List of stolen accounts | Bitcointalksearch.org

linaross

member

Activity: 138

Merit: 15

Quote from: Lutpin on October 15, 2017, 02:15:45 PM

Quote from: coolcoinz on October 15, 2017, 01:54:23 PM

-would give them a temporary negative trust until the account is given back to the rightful owner

This already happens since some DT users (KWH for example) monitor the Meta section and tag accounts that have been reported to be hacked with proof.

Which also solves the other two points

Quote from: coolcoinz on October 15, 2017, 01:54:23 PM

-wouldn't allow them in sig campaigns / wouldn't pay them if they're already in
-wouldn't get scammed by them

No reputable signature campaign would accept/pay someone with overall negative trust.
Potential tradepartners should always check the feedback of an account they trade with, and would then notice the warning.

Imo, such a list would only be a waste of time and energy.

if the hacked account is banned now, is the hacker still able to recive privat messages ? mine was hacked after the 2.10. this year( my last post was at that date) . i tryed to lock in around the 18.10 and reported the problem then i realiced someone was useing my acount. posted (from 13.10.on) in malysian or indonesian language. i saw that the trust went negative and mods told me the acount is now reported as hacked. and banned. but they wont give it back to me or erase it (what i would perfer). so my worry is : is the hacker still able to take advantage of the legendary status of the acount.

dillpicklechips

hero member

Activity: 994

Merit: 507

Quote from: Joel_Jantsen on October 15, 2017, 02:07:46 PM

Sorry if I'm missing out on anything but does all this hacking stuff happening lately has some particular reason behind it ? Any conclusions drawn yet ?

How did the accounts get hacked in the first place ? Like is there any pattern or something common between all the hacked accounts ? Please link me to relevant stuff if you can.

Quote from: linaross on October 31, 2017, 05:24:57 AM

is there any investigation how those hackers did it ?

Wayback 2015, if I remember correctly, there had been a database hack in bitcointalk where sensitive information had been up publicly and some are sold or up for auction in deepweb. After the incident, the forum had tighten the security and warned the users for possible hacks so they advise the users to change their passwords. In some cases, accounts who have not been accessed since that day was locked.

But why are they trying to recover it years later? Here's my guess: Bitcoin has grown popular lately so they decided to go back and start here in the forum where they had formerly registered but unfortunately it was hacked but since they had discovered that there are signature campaigns paying them which the rates are higher base on your rank so they decided to give it a shot and try to recover it.

P.S. You can try searching for it for more info.

P.P.S. I am not saying "all" but rather "most."

Quote from: linaross on October 28, 2017, 03:44:57 AM

Quote from: maeusi on October 27, 2017, 03:58:51 AM

There are less hacked accounts than in the past. Security features seem to be effective.
When email or password is changed, notification with locking link is sent to original email account to owner.
Read also, that old accounts with long period of inactivity are locked now.
As we can see on meta is, that those security features are working well.

were those security features aplyed befor oktober the secont this year? cose my acount was hacked after that.
and i got no email with a locked link to my originaly email adress.

The answer was provided by Welsh indirectly. If you read the link, you'll see that it was implemented on October 18.

linaross

member

Activity: 138

Merit: 15

is there any investigation how those hackers did it ?

Gosha.day

newbie

Activity: 13

Merit: 0

Corn your email password
Regular cleaning of cookie

Welsh

staff

Activity: 3248

Merit: 4110

Quote from: kenkoy on October 30, 2017, 12:16:30 AM

May i ask if this security feature is still in place now? When a hacker changed the registered emaill address, an confirmation email will be sent to the original email registered on this forum. May i ask also if the admin has a list of BTC address of all users? so when the hacker changed the btc add, the recovery process will be easy.

When an account changes it's password a email is sent to the email on the account with a link which can be clicked to recover the account within 14 days of changing the password. (https://bitcointalksearch.org/topic/m.23164732)

Admins probably don't store Bitcoin addresses of users, because lets face it they change so often. What administrators can do is check whether a Bitcoin address has been edited recently and investigate whether that was after the alleged hack.

kenkoy

full member

Activity: 126

Merit: 100

Quote from: maeusi on October 27, 2017, 03:58:51 AM

There are less hacked accounts than in the past. Security features seem to be effective.
When email or password is changed, notification with locking link is sent to original email account to owner.
Read also, that old accounts with long period of inactivity are locked now.
As we can see on meta is, that those security features are working well.

May i ask if this security feature is still in place now? When a hacker changed the registered emaill address, an confirmation email will be sent to the original email registered on this forum. May i ask also if the admin has a list of BTC address of all users? so when the hacker changed the btc add, the recovery process will be easy.

Matt9301

legendary

Activity: 1554

Merit: 1008

My account was involved few weeks ago. Fortunately I managed to retrieve the account with the help of admins. I do not know what happened, my mail was deleted from account and I was unable to retrieve login information or password change..

Welsh

staff

Activity: 3248

Merit: 4110

Quote from: coolcoinz on October 15, 2017, 01:54:23 PM

With all the hacking happening lately and time it takes to recover the accounts such a list could be useful. Other users would know which accounts were stolen and:
-wouldn't allow them in sig campaigns / wouldn't pay them if they're already in
-would give them a temporary negative trust until the account is given back to the rightful owner
-wouldn't get scammed by them

I think we should do what we can to make it as unprofitable for the hackers as possible. What do you think?

With the amount of accounts being hacked then this would likely have to be a community maintained list. Plus, not all accounts are made public if they have been hacked or not. The person who was hacked can always contact the signature campaign manager and let them know their account is compromised with a signed message to verify.

Anyone who has lost their account can get it banned provided they have sufficient proof whilst waiting for it to be returned to prevent any scams.

Johnzky

member

Activity: 616

Merit: 30

Quote from: actmyname on October 27, 2017, 02:41:11 AM

Quote from: linaross on October 27, 2017, 02:29:36 AM

but are there any info how they can hack accounts ?
mine was hacked too.
how could they change the email adress?

Email address can be changed simply with the password of the account, while logged-in.

sorry I got lost,what do you mean changed email simpkybwith the password while logged in?would you pls elaborate so we could have an idea how easy to changed the email address that the only security we had in our account,,thank you for the response..

Zackgeno96

hero member

Activity: 1778

Merit: 520

Account hacking incidents have been already decreased after the introduction of new security features. Even if someone manage to hack the account, it will be useless for them as the original account owner is able to lock the account. These account security features should have been introduced earlier in order to make this forum hackers free.

linaross

member

Activity: 138

Merit: 15

Quote from: maeusi on October 27, 2017, 03:58:51 AM

There are less hacked accounts than in the past. Security features seem to be effective.
When email or password is changed, notification with locking link is sent to original email account to owner.
Read also, that old accounts with long period of inactivity are locked now.
As we can see on meta is, that those security features are working well.

were those security features aplyed befor oktober the secont this year? cose my acount was hacked after that.
and i got no email with a locked link to my originaly email adress.

Lamberialako

newbie

Activity: 35

Merit: 0

Quote from: actmyname on October 27, 2017, 02:41:11 AM

Quote from: linaross on October 27, 2017, 02:29:36 AM

but are there any info how they can hack accounts ?
mine was hacked too.
how could they change the email adress?

Email address can be changed simply with the password of the account, while logged-in.

yes, my aaccount was stolen too... and nothing happened. My account is online, but it use the hacker..
my friend account account was stolen too.
please reseting password to the original email! My hacked username: Tasunko

maeusi

sr. member

Activity: 462

Merit: 254

There are less hacked accounts than in the past. Security features seem to be effective.
When email or password is changed, notification with locking link is sent to original email account to owner.
Read also, that old accounts with long period of inactivity are locked now.
As we can see on meta is, that those security features are working well.

actmyname

copper member

Activity: 2562

Merit: 2504

Spear the bees

Quote from: linaross on October 27, 2017, 02:29:36 AM

but are there any info how they can hack accounts ?
mine was hacked too.
how could they change the email adress?

Email address can be changed simply with the password of the account, while logged-in.

linaross

member

Activity: 138

Merit: 15

but are there any info how they can hack accounts ?
mine was hacked too.
how could they change the email adress?

coolcoinz

legendary

Activity: 2604

Merit: 1102

Quote from: Lutpin on October 15, 2017, 02:15:45 PM

Imo, such a list would only be a waste of time and energy.

I thought it would be a good idea to throw all users that are waiting for their accounts to be returned into a single thread. I've read it can take a week or two before staff handles a request, which is a long time. Enough for the hacker to make some money, some damage, or both.
I agree it would take a lot of time and effort, probably more than it's worth, because the accounts that would be returned to their owners would have to be deleted from the thread = constant management.

actmyname

copper member

Activity: 2562

Merit: 2504

Spear the bees

Quote from: Joel_Jantsen on October 15, 2017, 02:07:46 PM

Sorry if I'm missing out on anything but does all this hacking stuff happening lately has some particular reason behind it ? Any conclusions drawn yet ?

Just some simple standard deviation. After all, accounts are hacked all the time and people do make threads... but just in this particular time period, a lot more people notice it (or attempt to recover their accounts {and it could be slightly because they see threads about hacked accounts and follow the format} from the hacked status) and hence post more often in Meta.

Lutpin

copper member

Activity: 1876

Merit: 1874

Goodbye, Z.

Quote from: coolcoinz on October 15, 2017, 01:54:23 PM

-would give them a temporary negative trust until the account is given back to the rightful owner

This already happens since some DT users (KWH for example) monitor the Meta section and tag accounts that have been reported to be hacked with proof.

Which also solves the other two points

Quote from: coolcoinz on October 15, 2017, 01:54:23 PM

-wouldn't allow them in sig campaigns / wouldn't pay them if they're already in
-wouldn't get scammed by them

No reputable signature campaign would accept/pay someone with overall negative trust.
Potential tradepartners should always check the feedback of an account they trade with, and would then notice the warning.

Imo, such a list would only be a waste of time and energy.

Meuh6879-1

newbie

Activity: 14

Merit: 0

Quote from: coolcoinz on October 15, 2017, 01:54:23 PM

What do you think?

after have reading ... i prefer a complet switch on the BETA ( beta.bitcointalk.org ).
i prefer ON/OFF solution when security is involved.

Joel_Jantsen

legendary

Activity: 1848

Merit: 1308

Get your game girl

Quote from: coolcoinz on October 15, 2017, 01:54:23 PM

With all the hacking happening lately and time it takes to recover the accounts such a list could be useful. Other users would know which accounts were stolen and:
-wouldn't allow them in sig campaigns / wouldn't pay them if they're already in
-would give them a temporary negative trust until the account is given back to the rightful owner
-wouldn't get scammed by them

Sorry if I'm missing out on anything but does all this hacking stuff happening lately has some particular reason behind it ? Any conclusions drawn yet ?

Quote from: coolcoinz on October 15, 2017, 01:54:23 PM

I think we should do what we can to make it as unprofitable for the hackers as possible. What do you think?

How did the accounts get hacked in the first place ? Like is there any pattern or something common between all the hacked accounts ? Please link me to relevant stuff if you can.

Topic: List of stolen accounts (Read 908 times)