crazy first dev asking for donation
now this attack activated
very fishy - its still my mind guys
Topic: Network Attack on XVG / VERGE - page 74. (Read 29513 times)
OMG, this coin will drop like a stone, and well deserved. The devs are complete idiots. Even after the bug was discovered, they commit a fix where you can clearly see that they lack basic mathematics knowledge. They are stuck at multiplication hahaha. Now imagine them when they have to work on something more complicated.
I am quite sure, you would be able to solve the problem in three minutes... If you dont want to help, why not just shut up?
bumping for awareness
The XVG exploit has still not been patched.
https://github.com/vergecurrency/VERGE/commits/master
The XVG fanboys in here claiming "FUD" simply do not develop or know anything about how blockchains work.
Meenwhile the lead Dev has compared XVG to ETH ? - this was by far the most stupid thing i've read.
ETH goes through hundreds of man hours of testing before they release code.
The Lead dev royally fucked up the update by first coding in nMaxClockDrift = 15 seconds instead of 15 mins..... After this was corrected..
the "fix" caused any newly built clients to fork or not sync.
The lead dev then reverted the "fix" - leaving XVG exploitable again.........
This is an absolute joke from a coin with a Mktcap of almost $855 Million
The XVG exploit has still not been patched.
https://github.com/vergecurrency/VERGE/commits/master
The XVG fanboys in here claiming "FUD" simply do not develop or know anything about how blockchains work.
Meenwhile the lead Dev has compared XVG to ETH ? - this was by far the most stupid thing i've read.
ETH goes through hundreds of man hours of testing before they release code.
The Lead dev royally fucked up the update by first coding in nMaxClockDrift = 15 seconds instead of 15 mins..... After this was corrected..
the "fix" caused any newly built clients to fork or not sync.
The lead dev then reverted the "fix" - leaving XVG exploitable again.........
This is an absolute joke from a coin with a Mktcap of almost $855 Million
When mining XVG oke ?
There is a fairness aspect to letting an attacker keep spoils of an exploit, if it wasn't exploitable, it wouldn't be motivated to have been found for profit.
In essence this is a bug bounty paid involuntarily in XVG to the miner. It's not a theft per se. If it wrecks the coin it's not even that miner/attacker's fault-- shouldn't have been available to exploit in such a fashion in the first place. There is a testnet.
Disagree with you, the only time that would be deemed ethical is if the bug has been reported to the devs, and ignored, or the devs refused to fix an exploit which has been shared with them. Which could turn out to be the case.
But realistically there are holes in almost every coin out there right now. We all know it, they just haven't all been found yet but history clearly shows this. So "should" becomes irrelevant when faced with the reallity that code is written by humans.
In any case, for those of you worrying that this will be the end of verge, far from the case. They will be respond and be more secure for it.
do not be fooled by the FUD
real huge things happening -- this is a coin that has grown and worked hard from infancy ! growing pains r ok --- we see it with the top 3 tokens -- yet it slides -- plus the larger coins have such a pocket of money to grab from without true regulation --
verge does it for truth n honor and true change !
maybe not the most professional marketing team -- but id rather them not waste money on fake marketing ! until they r ready - which is finally gunna happen after so many years !
well deserved !
true product !
respect n namaste
real huge things happening -- this is a coin that has grown and worked hard from infancy ! growing pains r ok --- we see it with the top 3 tokens -- yet it slides -- plus the larger coins have such a pocket of money to grab from without true regulation --
verge does it for truth n honor and true change !
maybe not the most professional marketing team -- but id rather them not waste money on fake marketing ! until they r ready - which is finally gunna happen after so many years !
well deserved !
true product !
respect n namaste
You mean the company that takes money from its community, jokes about buying an island, then doesn't believe it's network is getting attacked, then blows off the miner won showed them, then says it's not a big deal, then tries to fix, then accidently hard forks, then rolls it back, then waits over 24 hours after 132 million coins have been mined to release a patch? They can shut down the exchanges for now.... there's still going to be over 132 million verge coins to flood the market at some point. Just like mt. Gox exec. Selling off bitcoin and flooding the market. Good thing verge has a community of people who bought ATH for their first crypto and don't want to admit their money is down the drain
I don't have thousands upon thousands of dollars of verge. But shit happens. Look at how long ETN took to get their shit together. And did it moon? Sure as hell did. Did the community lose faith in ETN? Hell no.
Hahaha, worst example ever. Electroneum's shit is far from 'together' and it's sitting at around ICO price..go into their subreddit and tell me that the sentiment about the project isn't turning more negative by the day.
Spoken like a blind verge fan boy. They're like Jehovah witness going door to door to spread b.s.. Their mods should not be kicking people from their social media for asking questions. If vendetta didn't blow this off like nbd, it would be different. ETN is hardly a crypto to brag about.. 1506 coins a second for 12+ hours is a big deal. Then you lie to everyone and tell them they're orphan blocks? Pathetic
Let us know if there's anything we can do to help, our coin was also recently attacked, by the codes partial creator, no less (j1777) who then tried to explain how mining exploits aren't really attacks, and the attacker "deserves" the blocks lol (even if they've taken over 100% of the network).
All I can say when this stuff happens is relax, be calm, let the devs do their jobs, and give them the time to do it right. You want a good fix that will last, and one that can be shared with the open source community that we can all learn from to be better.
I personally have a lot of faith in verge and have followed them closely. The better you become, the more of a target you become. And with each attack and adversity faced, the better still you become.
Coins that claim to have not been attacked ever are mostly either not paying attention or covering up.
Verge will get this sorted and the whole crypto community will be better for it if it's done right.
We are all learning and getting better.
Good luck!
http://safecoin.org
All I can say when this stuff happens is relax, be calm, let the devs do their jobs, and give them the time to do it right. You want a good fix that will last, and one that can be shared with the open source community that we can all learn from to be better.
I personally have a lot of faith in verge and have followed them closely. The better you become, the more of a target you become. And with each attack and adversity faced, the better still you become.
Coins that claim to have not been attacked ever are mostly either not paying attention or covering up.
Verge will get this sorted and the whole crypto community will be better for it if it's done right.
We are all learning and getting better.
Good luck!
http://safecoin.org
There is a fairness aspect to letting an attacker keep spoils of an exploit, if it wasn't exploitable, it wouldn't be motivated to have been found for profit.
In essence this is a bug bounty paid involuntarily in XVG to the miner. It's not a theft per se. If it wrecks the coin it's not even that miner/attacker's fault-- shouldn't have been available to exploit in such a fashion in the first place. There is a testnet.
Let us know if there's anything we can do to help, our coin was also recently attacked, by individuals who then tried to explain how mining exploits aren't really attacks, and the attacker "deserves" the blocks lol (even if they've taken over 100% of the network).
All I can say when this stuff happens is relax, be calm, let the devs do their jobs, and give them the time to do it right. You want a good fix that will last, and one that can be shared with the open source community so that we can all learn from to be better.
I personally have a lot of faith in verge and have followed them closely. The better you become, the more of a target you become. And with each attack and adversity faced, the better still you become.
Coins that claim to have not been attacked ever are mostly either not paying attention or covering up.
Verge will get this sorted and the whole crypto community will be better for it if it's done right. And they will be remembered not for the attack, but for how they handled it.
We are all learning and getting better.
Good luck!
http://safecoin.org
All I can say when this stuff happens is relax, be calm, let the devs do their jobs, and give them the time to do it right. You want a good fix that will last, and one that can be shared with the open source community so that we can all learn from to be better.
I personally have a lot of faith in verge and have followed them closely. The better you become, the more of a target you become. And with each attack and adversity faced, the better still you become.
Coins that claim to have not been attacked ever are mostly either not paying attention or covering up.
Verge will get this sorted and the whole crypto community will be better for it if it's done right. And they will be remembered not for the attack, but for how they handled it.
We are all learning and getting better.
Good luck!
http://safecoin.org
The first thing to do to stop the attack would be blocking all exchange wallets for XVG, then exclude all hacker's blocks, then resume chain with a fix. Problem would be 100% solved, no harm done.
SIMPLE TRUTH - NAMASTE !
NO MORE DRAMA
do not be fooled by the FUD
real huge things happening -- this is a coin that has grown and worked hard from infancy ! growing pains r ok --- we see it with the top 3 tokens -- yet it slides -- plus the larger coins have such a pocket of money to grab from without true regulation --
verge does it for truth n honor and true change !
maybe not the most professional marketing team -- but id rather them not waste money on fake marketing ! until they r ready - which is finally gunna happen after so many years !
well deserved !
true product !
respect n namaste
real huge things happening -- this is a coin that has grown and worked hard from infancy ! growing pains r ok --- we see it with the top 3 tokens -- yet it slides -- plus the larger coins have such a pocket of money to grab from without true regulation --
verge does it for truth n honor and true change !
maybe not the most professional marketing team -- but id rather them not waste money on fake marketing ! until they r ready - which is finally gunna happen after so many years !
well deserved !
true product !
respect n namaste
I just made quick research on few addresses that continue to exploit the bug.
D8Z2APfnC68K461amMR6v4faaiCxWiY1rE - user phm87
https://verge-blockchain.info/address/D8Z2APfnC68K461amMR6v4faaiCxWiY1rE
https://forum.unimining.net/viewtopic.php?t=4
https://github.com/phm87
https://avatars0.githubusercontent.com/u/31578435?s=460&v=4
https://bitcointalksearch.org/user/phm87-1117726
---------
Mentions of the address DBfVheAAcBd5X6tA2YpZMyNBvcn434oGqR
https://verge-blockchain.info/address/DBfVheAAcBd5X6tA2YpZMyNBvcn434oGqR
https://bitcointalk.org/index.php?topic=2172845.860
D8Z2APfnC68K461amMR6v4faaiCxWiY1rE - user phm87
https://verge-blockchain.info/address/D8Z2APfnC68K461amMR6v4faaiCxWiY1rE
https://forum.unimining.net/viewtopic.php?t=4
https://github.com/phm87
https://avatars0.githubusercontent.com/u/31578435?s=460&v=4
https://bitcointalksearch.org/user/phm87-1117726
---------
Mentions of the address DBfVheAAcBd5X6tA2YpZMyNBvcn434oGqR
https://verge-blockchain.info/address/DBfVheAAcBd5X6tA2YpZMyNBvcn434oGqR
https://bitcointalk.org/index.php?topic=2172845.860
Hello,
The XVG wallet address you mentionned is UniMining XVG wallet. UniMining is a public pool where the miners mine together on a pool. All earnings that are generated by pool are sent to miners.
Can you show me some proofs that I am the attacker ? I'd like to understand the issue to prevent any wrong use of UniMining.
I complained also about this issue so I don't think that I'd be using my public pool to do this:
https://bitcointalksearch.org/topic/m.33927153
Thank you for ocminer help on this problem/attack,
Best Regards,
phm87
It appears that idolism made that post right when the attack stopped and doesn't realize how to identify the malicious blocks. All of the time stamps to your address appear to be legit, at a quick glance.
Wow, thanks for info guys. 
The first thing to do to stop the attack would be blocking all exchange wallets for XVG, then exclude all hacker's blocks, then resume chain with a fix. Problem would be 100% solved, no harm done.
Yes but not sure how this attack works because it showed I was still earning. Just no payment happening.
The attack works like this:
The attacker replaces the legit blockchain, with legit high difficulty blocks, with his low diff blocks, invalidating all legit blocks (orphans).
That means no coins can be moved but his... He's not accepting any other transactions...
He'd need to stop in order to get the coins moved again.
The rest of the details is in post 1
much respect for explanation
namaste
so is there another fork coming? due to the flaw
There's going to have to be. Verge Dev Team will fix it quickly as they don't want anything to interfere with their upcoming partnership.
Nobody is spreading fud about an attack that actually happened. There's proof that has been presented to everyone here. OCMiner is a *highly* respected member of the mining community, has been for years. Multiple pool operators have agreed with the assessment. Please save the attacks on him or the mining community at large. THAT is unproductive.
Lol, what's next, claiming Mother Theresa kicked the terminally ill children she cared for?
'Teresa'. Not Theresa.
If the developers do not solve it as soon as possible the way it says ocminer this can be terrible for the project 
I just made quick research on few addresses that continue to exploit the bug.
D8Z2APfnC68K461amMR6v4faaiCxWiY1rE - user phm87
https://verge-blockchain.info/address/D8Z2APfnC68K461amMR6v4faaiCxWiY1rE
https://forum.unimining.net/viewtopic.php?t=4
https://github.com/phm87
https://bitcointalksearch.org/user/phm87-1117726
---------
Mentions of the address DBfVheAAcBd5X6tA2YpZMyNBvcn434oGqR
https://verge-blockchain.info/address/DBfVheAAcBd5X6tA2YpZMyNBvcn434oGqR
https://bitcointalk.org/index.php?topic=2172845.860
D8Z2APfnC68K461amMR6v4faaiCxWiY1rE - user phm87
https://verge-blockchain.info/address/D8Z2APfnC68K461amMR6v4faaiCxWiY1rE
https://forum.unimining.net/viewtopic.php?t=4
https://github.com/phm87
https://bitcointalksearch.org/user/phm87-1117726
---------
Mentions of the address DBfVheAAcBd5X6tA2YpZMyNBvcn434oGqR
https://verge-blockchain.info/address/DBfVheAAcBd5X6tA2YpZMyNBvcn434oGqR
https://bitcointalk.org/index.php?topic=2172845.860
Hello,
The XVG wallet address you mentionned is UniMining XVG wallet. UniMining is a public pool where the miners mine together on a pool. All earnings that are generated by pool are sent to miners.
Can you show me some proofs that I am the attacker ? I'd like to understand the issue to prevent any wrong use of UniMining.
I complained also about this issue so I don't think that I'd be using my public pool to do this:
https://bitcointalksearch.org/topic/m.33927153
Thank you for ocminer help on this problem/attack,
Best Regards,
phm87
Jump to: