Author

Topic: Looks like they may have found the MtGox crooks? (Read 2796 times)

member
Activity: 98
Merit: 10
What had the entire https story to do with DDoS?

It became a sub-thread.  However, I should not have responded further to any of it. 
sr. member
Activity: 294
Merit: 250
sites didn't even use https (come on .. duh!!!) until DDOS started probing and individuals started losing coins from their pool accounts
... wait, what?

Not replying to your edit here (nothing to say about it).  No pool that I know of [or of significance] used HTTPS until one person at Deepbit had over 100BTC stolen [which Tycho paid for I believe].  I seem to recall several other accounts [a very small % of all however] had their payout wallet address changed to point to somebody else thus ripping off miners who didn't notice the change. Tycho implemented HTTPS after that and BTCMine followed suit shortly there after.  Slush still hasn't done so to my knowledge.  BTC Guild did it pretty quickly after it went online.  I wasn't referring to MtGox if that is what you were thinking; they suffer[ed] from an entirely different set of problems.
What had the entire https story to do with DDoS?
member
Activity: 98
Merit: 10
EDIT:  I shouldn't follow the bait and I should simply have not responded.  Since I can't delete this post this is the best that I can do.
member
Activity: 98
Merit: 10
sites didn't even use https (come on .. duh!!!) until DDOS started probing and individuals started losing coins from their pool accounts
... wait, what?

Not replying to your edit here (nothing to say about it).  No pool that I know of [or of significance] used HTTPS until one person at Deepbit had over 100BTC stolen [which Tycho paid for I believe].  I seem to recall several other accounts [a very small % of all however] had their payout wallet address changed to point to somebody else thus ripping off miners who didn't notice the change. Tycho implemented HTTPS after that and BTCMine followed suit shortly there after.  Slush still hasn't done so to my knowledge.  BTC Guild did it pretty quickly after it went online.  I wasn't referring to MtGox if that is what you were thinking; they suffer[ed] from an entirely different set of problems.
sr. member
Activity: 454
Merit: 250
the taliban were behind mtgox..... their funding died with osama


FOR THE LULZ
sr. member
Activity: 294
Merit: 250
sites didn't even use https (come on .. duh!!!) until DDOS started probing and individuals started losing coins from their pool accounts
... wait, what?

EDIT: This very much reminds me of the guy on AboveTopSecret who claimed there were whole sockpuppet armies on the AnonOps IRC network as a lot of users were quitting at the same time (clearly lacking knowledge about how IRC worked, or he would have understood those moments were netsplits).
full member
Activity: 224
Merit: 100
In following with the original poster, I have done some research and found out who I think may very well be the leader of LulzSec.

http://www.thesmokinggun.com/file/june-10-2011-mugs?page=0

Does that guy look like the sort of nerd who would run LulzSec or what? Plus, drunk driving! Exactly the kind of irresponsible activity that a LulzSec leader would partake in.

Now, I'm not saying anything. I just posted a link. You either connect the dots or not. You decide. There is more here than meets the eye.  Wink

Edit: Just read that guardian article, Veldy... It just had a cool looking title, the actual article made a brief reference that it was possible that a former LulzSec associate who had gone rogue had done the hacking, and then never provided any reasoning for this and forgot about the point completely.
hero member
Activity: 809
Merit: 501
Always verify deals with me through my public key!
If it were a rogue luzsec....think LulzSec would nail em one way or another and seek to protect the happy go lucky corporate hackers are we image they have built for themselves.

Look at the basics......
Don't know for how long hacker had access to Gox....maybe a week or two.
After the Attack, hacker drops the db on to the web....why....make the evidence of guilt so widespread ass is covered.
Hacker makes no "Hahaaa I reaped your dudz...lulz!!11!" announcement.

Sheer speculation denotes that the Hacker is an ultra Serious European(possible German) named Simon in the 25-30 demographic who listens to Everclear and has sadistic tendencies.
member
Activity: 98
Merit: 10
I fail to see any reference to any sources in that article. It sounds a lot like Guardian either made up the link on the spot, or semi-quoted a random Bitcoin forum post that had no supporting evidence.

That article is older than the FOX article.  I could be wrong, but the speculation that LulsZec or other specific hacker group was involved was not from here [I can't claim to have read every post in the bitcoin forums]. 

I can say that bitcoin related sites were run by profit motivated operators, so much so that it was at the expense of security (still is with Slush excluding the massive IP blocking his routers or machines must be burdened with).  In spite of the huge sums of money or bitcoins, sites didn't even use https (come on .. duh!!!) until DDOS started probing and individuals started losing coins from their pool accounts.  Then there is MtGox, the largest target of them all, just waiting to be hit and clearly running a very primitive interface that barely keeps up with the load .. in fact, often didn't.  If you were the FBI, Interpol or any other law enforcement agency looking to catch a hacker group in action, no better trap could have been laid; and they didn't even have to do any work; just watch and wait.

Is there a connection between the two events?  Who knows?  The FOX author clearly thought there might be.

