Pages:
Author

Topic: My coins got stolen (Read 2259 times)

hero member
Activity: 574
Merit: 500
Growcoin Chief
March 25, 2014, 08:59:25 PM
#33
BTW! I got email back from cryptorush... they gave me a few IP adresses of "people" who logged in my account the last month...



Ip Address: 183.171.163.28
First Login: 2014-03-09 16:56:38

Ip Address: 183.171.164.255
First Login: 2014-03-19 17:09:54

Ip Address: 183.171.171.133
First Login: 2014-03-19 18:20:42

Ip Address: 183.171.169.185
First Login: 2014-03-21 20:17:32

Ip Address: 183.171.173.147
First Login: 2014-03-22 05:59:38


This motherfucker stole my coins... As you can see this "person" logged in my account once in a while... probably to check my balance... mofo...


The last one is when he took my money...

This actually proves Cryptorush lack of security features... you cant even see the last IP adress that logged in on your dashboard...
Then it would ring a bell to me the first time i would see it...  Undecided

This is an honest question, I'm not trolling. What makes you think all these are the same person?

Caus they are almost the same IPS.. coming out of the same country, By the same provider...

I cant imagine there are multiple people hacking my account..
hero member
Activity: 560
Merit: 500
March 25, 2014, 05:48:35 PM
#32
BTW! I got email back from cryptorush... they gave me a few IP adresses of "people" who logged in my account the last month...



Ip Address: 183.171.163.28
First Login: 2014-03-09 16:56:38

Ip Address: 183.171.164.255
First Login: 2014-03-19 17:09:54

Ip Address: 183.171.171.133
First Login: 2014-03-19 18:20:42

Ip Address: 183.171.169.185
First Login: 2014-03-21 20:17:32

Ip Address: 183.171.173.147
First Login: 2014-03-22 05:59:38


This motherfucker stole my coins... As you can see this "person" logged in my account once in a while... probably to check my balance... mofo...


The last one is when he took my money...

This actually proves Cryptorush lack of security features... you cant even see the last IP adress that logged in on your dashboard...
Then it would ring a bell to me the first time i would see it...  Undecided

This is an honest question, I'm not trolling. What makes you think all these are the same person?
newbie
Activity: 42
Merit: 0
March 25, 2014, 05:37:45 PM
#31
the ip : 118.101.200.144 seems to use this gmail: [email protected] , may be revelant
legendary
Activity: 1148
Merit: 1001
Official Zeitcoin community ambassador
March 25, 2014, 05:35:52 PM
#30
You should change all of your passwords, including the ones you use for logging on to your computer, your email, social media... everything. Make them all unique. Then, for the love of pete... don't store your coins at an exchange!! Keep them in your wallet, encrypt your wallet, and store your wallet offline when you aren't using it.
newbie
Activity: 42
Merit: 0
March 25, 2014, 05:30:45 PM
#29
you should get your computer checked
hero member
Activity: 574
Merit: 500
Growcoin Chief
March 25, 2014, 04:48:49 PM
#28
WTF!!!!!!

TODAY!


Hi ,

An attempt was made to log in to MintPal with invalid credentials, the details of which are below. Failed login attempts may be a sign of someone trying to gain unauthorised access to your account.

IP Address: 118.101.200.144

Please be aware that three consecutive failed logins will result in your account being disabled.

Thanks,
MintPal




Oke.... so wtf am i doing now... just make complete new accounts?? advice pls  Embarrassed
hero member
Activity: 574
Merit: 500
Growcoin Chief
March 25, 2014, 03:47:10 PM
#27
So where do you reckon my coins got transferred too?

They exchanged all of my altcoins.. even the stupid ones (Panda etc.) for btc. and withdrew them... Pls explain yourself LOL  Smiley
newbie
Activity: 42
Merit: 0
March 25, 2014, 01:37:15 PM
#26
I dont think any of the sites did steal your coins cus the address you mentioned has balance on it and only $1000 spent
legendary
Activity: 1708
Merit: 1035
March 25, 2014, 01:25:58 PM
#25
Thanks, yeah, I have a Cryptsy account but rarely use it (they don't have the right coins Wink, so I'd forgotten about that.

Now that you can get 3% cashback buying Walmart Gyft cards with Bitcoin I'm going to have to get a smartphone sooner or later anyway, which should take care of my query about 2-factor authentification.
sr. member
Activity: 314
Merit: 250
March 25, 2014, 12:14:40 PM
#24
Question regarding 2-factor authentification: Are there ways to do it with something other than a cell phone? (I don't carry one on me.) Can it be done with an email address instead of a cell #, for example? I had the impression that it was all being done via phone #'s, but correct me if I'm wrong.

I had most of my BTC in Vircurex, and now I see this about Cryptorush where most of the rest is stowed, and am thinking, what good is the robustness of bitcoin (etc) protocols if the exchanges are such a mess? Wallets are fine and dandy, but exchanges are hard to avoid if you are actively trading.

Cryptsy routinely requires you to confirm withdrawals using email, but they offer 2-factor authentification in addition.

I think 2-factor authentification needs to be on a separate device in case a hacker gets your email password, but maybe I'm wrong.
member
Activity: 91
Merit: 10
March 25, 2014, 12:09:39 PM
#23
Hi all!

This morning, I found my cryptorush account empty! thank god only coins worth 0.12 btc was in there...

Now this thought came up in my head... How did they do that?! LOL

Thinking back I always set different passwords on every exchange... so how the hell did they do that! Tongue

And then i remembered one douchebag kind of exchange named COINMARKET.IO... For some reason I used one of my passwords twice... on coinmarket and cryptorush at the time... though I changed that after a few days on coinmarket...

Then looking into the IP info it all tracks back to Finland.. wasnt the coinmarket guy in that region?  Roll Eyes

I'm not saying COINMARKET.IO actually "hacked" my Cryptorush.in account... But having said all this... it just cant be a small coincedence, since the password issue described above...


So just be warned people! Maybe this piece of shit coinmarket.io guy takes it one step further!




Barry

Feel sad about you, man. Good luck.
legendary
Activity: 1708
Merit: 1035
March 24, 2014, 01:08:59 PM
#22
Question regarding 2-factor authentification: Are there ways to do it with something other than a cell phone? (I don't carry one on me.) Can it be done with an email address instead of a cell #, for example? I had the impression that it was all being done via phone #'s, but correct me if I'm wrong.

I had most of my BTC in Vircurex, and now I see this about Cryptorush where most of the rest is stowed, and am thinking, what good is the robustness of bitcoin (etc) protocols if the exchanges are such a mess? Wallets are fine and dandy, but exchanges are hard to avoid if you are actively trading.
hero member
Activity: 1036
Merit: 606
March 24, 2014, 01:04:12 PM
#21
Quote
I really hope this isnt my case... Wich "scanner" finds stuff like this? do I need something more then just Norton/mcafee/spyhunter etc.?
Most AV will pickup up the most common malware. I like ESET the best. The problem is the malware authors are constantly changing the code so it's not detected by AV, so there is always a chance you could get infected and not know it, especially if you download random wallet binaries etc.. Best advice is to use a dedicated computer for your logins or if you must use the same computer, always act like your computer is compromised.
hero member
Activity: 1036
Merit: 606
March 24, 2014, 12:56:27 PM
#20
Do they not offer 2 factor authentication?
Yes, they do. CryptoRush now displays a banner on the top of the page if you don't have it enabled. I like the IP idea too. AllCoin coin sends you an email with the IP anytime someone logs into your account.

hero member
Activity: 644
Merit: 500
March 24, 2014, 12:52:54 PM
#19
hmm, just after i viewed cryptorush and they advice me to enable 2FA from their notifications
many people hack cryptorush account already?
I think 2FA is must factor!
and probably exchanger should add IP filter feature. A feature when Somebody log in with different IP can't login / block
legendary
Activity: 1090
Merit: 1000
March 24, 2014, 12:40:19 PM
#18
2FA is a must. Google Authenticator is ok. SMS is the BEST.

Even Gmail offers SMS verification for free so why not use it? I'm pretty sure you can receive/send sms on most cell phones, android, ios devices. Many free apps for doing such. Textplus comes to mind.

Blockchain.info, VaultofSatoshi, Cryptsy are three services I know that offer SMS.

Perhaps others will post email services and exchanges with SMS verification.
hero member
Activity: 574
Merit: 500
Growcoin Chief
March 24, 2014, 04:26:18 AM
#17
I opened up a new support ticket with the request to add this IP feature... On site or through email... this just needs to be added... I will do the same with other exchanges... This could actually prevent some btc theft in the future... Just take my own story.. The "hacker" logged in several times to check my balance... Since I dont usually keep any balance in my account, I couldve spotted this guy sneaking around in my account sooner if that feature just was there. And i couldve changed passwords etc.
hero member
Activity: 602
Merit: 500
March 23, 2014, 08:39:50 PM
#16
thanks for the heads-up
full member
Activity: 378
Merit: 102
March 23, 2014, 07:07:59 PM
#15
Do they not offer 2 factor authentication?
full member
Activity: 210
Merit: 100
March 23, 2014, 06:35:18 PM
#14
BTW! I got email back from cryptorush... they gave me a few IP adresses of "people" who logged in my account the last month...



Ip Address: 183.171.163.28
First Login: 2014-03-09 16:56:38

Ip Address: 183.171.164.255
First Login: 2014-03-19 17:09:54

Ip Address: 183.171.171.133
First Login: 2014-03-19 18:20:42

Ip Address: 183.171.169.185
First Login: 2014-03-21 20:17:32

Ip Address: 183.171.173.147
First Login: 2014-03-22 05:59:38


This motherfucker stole my coins... As you can see this "person" logged in my account once in a while... probably to check my balance... mofo...


The last one is when he took my money...

This actually proves Cryptorush lack of security features... you cant even see the last IP adress that logged in on your dashboard...
Then it would ring a bell to me the first time i would see it...  Undecided
dude thats an awesome idea. every exchange should have that feature!

Yeah, a few pools have that feature already too, neat.
Pages:
Jump to: