Pages:
Author

Topic: HELP!! Hacked using Blockchain.info! Someone sent my BTC AWAY! (Read 6324 times)

legendary
Activity: 2646
Merit: 1137
All paid signature campaigns should be banned.
Hello friends, does anyone have a blockchain.info account from 2014? .
I really need it.
Call me on the telegram: @Xee_Love
 

Mine is much older than that.  Why?
jr. member
Activity: 37
Merit: 1
Hello friends, does anyone have a blockchain.info account from 2014? .
I really need it.
Call me on the telegram: @Xee_Love
 
full member
Activity: 180
Merit: 100
Once your coins have left your wallet and gone into another wallet you do not control or personally know the owner of they are gone. Unless the person fucks up and posts "hey look I stoke this guy's bitcoins! lolololol!" you will never find out who took it by following it on the blockchain.
full member
Activity: 196
Merit: 100
★Bitvest.io★ Play Plinko or Invest!
The thief started spending all the coins he stoled from me! He did lot´s of payments to different adresses, any possibilty to follow anyone of those transactions? https://blockchain.info/pt/address/17sTtj9eZeVY9nJCbL38t1hqzDHkDu5Rz2

Looks like it's  gone through a tumbler.

I'm sorry to say, but without some MAJOR detective work, your coins are essentially gone Sad
full member
Activity: 180
Merit: 100
BTCBTCBTC Don't use online wallets. BTCBTCBTC
full member
Activity: 180
Merit: 100
The thief started spending all the coins he stoled from me! He did lot´s of payments to different adresses, any possibilty to follow anyone of those transactions? https://blockchain.info/pt/address/17sTtj9eZeVY9nJCbL38t1hqzDHkDu5Rz2
legendary
Activity: 2646
Merit: 1137
All paid signature campaigns should be banned.
I was also surprised to learn that. Apparently the default settings for the wallet encryption is rather weak.

Hm? From what I can tell wallets are encrypted with 256-bit aes. That's pretty damn strong.
The encryption used in very strong and not the issue.  The issue is how strong the password is.  If you use a weak password then the wallet can be cracked.
sr. member
Activity: 430
Merit: 250
I was also surprised to learn that. Apparently the default settings for the wallet encryption is rather weak.

Hm? From what I can tell wallets are encrypted with 256-bit aes. That's pretty damn strong.
newbie
Activity: 48
Merit: 0
did you have the backups sent to your email?

if you did then it was possible your email account was compromised and the wallet password was simply brute forced.
member
Activity: 63
Merit: 10
From my understanding the 2FA on blockchain.info only prevents an attacker from retrieving the encrypted wallet file (from blockchain.info directly). If he can get it some other way, for example by compromising the hotmail account, its not impossible to brute the wallet.

I was also surprised to learn that. Apparently the default settings for the wallet encryption is rather weak.

It happened to this guy on reddit:

http://www.reddit.com/r/Bitcoin/comments/1ubv3o/my_blockchaininfo_wallet_hacked_strong_unique/
full member
Activity: 180
Merit: 100
My God, what's happening here? Either with Ubikey hacked? Is the Ubikey used by Blockchain like the one used by MTgox? Because that's all i m relying these days...  Shocked Huh
newbie
Activity: 17
Merit: 0
Quote
i didn't use the 2FA on my account there.

Always use 2FA.
sr. member
Activity: 430
Merit: 250
I never did a backup of my blockchain.info wallet, started to do yesterday 1 hour before the hack-system fail.
The only way to someone get ahold of my wallet backups woud be through my e-mail, hotmail, but it is secure with a big password.

This must be the problem.. You may have a RAT\Keylogger installed. What security software you running?

Hey Icey, i use ESET NOD32 Antivirus 4, it looks that it didn t protected, would you have an anti-virus to reccomend? Thanks
No antivirus will protect you. Look into cold wallets and offline transactions, if you're serious about security.
full member
Activity: 180
Merit: 100
I never did a backup of my blockchain.info wallet, started to do yesterday 1 hour before the hack-system fail.
The only way to someone get ahold of my wallet backups woud be through my e-mail, hotmail, but it is secure with a big password.

This must be the problem.. You may have a RAT\Keylogger installed. What security software you running?

Hey Icey, i use ESET NOD32 Antivirus 4, it looks that it didn t protected, would you have an anti-virus to reccomend? Thanks
legendary
Activity: 2646
Merit: 1137
All paid signature campaigns should be banned.
Contact the Bitcoin central authority and report the stolen funds. Oh, I forgot, Bitcoin is not reversible and nobody can help you to recover your funds even your account was hacked. "Free Bitcoin", right? Smiley
Put up or shut up you spineless steaming pile of FUD.

You appear to be lost.  This is not the thread you were looking for.  Try this one:

https://bitcointalksearch.org/topic/2013-12-17-bitcoin-tumbles-after-pboc-rumors-confirmed-374295
legendary
Activity: 1470
Merit: 1004
Hey BuryW, I m sorry for posting in multile threads, i was freaking out, just wanted to have maximun feedback as possible, i am stoping to do that. You are the person who is helping me more anyway with your analisys.

How do i check for Key loggers? Are those the guys that steal passwords that i type in my computer? If that was the case then it would mean that the coins were STOLEN right? But the coins remain there in this adress since the "hack"... then, i don't know. Do you know any coin following service? Or painting coin service (just to prepare in the case the coins will be sent away from there)

And if it was a bad PRNG who is to blame? I know the first one to blame is myself but if i can t do anything about, the least it will be for me a very expensive lesson, i have to learn what was the problem, where did i make a mistake. (i can see during our conversation some mistakes like, do not enablin 2FA, do not enabling IP Logging, Sending the coins to an already used adress, i didnt empty the whole wallet...)

I never did a backup of my blockchain.info wallet, started to do yesterday 1 hour before the hack-system fail.

The only way to someone get ahold of my wallet backups woud be through my e-mail, hotmail, but it is secure with a big password.

Thanks for your attention



Contact the Bitcoin central authority and report the stolen funds. Oh, I forgot, Bitcoin is not reversible and nobody can help you to recover your funds even your account was hacked. "Free Bitcoin", right? Smiley

legendary
Activity: 1578
Merit: 1000
May the coin be with you..
I never did a backup of my blockchain.info wallet, started to do yesterday 1 hour before the hack-system fail.
The only way to someone get ahold of my wallet backups woud be through my e-mail, hotmail, but it is secure with a big password.

This must be the problem.. You may have a RAT\Keylogger installed. What security software you running?
full member
Activity: 180
Merit: 100
Hey BuryW, I m sorry for posting in multile threads, i was freaking out, just wanted to have maximun feedback as possible, i am stoping to do that. You are the person who is helping me more anyway with your analisys.

How do i check for Key loggers? Are those the guys that steal passwords that i type in my computer? If that was the case then it would mean that the coins were STOLEN right? But the coins remain there in this adress since the "hack"... then, i don't know. Do you know any coin following service? Or painting coin service (just to prepare in the case the coins will be sent away from there)

And if it was a bad PRNG who is to blame? I know the first one to blame is myself but if i can t do anything about, the least it will be for me a very expensive lesson, i have to learn what was the problem, where did i make a mistake. (i can see during our conversation some mistakes like, do not enablin 2FA, do not enabling IP Logging, Sending the coins to an already used adress, i didnt empty the whole wallet...)

I never did a backup of my blockchain.info wallet, started to do yesterday 1 hour before the hack-system fail.

The only way to someone get ahold of my wallet backups woud be through my e-mail, hotmail, but it is secure with a big password.

Thanks for your attention

legendary
Activity: 2646
Merit: 1137
All paid signature campaigns should be banned.
I noticed you have started posting your problem in multiple theads.  Please stop that.  It will not help your situation and will only piss off those who are here trying to help you.

BTW one of the very first things I checked was whether or not the two transactions from your address had the same R values (a know weakness in ECDSA) and they do not.  That is not your issue.

However, since the key pair was created a pretty long time ago there may have been an issue with the way it was created way back then (possibly a bad PRNG) but I cannot prove that one way or another.
legendary
Activity: 2646
Merit: 1137
All paid signature campaigns should be banned.
How often and exactly how do you back up your blockchain.info wallet?  Is it possible someone could have gotten ahold of one of your wallet backups?

I am about out of ideas so, as a last resort, it is time to check your system for a key logger, etc.

Sorry I could not be of more help.
Pages:
Jump to: