Pages:
Author

Topic: I've been hacked (Electrum 4.3.2) - page 6. (Read 12966 times)

legendary
Activity: 2212
Merit: 7064
January 10, 2023, 02:58:57 PM
First suggestion for OP is to think about installing Linux OS on his computer instead of using wInd0wS, and always use ledger wallet connected with Electrum in future.
Linux is much safer if used correctly and attack surface is much less, but even dual boot (win/linux) would be acceptable solution.
Than I would like to see a realistic plan posted by him, explaining how exactly he is going to pay money back to companies that paid him.
I don't know if that is going to be borrowing money from people he trusts, or selling his stuff, but this would be the only way towards fixing his reputation.
legendary
Activity: 3136
Merit: 1172
Leading Crypto Sports Betting & Casino Platform
January 10, 2023, 02:30:29 PM
A bunch of wacky scripts were found by my current AV, forgot the names 'cause I just immediately let the AV settle it. I will now wipe my system and install a new one.

Although your Antivirus settles the wacky scripts, but they usually maintain the history of which scripts or malware they blocked etc. If you can show them to the public, maybe someone can advise what were the scripts and what damage they can do. Though you have been already affected but it may be helpful for other user's awareness.

By the way it's really concerning if the malware / Scripts can hack anyone's wallet and leave you empty handed. Its seems that hardware wallets will become a necessity if you want to store your crypto safely.
legendary
Activity: 2800
Merit: 2736
Farewell LEO: o_e_l_e_o
January 10, 2023, 01:23:21 PM
How is it going to resolve the problem? Because of the tag you left, many campaign mangers will deny him joining their campaign, companies will deny him to give their projects, resulting he is not going to financially benefit from the forum. As per his explanation the forum is his only earning source. sucks but it's reality for him.
It's a delusion. I, like other managers, have repeatedly accepted users with red tags into the campaign, especially when the user has more green tags than red tags (we are not talking about tags associated with outright fraud). No self-respecting manager will remove high quality posters from a campaign just because they got a red tag, this rule is more like a deterrent factor for those accounts that generate spam (as far as I remember, you also participated in the signature campaign when you had a red tag ).
Fair enough, I would like to see how it develops. Especially I would like to observe in any of your campaign when you have spot and OP applies then your willingness of accepting OP.



Hopefully you don't mind the yellow warning too.

I've left him a neutral tag but I think a negative is acceptable. He himself has acknowledged that.

Red tag by icopress is fine everyone, he has all the right to make that judgment, kindly stop bickering about it.
I don't call it happily accepting but to accept because arguing is not going to help him. I see a surrender there because his voice are weak now. I don't call it acknowledgment for real. Stop being JollyGood (sorry man JG, no mean to discredit you, you built up your own identity). Give the man a fair chance.

I am sorry, maybe my responses are not diplomatic like many others but I like straight talk. The forum do not need policemen and a crime bureau to spy others all the time.
Ucy
sr. member
Activity: 2674
Merit: 403
Compare rates on different exchanges & swap.
January 10, 2023, 01:20:13 PM
Op made a terrible mistake which I hope others will not repeat. There are certain people you take seriously on the forum or Cryptospace (who are helping to protect it behind the scene) even though they are not popular as they don't actually like being popular.  We are surrounded by enemies who hate this space and want to conquer it. Members are impenetrable and can't be successful attacked because of a Shield but if any mishaves or mistreat the ones protecting them, their shield may be weakened. Believe this if you want to last on this space and continue to take care of your family. . Sorry for your lose.
By the way, I notice you believe in GOD and I hope you understand the spiritual world exist. That's part of where I'm assigned. It's a waste of time and resources to fight only the physical battle. Once you are defeated in the spirit it's over. So  we need people on the forum fighting in both existence. Let's considered them too.
If you need proof to know whether I'm telling the truth, you will get it. You are free to doubt me without the proof



 If a fish is ungrateful to the water it lives in the water would vomit the fish.

copper member
Activity: 1526
Merit: 2890
January 10, 2023, 01:18:13 PM
A bunch of wacky scripts were found by my current AV, forgot the names 'cause I just immediately let the AV settle it. I will now wipe my system and install a new one.

It's unfortunate that you have to resort to wiping your system clean. Conducting a comprehensive forensic examination of your system would be extremely beneficial in identifying the cause of this issue. Not only could this information assist you in recovering your funds, but it could also serve as an informative resource for other members of the community to avoid similar incidents in the future.