My point was really less about the subject line about who did it.  More about bitcoin, popularity, press and scrutiny [and usefulness, at least once as a means to catch hackers in action red handed].  So, connecting the dots for the people that don't want to; it is VERY LIKELY that international law enforcement likes it here.  Certainly all this comes on the heals of some quite public scrutiny by two [fairly clueless] US Senators.

Keep your nose clean, keep on the up side and stick to HONEST bitcoin business and you will be fine.

Like I said, you decide. 
member
Activity: 126
Merit: 10
I fail to see any reference to any sources in that article. It sounds a lot like Guardian either made up the link on the spot, or semi-quoted a random Bitcoin forum post that had no supporting evidence.

Yeah, that guardian article reads like bullshit 101. It's really only one step away from the conspiracy nut posts here on this forum blaming the CIA / mossad for the hack. The whole article could be rewritten substituting rogue CIA agent for rogue lulzsec member and it would be similarly supportable.

Let's be real clear: there is absolutely zero evidence that any law enforcement agency is even looking into the mt. gox intrusion. Let alone has any suspects.
sr. member
Activity: 294
Merit: 250
FOX article wondered about a tie or not, right?

How about this?

http://www.guardian.co.uk/technology/2011/jun/22/lulzsec-rogue-suspected-of-bitcoin-hack

Bitcoin is an alluring target for a hacker and a great place to set a trap for somebody looking for a hacker.
I fail to see any reference to any sources in that article. It sounds a lot like Guardian either made up the link on the spot, or semi-quoted a random Bitcoin forum post that had no supporting evidence.
member
Activity: 98
Merit: 10
FOX article wondered about a tie or not, right?

How about this?

http://www.guardian.co.uk/technology/2011/jun/22/lulzsec-rogue-suspected-of-bitcoin-hack

Bitcoin is an alluring target for a hacker and a great place to set a trap for somebody looking for a hacker.
full member
Activity: 224
Merit: 100
Yeah, all that nonsense was just sensationalist reporting. They spelled Ryan Cleary's name wrong, and failed to mention that the police never said anything about him being involved in Lulzsec, and in fact later released further info that helped disprove that theory even further. Any supposed connection aside from Cleary running a fansite chat for lulzsec was solely reporters extrapolating.

And even further, there is literally no reason to connect.

Quote from: Fox
It was unclear what -- if anything at all -- connected the raid and the FBI's ongoing investigation of the hackers.
I lol'd. What kind of reporter puts a sentence outlining the major flaw in the article at the end of the article?
sr. member
Activity: 291
Merit: 250
Bit of a stretch to associate this article with the mtgox attack
member
Activity: 126
Merit: 10
FOX was wrong anyway (quelle surprise!) the DigitalONE server seizures related to an invetigation of a scareware fake AV distribution scheme.

http://blog.instapaper.com/post/6830514157

Why on earth would you think the only server seizure you hear about in the news relates to the thing you're all worried about? Shit like this goes on every day.
member
Activity: 98
Merit: 10
I believe it means the FBI raided a datacenter and confiscated some servers. This actually happens quite often, so could you please enlighten us on how you made the jump in logic to deduct that this had something to do with Mt. Gox being hacked?

I just posted a link.  You either connect the dots or not.  Like I said, you decided.  There is more there than meets the eye.
newbie
Activity: 11
Merit: 0
I believe it means the FBI raided a datacenter and confiscated some servers. This actually happens quite often, so could you please enlighten us on how you made the jump in logic to deduct that this had something to do with Mt. Gox being hacked?
sr. member
Activity: 252
Merit: 251
Where MTux lives wouldn't have anything to do with who issued the warrant/raided the hackers, the servers are located in the US

No, Mt. Gox servers are located in Japan. Mark Karpeles also owns his hosting company, Kalyhost.
Far as I know, Tradehill uses it as well.
full member
Activity: 168
Merit: 100
I wonder what will happen to the 19 year old kid from the UK. He actually lives in the same town as my girlfriend is from.

I bet the UK government won't let the US take him, even though that group accessed US security systems as well as banking and Fox, I believe.

I bet he's sitting the a police cell, crapping himself at the thought of being in a US prison, the bum bitch of some neo nazi type, lol

sr. member
Activity: 437
Merit: 250
If Fox is right about them being with LulzSec, then they had nothing to do with MtGox, LulzSec wasn't behind MtGox

Quote
Huh?  This has nothing to do with MtGox nor does the FBI since it is based in Japan. 

Where MTux lives wouldn't have anything to do with who issued the warrant/raided the hackers, the servers are located in the US, but the hackers could live anywhere in the world, or theoretically off of it, but I doubt anyone on the ISS would be hacking for long before being discovered heh...
full member
Activity: 140
Merit: 100
Huh?  This has nothing to do with MtGox nor does the FBI since it is based in Japan. 
newbie
Activity: 39
Merit: 0
This has nothing to do with MtGox.

They took him cuz he hosted the IRC for the lulzsec hacking group.
Jump to: