Nxt Coins stolen/ Hacked be warned - page 4.

3x2

legendary

Activity: 1526

Merit: 1004

Quote from: gravitate on September 23, 2014, 08:27:11 AM

OK well it is funny how the nxt community didnt say it wasnt strong enough and they also said it could not be brute forced.

Anyway I am not here to argue about how amazingly secure this coin is. I bought it becasue of how I saw them promoting it all the time.

Anyway let this be a lesson to everyone. If you have a 'secure' password then it will be hacked and your coins will be stolen and then your pass phrase will be considered not secure.

I cant be bothered arguing about it anymore. I hope this serves as a warning to other people thats all.

i have less than 30 alphabet password and never got hacked, No number,dot,comma or anything. Dont blame coin for your own mistakes, if someone can hack in to your computer and copy wallet.dat file without the encryption will you still blame BTC for that?

gravitate

legendary

Activity: 1372

Merit: 1000

OK well it is funny how the nxt community didnt say it wasnt strong enough and they also said it could not be brute forced.

Anyway I am not here to argue about how amazingly secure this coin is. I bought it becasue of how I saw them promoting it all the time.

Anyway let this be a lesson to everyone. If you have a 'secure' password then it will be hacked and your coins will be stolen and then your pass phrase will be considered not secure.

I cant be bothered arguing about it anymore. I hope this serves as a warning to other people thats all.

instacalm

hero member

Activity: 798

Merit: 500

Quote from: ?? on ??

NxT says you need at last a passphrase about 100 digits big if not longer.

It doesn't have to be that long (30-50 chars is enough), but it has to be strong. Here are some guidelines:

http://wiki.nxtcrypto.org/wiki/How-To:GenerateStrongPassword
http://nxtcoin.blogspot.de/2014/01/nxtmyths-5-unsafe-password.html
http://en.wikipedia.org/wiki/Password_strength#Guidelines_for_strong_passwords

Use KeePass/1Password to generate and manage your strong passwords, it makes it easy and comfortable

gravitate

legendary

Activity: 1372

Merit: 1000

hi devphp the pass phrase is like this
tim cum sim prawn gin yuk bim rarl per tip pop from

It is NO more complicated or NO MORE simplified. If you want to call me a liar by not posting MY pass phrase to cover up security issues with nxt then carry on please.

If I was going to lie about it I would include numbers and characters to make myself look bullet proof to any hacks. The fact is I was hacked and no body has said there is a problem with the pass phrase. Which means nxt in my opinion is not secure enough if the strength of my pass phrase is ok.

devphp

sr. member

Activity: 336

Merit: 260

Quote from: Vega on September 23, 2014, 07:54:34 AM

Quote from: devphp on September 23, 2014, 07:52:26 AM

Well, there are a lot of passphrases one can think of that are more secure than that, but your refusal to post the passphrase is typical.

These Nxt stolen topics have one thing in common. The story never starts like this: "I random generated a passphrase..."

Yup. Either you're a newbie or an advanced user.

If you're a newbie, the software generates a passphrase for you. If you're an advanced user and want to do it yourself - you're on your own, don't complain if your passphrase is cracked, because you can't think of a random complex passphrase.

Vega

hero member

Activity: 739

Merit: 500

Quote from: devphp on September 23, 2014, 07:52:26 AM

Well, there are a lot of passphrases one can think of that are more secure than that, but your refusal to post the passphrase is typical.

These Nxt stolen topics have one thing in common. The story never starts like this: "I random generated a passphrase..."

devphp

sr. member

Activity: 336

Merit: 260

Quote from: gravitate on September 23, 2014, 07:49:14 AM

tim cum sim prawn gin yuk bim rarl per tip pop from

It was similar to that... I am not prepared to post it public. It was no less or no more complicated than that.

If that isn't secure enough then what is?

Well, there are a lot of passphrases one can think of that are more secure than that, but your refusal to post the passphrase is typical.

gravitate

legendary

Activity: 1372

Merit: 1000

ok well nobody has said this is not secure enough so far anyway

gravitate

legendary

Activity: 1372

Merit: 1000

insta I answered all these questions in the thread I linked if you are interested. Anyway I never used it online ever. I never reused it apart from some of the words.

I use mavericks and I have recently done a scan and nothing on my computer. If there was a key logger by bitcoin bit bargain.co.uk account would have been emptied

instacalm

hero member

Activity: 798

Merit: 500

Quote from: gravitate on September 23, 2014, 07:49:14 AM

If that isn't secure enough then what is?

Here are a few examples of strong passphrases, these are impossible to bruteforce:

u4xJU7F#E>?MZ6z{g&MrX9ePu6)yKPEcd4]8^)FJzJ28q^4Cwc
Wm3&F,y;pFQm4GRc26Pr4tM,[4mW>Kr=$4c4X*M4BT+JtVQ2zx
}ZL4.yph}.g4AUHPFp}n9$4H9W43EqLXN#8W6=j,4r]uWeVAaQ
H8+D/rqrA&?cK3xw82KoWC^Z#=ptjvTaqML968TA,43B&>dQF8
}FczoDRt*wmGJ8QL7>47BNqZ{a4c,>BQ>9VG9*p;62RH3bLaB&

Please use KeePass or 1Password to generate secure passwords like the above or use the password generator built-in the wallet. I'm using passwords like these, generated by 1Password, and I've never had issues. Again sorry for your loss mate, I know that sucks.

gravitate

legendary

Activity: 1372

Merit: 1000

tim cum sim prawn gin yuk bim rarl per tip pop from

It was similar to that... I am not prepared to post it public. It was no less or no more complicated than that.

If that isn't secure enough then what is?

instacalm

hero member

Activity: 798

Merit: 500

Quote from: gravitate on September 23, 2014, 07:46:47 AM

until someone can answer how my account was hacked

As I said, I've never had an account hacked/stolen since December 2013 when I first stumbled upon NXT.

There are many different factors that could have lead to this, thus it is very important that you give as much information as possible.

How many chars did your password have, which operating system (keylogger?), which sites/apps did you use et cetera.

gravitate

legendary

Activity: 1372

Merit: 1000

Hopefully there will be answers however.Maybe not. I wouldn't buy any more though now until someone can answer how my account was hacked

devphp

sr. member

Activity: 336

Merit: 260

What's your passphrase?
https://bitcointalksearch.org/topic/m.8930621

1) Your pass phrase would confirm your claim is legitimate. And yes, why would anyone believe your claim in this nest of vipers that this forum is

2) Your pass phrase would shed light on whether your account was hacked due to the weak pass phrase.

gravitate

legendary

Activity: 1372

Merit: 1000

ok ok well I got hacked after being scammed then. Double wammy

instacalm

hero member

Activity: 798

Merit: 500

Sorry for your loss gravitate

I've had several NXT accounts since November 2013 and I've never had any account compromised or stolen

Here's a sample password (50 chars including digits and symbols):
{^32y3C2pgte%)]MA2Q%XaBQ#ryxc2F89Vd.9#xpifR=9jsMdg

Either use passwords like the above OR the built-in password generator. Both are fine to secure your account.

gravitate

legendary

Activity: 1372

Merit: 1000

No I mean I followed recommendations about a secure pass phrase.... I thought nxt were ok as they were at every conference I was at I got sucked in. It is the security of the coins ' brain wallet' that I question.

gravitate

legendary

Activity: 1372

Merit: 1000

I followed all the recommendations and bought 2 bitcoins worth of nxt coins. Logged in and they were gone. No one knows how or why. Just be warned guys. Here is a link to what exactly happened https://nxtforum.org/general/have-i-been-hacked/

Basically I would not recommend anyone holding lot of Nxt in there. Thats from my own experience. 1000usd flushed down the toilet from no fault of my own. If I kept it in bitcoin it would still be sat on my computer with all my other alts.

Topic: Nxt Coins stolen/ Hacked be warned - page 4. (Read 4600 times)