That's true you shouldn't format it without proper examination, you must know what really happened. Otherwise even with a new PC or reformatted PC you are still at risk as before, you still don't know which door you have left open for the hackers.

By the way reformatting is also not a final solution, it has been reported that there are malwares that can survive disk format and OS reinstalls

Moonbounce is a persistent malware that can survive drive formats and OS reinstalls

Keep your pc for your daily non essential work but don't use it for any crypto transactions.



legendary
Activity: 1624
Merit: 2594
Top Crypto Casino
January 10, 2023, 12:44:40 PM
A bunch of wacky scripts were found by my current AV, forgot the names 'cause I just immediately let the AV settle it. I will now wipe my system and install a new one.

It's unfortunate that you have to resort to wiping your system clean. Conducting a comprehensive forensic examination of your system would be extremely beneficial in identifying the cause of this issue. Not only could this information assist you in recovering your funds, but it could also serve as an informative resource for other members of the community to avoid similar incidents in the future.

Unfortunately Yes. While I have another device, it's a Chromebook that's used by my wife. It doesn't necessarily support the Apps I required to run the bounty campaign management service. So I'm stuck with my one and only PC.

Even when utilizing a single device, there are still various options available to ensure the security of your assets. One option is to set up a dual boot system, another is to use a Live OS from a USB drive or other external media, and as a final alternative, you can also consider installing free virtual PC software and use a secondary OS that way.
hero member
Activity: 700
Merit: 541
Bitcoin Casino Est. 2013
January 10, 2023, 12:36:45 PM
2nd option, use a password-protected wallet file, Malware can't decode the code, isn't ?

Everything is possible as long as the system is connected to the internet. So you can't actually protected your wallet by just putting a password.
The only way I can possibly think of right now is that Op should try to buy a new laptop one that has never been connected to the internet before or if it has he should wipe everything from the system and install a new Os. After which he should install his wallet and try as much as possible not to ever use the system for any other activities such as surfing the internet.
That will definitely prevent the system from being infested with malware.
legendary
Activity: 1624
Merit: 2594
Top Crypto Casino
January 10, 2023, 12:19:29 PM
I can understand this as julerz12 was doing the same, using the computer with electrum installed and at the same time using it for other purposes too. Most of us do that, don't we?

I hope that is not the case, otherwise all of the good practices and safety tips that have been mentioned repeatedly by members here would be in vain.

Anyways, what if we uninstall the electrum wallet from the PC and install it again if we want to send the funds? We can still receive funds if the wallet is not installed on the computer. (for those who do not have a spare computer)

2nd option, use a password-protected wallet file, Malware can't decode the code, isn't ?

Both of your tips are equally bad. Let's assume that your system is infected with malware at some point, it can be difficult to know the extent of the damage it may cause. For example, the malware could potentially access and alter the contents of your clipboard, or even include a keylogger to record your keystrokes. This means that if you have ever copied or typed your password or seed phrase while the malware was present on your system, hackers may be able to gain access to your coins. Uninstalling the wallet or adding a password will have ZERO impact on protecting your coins.
legendary
Activity: 2492
Merit: 1164
Telegram: @julerz12
January 10, 2023, 12:18:19 PM
The only apps that were running at the time were Adobe Photoshop, Telegram, Discord, and Google Chrome
Stop using Google Chrome and use Firefox instead. There is suspicion that Google Chrome likely is compromised these days. Stop using it, uninstall it from your device at the moment. Firefox and Tor browsers are better. If you don't use Google Chrome, you shouldn't use Brave browser too.
Thanks for the tips. I have no other reason for using Google Chrome other than being used to it since I started working online way before I entered crypto-space. I guess it never crossed my mind how vulnerable I am using it.

It is your good move until the dust settles.

I notice that you did not change your forum account password. Why not?

And if you use a captcha bypass code, please change it to a new code too.

Changing them all now and after you make sure your device is clean, changing them all one more time.

I got your invitation to work with you in some projects and I appreciated it a lot so it is very bad for me to see this accident. Good luck and get well soon julerz12.
Thanks, I just changed it right after I made a full scan of my current system. 
A bunch of wacky scripts were found by my current AV, forgot the names 'cause I just immediately let the AV settle it. I will now wipe my system and install a new one.

I assume OP was/is using the same windows PC for browsing, downloading stuffs, holding funds, etc. which is not recommended at all. Too many malwares across the internet (smarter than your antivirus), you click a simple link and wont even know what problems are waiting for you ahead.
Unfortunately Yes. While I have another device, it's a Chromebook that's used by my wife. It doesn't necessarily support the Apps I required to run the bounty campaign management service. So I'm stuck with my one and only PC.
hero member
Activity: 2422
Merit: 875
January 10, 2023, 11:45:31 AM
To be very true, i am feeling anxious as most people use Electrum on the computer and trust it that our funds are safe. What else can we use if we do not have a hardware wallet?
A separate device or a linux pc with just your wallet and no other BS installed should do. Just dont use that device for any other thing.
Our security is in our hands, if we are reckless enough even the hardware wallet can get drained Tongue


I can understand this as julerz12 was doing the same, using the computer with electrum installed and at the same time using it for other purposes too. Most of us do that, don't we?

Anyways, what if we uninstall the electrum wallet from the PC and install it again if we want to send the funds? We can still receive funds if the wallet is not installed on the computer. (for those who do not have a spare computer)

2nd option, use a password-protected wallet file, Malware can't decode the code, isn't ?
legendary
Activity: 2058
Merit: 1166
January 10, 2023, 11:44:33 AM

@icopress went for it and pulled the trigger.
 I am not sure that was the appropriate action to take here.





If you check julerz12's trust lists, the only user that doesn't trust him is icopress. Probably there were other incidents that led icopress to such conclusions. But as for the negative tag, it will not affect the decision of the managers in any way, in case julerz12 decides to participate in the subscription company. It's just that all managers are already aware of what happened, and one way or another, only they decide whether to accept this user or not. It has already been said many times that a negative mark can easily change in the event of a positive outcome. In the end, this is only a minimum compared to what those who actually lost money experienced. After all, everyone will agree that other people's money can never be compared with their own. And julerz12 lost other people's money, which one hurts more?

I think that

The only thing stopping me from Supporting the Flag is this:
I've seen an escrow involved in someone losing $50,000, and everyone still trusts him.
I don't think OP, who actually posted the problem by himself, deserves a harsher treatment than the other guy.

this reasoning also makes sense. If we want to keep a slight sense of fairness and equality, than this doesn't quite add up.

I would at least given him a couple of days to come forward with a reimbursement plan. You could leave a neutral tag and still turn it into red when after a week or two there is zero or irrelevant action being taken. And still, a manager tagging a manager comes with a bitter taste especially when nobody else of the more neutral DT members decided to pull the trigger. @icopress isn't any bad as a manager because he left a red tag, not at all. In fact he does a good job, but the red tag after less than half a day(?) of the incident comes across as biased.  
legendary
Activity: 1456
Merit: 5874
light_warrior ... 🕯️
January 10, 2023, 11:43:18 AM
Hey man! I don't understand you. You leaving or removing a tag shouldn't depend on what other people do. It should depend on your criteria. Moreover, you are DT2, so I don't know what you are talking about.
I meant that I didn't think having a few red tags would help matters.  Wink
legendary
Activity: 1372
Merit: 2017
January 10, 2023, 11:15:49 AM
As for me, I will immediately remove my red tag as soon as one of the members of the DT tags julerz12.

Hey man! I don't understand you. You leaving or removing a tag shouldn't depend on what other people do. It should depend on your criteria. Moreover, you are DT2, so I don't know what you are talking about.

I've left him a neutral tag but I think a negative is acceptable. He himself has acknowledged that.

Red tag by icopress is fine everyone, he has all the right to make that judgment, kindly stop bickering about it.

legendary
Activity: 1456
Merit: 5874
light_warrior ... 🕯️
January 10, 2023, 10:47:30 AM
I created a new wallet for these campaigns since the previous Electrum wallet I had was not segwit, it's a legacy wallet, eats more fees.
For the last six months, in the mempool, I see approximately the same information about transaction fees, so I'm not sure that we are talking about big savings. In addition, when processing weekly payments, I very often manually significantly increase transaction costs so that users can immediately manage their funds.

How is it going to resolve the problem? Because of the tag you left, many campaign mangers will deny him joining their campaign, companies will deny him to give their projects, resulting he is not going to financially benefit from the forum. As per his explanation the forum is his only earning source. sucks but it's reality for him.
It's a delusion. I, like other managers, have repeatedly accepted users with red tags into the campaign, especially when the user has more green tags than red tags (we are not talking about tags associated with outright fraud). No self-respecting manager will remove high quality posters from a campaign just because they got a red tag, this rule is more like a deterrent factor for those accounts that generate spam (as far as I remember, you also participated in the signature campaign when you had a red tag ). As for me, I will immediately remove my red tag as soon as one of the members of the DT tags julerz12.
hero member
Activity: 1050
Merit: 681
January 10, 2023, 10:40:17 AM
To be very true, i am feeling anxious as most people use Electrum on the computer and trust it that our funds are safe. What else can we use if we do not have a hardware wallet?
A separate device or a linux pc with just your wallet and no other BS installed should do. Just dont use that device for any other thing.
Our security is in our hands, if we are reckless enough even the hardware wallet can get drained Tongue

I assume OP was/is using the same windows PC for browsing, downloading stuffs, holding funds, etc. which is not recommended at all. Too many malwares across the internet (smarter than your antivirus), you click a simple link and wont even know what problems are waiting for you ahead.
hero member
Activity: 2366
Merit: 793
Bitcoin = Financial freedom
January 10, 2023, 10:29:59 AM
I have been watching this drama since last night and I don't really want to blame OP for his mistake because everyone makes mistakes and sometimes it can ruin our entire progress which took years to build but as everyone said you holds the responsibility of paying it back to the company that is the only way to prove your not guilty.

Sometimes everything works against us and that's the life so don't lose your heart and think what you can do further and about your system I think its better to take back-up and flash the OS as soon as possible instead of looking for clipboard malware or something, and move whatever funds and any sensitive information stored should be moved to a new wallet and document.to ensure its safety.
legendary
Activity: 2310
Merit: 4085
Farewell o_e_l_e_o
January 10, 2023, 10:25:48 AM
The only apps that were running at the time were Adobe Photoshop, Telegram, Discord, and Google Chrome
Stop using Google Chrome and use Firefox instead. There is suspicion that Google Chrome likely is compromised these days. Stop using it, uninstall it from your device at the moment. Firefox and Tor browsers are better. If you don't use Google Chrome, you shouldn't use Brave browser too.

Quote
Also, just for everyone's info.
I am currently managing this bounty campaign wherein $4,000 USDT is (again) in my care, sitting on my Ledger wallet (Address)
I have already contacted several escrows including Hhampuz in hopes of being able to transfer these funds to them to act as a new official escrow.
It is your good move until the dust settles.

I notice that you did not change your forum account password. Why not?

And if you use a captcha bypass code, please change it to a new code too.

Changing them all now and after you make sure your device is clean, changing them all one more time.

I got your invitation to work with you in some projects and I appreciated it a lot so it is very bad for me to see this accident. Good luck and get well soon julerz12.
hero member
Activity: 2422
Merit: 875
January 10, 2023, 10:21:01 AM
Whatever happened, should not have happened. It is sad from the Campaign manager's point of view as he is in a difficult position to tell that he is speaking the truth and also from the campaigns as both companies will find themselves in such an awkward situation that they allocated funds for marketing but they are all gone before any marketing could be done.

[exactly the reason why I do not store any funds on Windows (and Mac) and will never ever do that.]

To be very true, i am feeling anxious as most people use Electrum on the computer and trust it that our funds are safe. What else can we use if we do not have a hardware wallet?
hero member
Activity: 826
Merit: 583
January 10, 2023, 09:46:47 AM
I have also already contacted Coinomize and Yo!Mix so I can partially pay out my debts to them caused by the stolen funds. It isn't much but I hope they'll appreciate it. It's the start of many, I promise.

that's what is expected, I'm sure you and several projects that are in a relationship have done good communication.
whether or not the collaboration continues, when you have completed your responsibilities. then everything will be done.
This incident will certainly disrupt your business. but I hope you and your family will always get support. I hope you have more luck.
legendary
Activity: 2072
Merit: 4265
✿♥‿♥✿
January 10, 2023, 09:29:37 AM

@icopress went for it and pulled the trigger.
 I am not sure that was the appropriate action to take here.





If you check julerz12's trust lists, the only user that doesn't trust him is icopress. Probably there were other incidents that led icopress to such conclusions. But as for the negative tag, it will not affect the decision of the managers in any way, in case julerz12 decides to participate in the subscription company. It's just that all managers are already aware of what happened, and one way or another, only they decide whether to accept this user or not. It has already been said many times that a negative mark can easily change in the event of a positive outcome. In the end, this is only a minimum compared to what those who actually lost money experienced. After all, everyone will agree that other people's money can never be compared with their own. And julerz12 lost other people's money, which one hurts more?
Pages:
Jump to: