled "blockchain".   The top result is a paid ad.  This is what it said (sorry i am unable to cut and paste the image here):

  Blockchain - blockchain.info‎
  Adwww.blockchain.info/‎
  Official Blockchain website with wallet, charts, statistics and more

It then takes you to the following site: blockchain.info.wallet.georgia.ru which is a phishing site.   I did not pay attention to the url when I logged in since the site looked legit.

Should had used 2FA and ALWAYS double check URL's.



always use ad block (don't let any google ads through) and ghostery. Also switch to DuckDuckGo.com Much better than Google. They put privacy of users first and money second unlike Google.

edit: chrome is a browser by ad company. You are better off using FireFox or Opera
legendary
Activity: 2464
Merit: 1037
CEO @ Stake.com and Primedice.com
I bet some kind malware / browser addons / keylogger is on your PC
My friends almost lost all his BTC, but he's enabled 2FA  Grin, i reccomended 2FA SMS Message

Expect, your phone is stolen  Tongue

What browser and plugins are you using? Since Mandrik said it could be due to a third party plugin, knowing this could certainly help.

I'm using IE.
Though I am making the switch to Firefox.

Don't know of any plugins

Old IE version is easily hacked by hacker  Grin
Chrome / firefox is more safer

Yeah if ur wallet is hacked its 99.9% ur fault . SMS 2fA makes huge difference .
And also Don't use IE Cheesy
sr. member
Activity: 252
Merit: 251
Knowledge its everything
I bet some kind malware / browser addons / keylogger is on your PC
My friends almost lost all his BTC, but he's enabled 2FA  Grin, i reccomended 2FA SMS Message

Expect, your phone is stolen  Tongue

What browser and plugins are you using? Since Mandrik said it could be due to a third party plugin, knowing this could certainly help.

I'm using IE.
Though I am making the switch to Firefox.

Don't know of any plugins

Old IE version is easily hacked by hacker  Grin
Chrome / firefox is more safer
legendary
Activity: 2464
Merit: 1037
CEO @ Stake.com and Primedice.com
Just found it interesting that the addresses that the hacker moved the coins to 1LQQkqtWWruiofuD8jkMHxD5jMdKk7Vuh6 is just now laundering the coins. If blockchain.info knew that this address contained ill-gotten bitcoin, why didnt they put a hold on that address or account? They had plenty of time, and the post they made here is proof that they knew about it in April.

Blockchain can't put hold on any address . Nobody can. That is bitcoin.
hero member
Activity: 924
Merit: 1000
Just found it interesting that the addresses that the hacker moved the coins to 1LQQkqtWWruiofuD8jkMHxD5jMdKk7Vuh6 is just now laundering the coins. If blockchain.info knew that this address contained ill-gotten bitcoin, why didnt they put a hold on that address or account? They had plenty of time, and the post they made here is proof that they knew about it in April.
full member
Activity: 164
Merit: 100
What browser and plugins are you using? Since Mandrik said it could be due to a third party plugin, knowing this could certainly help.

I'm using IE.
Though I am making the switch to Firefox.

Don't know of any plugins

Nice Browser

I guess you are using Windows XP
full member
Activity: 164
Merit: 100
Have you enabled 2FA?
Have you received some phishing emails and clicked the link?
Have you download some "strange" programs which may contain keylogger?

no,no.and no!


So you don't use 2FA?
full member
Activity: 126
Merit: 100
3.15BTC was stolen from me on the 29th of April, as well. Don't recall clicking any phishing sites, though.
hero member
Activity: 798
Merit: 500
Time is on our side, yes it is!
Well this is yet another bad story I've come acros in a short period of time.  I'm getting goose bumps and will be doing my best to up security in the coming days.
member
Activity: 80
Merit: 12
this should be sticky..  Sad
hero member
Activity: 560
Merit: 500
same here lost 1.1BTC....
sigh...
legendary
Activity: 2464
Merit: 1037
CEO @ Stake.com and Primedice.com
I made a Reddit post here concerning this issue - http://www.reddit.com/r/Bitcoin/comments/24dqdb/blockchaininfo_psa_phishing_defense/. Andreas Antonopoulos created a blog post regarding defending yourself against phishing sites - https://blog.blockchain.com/2014/04/30/psa-phishing-defense/.

Read it and made new wallet with all protection that it can offer. Only thing is i did not download backup , coz i think its not safe to do so. I will not forget passwords. And i think backup can be provided by blockshain support when needed in case blockchain is down.
hero member
Activity: 622
Merit: 500
Always type in the full URL into the address bar:  https://blockchain.info
member
Activity: 106
Merit: 11
I made a Reddit post here concerning this issue - http://www.reddit.com/r/Bitcoin/comments/24dqdb/blockchaininfo_psa_phishing_defense/. Andreas Antonopoulos created a blog post regarding defending yourself against phishing sites - https://blog.blockchain.com/2014/04/30/psa-phishing-defense/.
legendary
Activity: 2464
Merit: 1037
CEO @ Stake.com and Primedice.com
Damn that happened today to one guy from pd. This is only thing why i hate bitcoin. I got robbed of 0.4 on that vanity site scam that made vanity addyes. I use only blockchain.info as my wallet, i use strong password and sms code , bigger funds i transfer to new blockchain wallet that i login only from my pc. Even cold wallet is not secure if u made it on ur pc , u need to have pc or laptop that never connected to internet, and to make paper wallet on it offline, and store btc on it . But still when u want to spend it u need private key online :S .
member
Activity: 106
Merit: 11
Wow, really sorry to hear this was a phishing site. We've seen a lot of these popping up, and we're doing everything in our power to take them down. I just always encourage users to never click on third party links.
legendary
Activity: 2198
Merit: 1989
฿uy ฿itcoin
My funds are still in my wallet Grin.
legendary
Activity: 2394
Merit: 1216
The revolution will be digital
My Blockchain Wallet  hacked and i lost bitcoins.
81 Wallet hacked lost 13.5 btc for all wallets.

The transaction is :

1LQQkqtWWruiofuD8jkMHxD5jMdKk7Vuh6

the bitcoins is not safe in Blockchain Wallet!!
I open case and the answer is :

 Mandrik (Blockchain)

Apr 28 19:40

I am sorry to hear of these transactions that you did not initiate. You may have some type of malware on your computer that resulted in your funds being stolen, because your private information was somehow obtained. There's also the possibility that you visited a phishing site posing as blockchain.info. By design, Blockchain.info never has access to users' accounts or bitcoins. If you keep your password and private key backups secure, then your bitcoins are safe with blockchain.info. There is also no way to reverse a bitcoin transaction. In the future, to ensure your account is protected with an extra layer of security, always enable two factor authentication. I would also highly advise against ever using this compromised wallet again, as someone else clearly has the private keys in it. I wish more could be done to get your funds back to you, but the nature of bitcoin makes it nearly impossible.


-----

So, those who are keeping only the password and not the private key are insecure on blockchain.info ?
global moderator
Activity: 3990
Merit: 2717
Join the world-leading crypto sportsbook NOW!
If you set up 2 factor auth and a second password you probably won't get your funds stolen. Also boot from Linux when you want to send money and you'll be much safer.
hero member
Activity: 896
Merit: 527
₿₿₿₿₿₿₿
Just had some BTC stolen from this address.  I used Chrome on Windows 7.   Figured out what happened:

I googled "blockchain".   The top result is a paid ad.  This is what it said (sorry i am unable to cut and paste the image here):

  Blockchain - blockchain.info‎
  Adwww.blockchain.info/‎
  Official Blockchain website with wallet, charts, statistics and more

It then takes you to the following site: blockchain.info.wallet.georgia.ru which is a phishing site.   I did not pay attention to the url when I logged in since the site looked legit.

Should had used 2FA and ALWAYS double check URL's.


You should always visit the URL directly (blockchain.info‎), since you know it. Searching on Google instead of visiting the URL directly makes it easy for anyone to send you to a phishing site, install a different software than the one you wanted (or together with adware+spyware)...

That site is hosted at 66.36.176.53 (http://whois.domaintools.com/66.36.176.53)
pt7
member
Activity: 98
Merit: 10
Just had some BTC stolen from this address.  I used Chrome on Windows 7.   Figured out what happened:

I googled "blockchain".   The top result is a paid ad.  This is what it said (sorry i am unable to cut and paste the image here):

  Blockchain - blockchain.info‎
  Adwww.blockchain.info/‎
  Official Blockchain website with wallet, charts, statistics and more

It then takes you to the following site: blockchain.info.wallet.georgia.ru which is a phishing site.   I did not pay attention to the url when I logged in since the site looked legit.

Should had used 2FA and ALWAYS double check URL's.

hero member
Activity: 882
Merit: 500
I don't understand why anyone uses IE, especially for $5k worth of bitcoins.  You've got to spend some % of your bitcoin balance on security, at least spend $200 for a cold wallet laptop or something.


Different people. The OP didn't say which browser he is using.
I am the one that was using IE and I'm aware of the security faults. That is why I am switching to Firefox.
cp1
hero member
Activity: 616
Merit: 500
Stop using branwallets
I don't understand why anyone uses IE, especially for $5k worth of bitcoins.  You've got to spend some % of your bitcoin balance on security, at least spend $200 for a cold wallet laptop or something.
legendary
Activity: 3766
Merit: 1217
Probably the work of some hacker using a premium keylogger. The OP should have used 2FA, or at least should have enabled the email confirmation using Gmail or any other reliable mail service.
hero member
Activity: 543
Merit: 500
I'm using IE.

May not be directly related to the hack, but for your info: http://www.bbc.com/news/technology-27184188
hero member
Activity: 882
Merit: 500
What browser and plugins are you using? Since Mandrik said it could be due to a third party plugin, knowing this could certainly help.

I'm using IE.
Though I am making the switch to Firefox.

Don't know of any plugins
hero member
Activity: 896
Merit: 527
₿₿₿₿₿₿₿
What browser and plugins are you using? Since Mandrik said it could be due to a third party plugin, knowing this could certainly help.
hero member
Activity: 882
Merit: 500
Same thing happened to me, but my account was just about empty, so I didn't care.
When I logged in to my blockchain wallet, it sent the last of my btc to: 1894H2A9oWL9uFJY6E1yt5MUXByqWqqY9z
I didn't initiate anything.
I'm just not going to use this wallet anymore.

Edit: do not use same password as any other anything of mine.
hero member
Activity: 896
Merit: 527
₿₿₿₿₿₿₿
Did you use the same password in any other website?
member
Activity: 106
Merit: 11
Mandrik from Blockchain.info here. I'm seeing a number of users reporting funds stolen from them & sent to the 1LQQkqtWWruiofuD8jkMHxD5jMdKk7Vuh6 address. I'm wondering if this has to do with a third party plugin or app currently being used in a browser, much like we saw a few days ago. If you have any information on this please shoot me a PM. I'd love to be able to provide more information, and also warn others. Thanks!
hero member
Activity: 820
Merit: 1000
no,no.and no!


You should have enabled 2FA. Though it won't provide 100% safety, it still provides another safety measure to your bitcoin.
newbie
Activity: 7
Merit: 0
no,no.and no!
hero member
Activity: 820
Merit: 1000
My Blockchain Wallet  hacked and i lost bitcoins.
81 Wallet hacked lost 13.5 btc for all wallets.

The transaction is :

1LQQkqtWWruiofuD8jkMHxD5jMdKk7Vuh6

the bitcoins is not safe in Blockchain Wallet!!
I open case and the answer is :

 Mandrik (Blockchain)

Apr 28 19:40

I am sorry to hear of these transactions that you did not initiate. You may have some type of malware on your computer that resulted in your funds being stolen, because your private information was somehow obtained. There's also the possibility that you visited a phishing site posing as blockchain.info. By design, Blockchain.info never has access to users' accounts or bitcoins. If you keep your password and private key backups secure, then your bitcoins are safe with blockchain.info. There is also no way to reverse a bitcoin transaction. In the future, to ensure your account is protected with an extra layer of security, always enable two factor authentication. I would also highly advise against ever using this compromised wallet again, as someone else clearly has the private keys in it. I wish more could be done to get your funds back to you, but the nature of bitcoin makes it nearly impossible.


-----

Have you enabled 2FA?
Have you received some phishing emails and clicked the link?
Have you download some "strange" programs which may contain keylogger?
newbie
Activity: 7
Merit: 0
My Blockchain Wallet  hacked and i lost bitcoins.
81 Wallet hacked lost 13.5 btc for all wallets.

The transaction is :

1LQQkqtWWruiofuD8jkMHxD5jMdKk7Vuh6

the bitcoins is not safe in Blockchain Wallet!!
I open case and the answer is :

 Mandrik (Blockchain)

Apr 28 19:40

I am sorry to hear of these transactions that you did not initiate. You may have some type of malware on your computer that resulted in your funds being stolen, because your private information was somehow obtained. There's also the possibility that you visited a phishing site posing as blockchain.info. By design, Blockchain.info never has access to users' accounts or bitcoins. If you keep your password and private key backups secure, then your bitcoins are safe with blockchain.info. There is also no way to reverse a bitcoin transaction. In the future, to ensure your account is protected with an extra layer of security, always enable two factor authentication. I would also highly advise against ever using this compromised wallet again, as someone else clearly has the private keys in it. I wish more could be done to get your funds back to you, but the nature of bitcoin makes it nearly impossible.


-----
Jump to: