Topic: LocalBitCoins.Com Site Down? - page 2. (Read 4009 times)

A reasonable encryption strategy is to be able to decrypt with a password of at least 12 (more like 15 - 20) characters for access that lasts a few minutes, or a much longer password (40 characters or more) for access that lasts an hour or two.  If we assume that the hacker grabbed a copy of enough information to be able to start an exhaustive search for the password, LBC knows how long we can expect his search to go on before he finds it.

If his search is ever successful, what data will be compromised?

Is there a list of BTC addresses that LBC can provide to miners, asking them to filter out transactions from them until further notice?

A protocol for that kind of lock would be nice. I would honor it if I were mining. Just a simple request "please lock this BTC addy until further notice," signed with the address would do. It could be broadcast in any transaction and thereby get to all miners.

Ahh, of course if it could be unlocked with a signature from the same address, it would be kind of useless.  But suppose it had to be unlocked with a signature from the same address that locked it?  So the attacker would need that external address' private key too.

One of my customers and I are both now unable to reach the localbitcoins website.  There is no info about this on their blog either.

Saturday, May 3, 2014
Attack against LocalBitcoins infrastructure 3.5.2014
LocalBitcoins received a very dangerous attack against the site infrastructure on Saturday 3.5.2014.
For now

    All user data and Bitcoins are safe;
    The site will be down for a while as the system is being rebuilt

Details
LocalBitcoins hosting provided received a request to restart the LocalBitcoins.com website server and give access to the server console (root) on Sat May 3 13:32:27. LocalBitcoins team did not initiate this request. For now, it looks like the request was made using spoofed email addresses and other weakness in the hosting provider support system.

    LocalBitcoins team was alerted about the abnormal activity when the hosting provider restarted the server.
    The attacker gained a root access to the server for ~40 minutes before the attacker was kicked out and the server shutdown.
    All data on the website server is encrypted. Manual actions are needed to make this data readable, so the attacker could not gain access to the data even when having a server console access.

It is very unlikely that the attacker gained access to any data;  LocalBitcoins is still performing full investigation on the matter.

    Bitcoins in hot wallet and cold wallet are safe, as LocalBitcoins runs its bitcoind and wallets on a separate server.
    LocalBitcoins team has started to rebuild the website server on fresh hardware.

LocalBitcoins team will make further announcements when the investigation proceeds and the site becomes available again.  We expect to spend at least 24 hours on this. LocalBitcoins team apologizes the issues the downtime may cause to the users.



Posted by Andrei Zillo at 10:17 PM

One of my customers and I are both now unable to reach the localbitcoins website.  There is no info about this on their blog either.

Twitter Updates here:

https://twitter.com/LocalBitcoins

Looks like they are moving to Swiss-based servers, should be back up in a day or so.