My blockchain.info account got hacked.

xcapator

sr. member

Activity: 322

Merit: 252

Here I Am !!

Quote from: yakuza699 on August 21, 2014, 07:53:46 AM

Quote from: lapah on August 21, 2014, 07:37:18 AM

If you didn't use 2FA then what advice were you giving to others on how to keep their Bitcoin safe?

I never give these kind of advices why would i need to say: use 2FA with your online wallet in the middle of saying print your priv key and hide where you think it's safe (hodl it codl). Thats beeing said it was my hot wallet where i stored more then i should, i didn't used 2FA cause i need to access my wallet many times a day and scanning the QR(or reading emails/sms's) code every few minutes is is stupid keeping mind that i should do it many times.

You dont need to. During sign-in, you can tell 2FA not to ask for a code again on that particular computer. From then on, that computer will only ask for your password when you sign in.

You'll still be covered, because when you or anyone else tries to sign in to your account from another computer, a verification code will be required.

Mobius7

hero member

Activity: 532

Merit: 500

Have you made any backup before, and did you you store the backup unencrypted on some other places (USB, email, dropbox, google drive, etc)?

yakuza699

hero member

Activity: 935

Merit: 1002

Quote from: Light on August 21, 2014, 07:40:28 AM

There has been malware in the past which changes the address the user sends to at the last minute so you don't actually know till the tx gets sent off so you might want to check for that. That being said, in all likelihood you probability you had your details stolen/phished so if I were you I would learn the lesson and run a non-online wallet that is encrypted. If you want to be more paranoid just buy a raspberry pi and use that with Armory/Electrum and sign your transactions offline - significantly safer. Just need to worry about physical security.

Mmh thanks for the info didn't knew that but i didn't sent the fund they were just resting in the wallet for past few days.

Quote from: lapah on August 21, 2014, 07:37:18 AM

You should always take advantage of two factor. I don't think the few seconds it takes to type or copy and paste a short code is much of a hassle and those few seconds would've probably saved your funds. The only time I ever see people's bc accounts getting hacked are when they don't have 2 factor set up.

Well i guess you are right, will use 2FA next time i store btc on a website.

Ludi

sr. member

Activity: 274

Merit: 250

Quote from: yakuza699 on August 21, 2014, 07:53:46 AM

Quote from: lapah on August 21, 2014, 07:37:18 AM

If you didn't use 2FA then what advice were you giving to others on how to keep their Bitcoin safe?

I never give these kind of advices why would i need to say: use 2FA with your online wallet in the middle of saying print your priv key and hide where you think it's safe (hodl it codl). Thats beeing said it was my hot wallet where i stored more then i should, i didn't used 2FA cause i need to access my wallet many times a day and scanning the QR(or reading emails/sms's) code every few minutes is is stupid keeping mind that i should do it many times.

You should always take advantage of two factor. I don't think the few seconds it takes to type or copy and paste a short code is much of a hassle and those few seconds would've probably saved your funds. The only time I ever see people's bc accounts getting hacked are when they don't have 2 factor set up.

yakuza699

hero member

Activity: 935

Merit: 1002

Quote from: vm1990 on August 21, 2014, 04:18:16 AM

i feel sorry for you but the most common and likely ways this happens is either
1. bruteforce attack on your password.
2.malware or spyware on your computer
3.you ended up at a clone site

3 i don't think so but that may be possible but 2 is the thing that i think about most.

Quote from: tsoPANos on August 21, 2014, 05:18:45 AM

Sorry to hear that Angry

I did a little investigation and from what I see it looks like someone gambled your coins on SatoshiDice. Sad

How pathetic... Stealing coins and gambling them...

Thanks for your investigation looks like i will not get my coins back unless satoshidice would return them(i doubt that).

yakuza699

hero member

Activity: 935

Merit: 1002

Quote from: lapah on August 21, 2014, 07:37:18 AM

If you didn't use 2FA then what advice were you giving to others on how to keep their Bitcoin safe?

I never give these kind of advices why would i need to say: use 2FA with your online wallet in the middle of saying print your priv key and hide where you think it's safe (hodl it codl). Thats beeing said it was my hot wallet where i stored more then i should, i didn't used 2FA cause i need to access my wallet many times a day and scanning the QR(or reading emails/sms's) code every few minutes is is stupid keeping mind that i should do it many times.

Light

hero member

Activity: 742

Merit: 502

Circa 2010

There has been malware in the past which changes the address the user sends to at the last minute so you don't actually know till the tx gets sent off so you might want to check for that. That being said, in all likelihood you probability you had your details stolen/phished so if I were you I would learn the lesson and run a non-online wallet that is encrypted. If you want to be more paranoid just buy a raspberry pi and use that with Armory/Electrum and sign your transactions offline - significantly safer. Just need to worry about physical security.

lapah

full member

Activity: 121

Merit: 100

If you didn't use 2FA then what advice were you giving to others on how to keep their Bitcoin safe?

yakuza699

hero member

Activity: 935

Merit: 1002

Quote from: BitsBitsBits on August 21, 2014, 04:03:55 AM

ps: any irl person that could've gotten to your account details? Have you thought if that is a possibility?

Thanks. But i don't think that has happened.

Quote from: micky123 on August 21, 2014, 04:11:47 AM

Sorry to hear about what happened. Did you have 2 FA enabled on you account? If it was, was it Google Authenticator? I know they have an option to have a 2FA email, which is still not very secure as your email account is normally the first to get hacked!

No i didn't enabled 2FA and i don't think that i even verified my bc.i account.

Quote from: micky123 on August 21, 2014, 04:11:47 AM

These hackers and spammers are a plague on this earth., why cant they just earn their bread honestly?

Spammers are non skill, hackers are opposite of it, some of them are very talented and are able to suck things as this one.

Quote from: Watoshi-Dimobuto on August 21, 2014, 04:16:06 AM

Do you use java? Have you opened your blockchain.info through a link? Do you recently install a software in your pc?

Everyone uses java (i guess) but no i havent installed any software in past two weeks.

tsoPANos

hero member

Activity: 602

Merit: 500

In math we trust.

Sorry to hear that Angry

I did a little investigation and from what I see it looks like someone gambled your coins on SatoshiDice. Sad

How pathetic... Stealing coins and gambling them...

https://blockchain.info/tx/d60cccba4276771061849f3db79fea6209ddd89f8f369c095ee5fb7a2b28ad68
-->>>
https://blockchain.info/address/194ZtJTvpTvQb6qHLqq4gQcAEjmipjpZxJ
-->>>
https://blockchain.info/tx/af900e78197e4786ba1b426123e6cf9fce2b2ad2c17231f39a58ce01fe7bdc8c
-->>>
https://blockchain.info/address/1Dq7nvxG1enbD1CkpVGr42JcjQELRVYfoz
-->>>
https://blockchain.info/tx/ddeab647c228edda8d5fdfde7cf8dcaaf9d6cba2357ce6a3c67c6d7f732d55e0

vm1990

legendary

Activity: 1540

Merit: 1002

i feel sorry for you but the most common and likely ways this happens is either
1. bruteforce attack on your password.
2.malware or spyware on your computer
3.you ended up at a clone site

2 and 3 are most likely theae days.
run a full sweep of your computer with both a good antivirus and malwarebytes
check the URL every single time you log into blockchain.info. make sure its correct and in firefox make sure the green bars next to it

and most important of all never go to a URL you dont fully trust, even visiting a website can give you a virus spyware or adware.

Watoshi-Dimobuto

hero member

Activity: 840

Merit: 524

Yes!

Do you use java? Have you opened your blockchain.info through a link? Do you recently install a software in your pc?

micky123

legendary

Activity: 1022

Merit: 1005

Quote from: yakuza699 on August 21, 2014, 03:33:26 AM

First of all i want to say hello to everyone. Yesterday i joined luckyb.it chat as usually and i saw 4x0.4 losses in a row so i was like "Lets try my luck" i went to my blockchain.info account, signed in, but the balance was for some reason not syncing so i quickly pressed on the send tab and went to chat again, after 2 mins i tried to send 0.005BTC(yes small bet cause i am not a gambler) to luckyb.it's green and then bc.i was like there is not enough btc adjust your amount i was like "WT*!" went to transaction history tab and saw that all the fund went to this address 194ZtJTvpTvQb6qHLqq4gQcAEjmipjpZxJ

After all the posts that i made saying tips for other people on how to make your coins safe, i got hacked myself(what an irony). The amount of what i got hacked isn't terribly big (0.31BTC) but now my biggest question is, how he did it?If you could bring me all of my coins i would give you 90% of the 0.31BTC If hacker is reading this he is eligible for this too just give me 10% and tell me how you did it. Now that i lost most of my coins any tips of how can i make that back in one month?

Tx id: blockchain.info/tx/d60cccba4276771061849f3db79fea6209ddd89f8f369c095ee5fb7a2b28ad68

Tips appreciated 1FnHPWNjXbaS8k7jxkHBJbzBNPc6ymKnwA (This time i hodl it codl, address was NOT generated on this PC and it is not blockchain.info wallet)

Hi Brother,

Sorry to hear about what happened. Did you have 2 FA enabled on you account? If it was, was it Google Authenticator? I know they have an option to have a 2FA email, which is still not very secure as your email account is normally the first to get hacked!

These hackers and spammers are a plague on this earth., why cant they just earn their bread honestly?

BitsBitsBits

full member

Activity: 168

Merit: 100

Sorry to hear about your account getting hacked, you should always check everything you install or what pc you are using (with what you are connected to the internet and if you are behind any firewalls or have any anti-virus installed).

Also this is posted in the wrong section, as far as I know.

ps: any irl person that could've gotten to your account details? Have you thought if that is a possibility?

yakuza699

hero member

Activity: 935

Merit: 1002

First of all i want to say hello to everyone. Yesterday i joined luckyb.it chat as usually and i saw 4x0.4 losses in a row so i was like "Lets try my luck" i went to my blockchain.info account, signed in, but the balance was for some reason not syncing so i quickly pressed on the send tab and went to chat again, after 2 mins i tried to send 0.005BTC(yes small bet cause i am not a gambler) to luckyb.it's green and then bc.i was like there is not enough btc adjust your amount i was like "WT*!" went to transaction history tab and saw that all the fund went to this address 194ZtJTvpTvQb6qHLqq4gQcAEjmipjpZxJ

After all the posts that i made saying tips for other people on how to make your coins safe, i got hacked myself(what an irony). The amount of what i got hacked isn't terribly big (0.31BTC) but now my biggest question is, how he did it?If you could bring me all of my coins i would give you 90% of the 0.31BTC If hacker is reading this he is eligible for this too just give me 10% and tell me how you did it. Now that i lost most of my coins any tips of how can i make that back in one month?

Tx id: blockchain.info/tx/d60cccba4276771061849f3db79fea6209ddd89f8f369c095ee5fb7a2b28ad68

Tips appreciated 1FnHPWNjXbaS8k7jxkHBJbzBNPc6ymKnwA (This time i hodl it codl, address was NOT generated on this PC and it is not blockchain.info wallet)

Topic: My blockchain.info account got hacked. (Read 1302 times)