RarityCheck VIBGYOR gilded #12 swept yesterday. - page 4.

raghavsood

copper member

Activity: 406

Merit: 485

Track Burns @ burned.money

Quote from: raritycheck on August 11, 2024, 10:25:24 AM

How are we giving the message that the VIBGYOR coins might be safe?

The phrasing in orange could be construed to mean that some keys are safe. Please be careful and try to phrase things unambiguously for this case.

Quote from: raritycheck on August 11, 2024, 07:30:55 AM

All keys were generated at once i.e. on the same day.

Address list was published from the day of coins announcement : https://crypto.raritycheck.com/vibgyor

It's possible some keys haven't been hacked with RNG attack or the backdoor for VIBGYOR series.

All LCS coin keys are created with bitaddress. So, please avoid panic.

Regards
Team RC

raritycheck

copper member

Activity: 577

Merit: 171

Quote from: krogothmanhattan on August 11, 2024, 10:46:15 AM

Below is a pic of a crystal clear private key that I swept as I mentioned in an earlier post...I deleted the last row to prevent anyone from tracing where the BTC went to once swept.

Yes these are the Vigilante private keys. Thank you krogothmanhattan for sharing.

Only the Hole coin was tricky because of the shape of the paper. but VIBGYOR and Vigilante keys are easy to read.

But we are thinking about what to do with LCS v2 and remaining unsold VIBGYOR + anyone resending us + unsold LCS v1 coins.

krogothmanhattan

legendary

Activity: 2520

Merit: 3238

The Stone the masons rejected was the cornerstone.

Below is a pic of a crystal clear private key that I swept as I mentioned in an earlier post...I deleted the last row to prevent anyone from tracing where the BTC went to once swept.

raritycheck

copper member

Activity: 577

Merit: 171

Quote from: 21MilBTC on August 10, 2024, 12:05:02 PM

Maybe another member mentioned this already...But if I'm *RC* I'm turning a negative situation into a positive....

If I'm *RC* I'd design a different *New coin from scratch* and every person that purchased a VIBGYOR coin would now get one of the new designed coin for free....

Here's the kicker......The newly designed coin SHOULD NEVER GO ON SALE.....NEVER EVER......They should only go to the people who purchased a coin in this series...Now *RC* has actually created a new collectible for the people affected...Those who purchased funded get one funded...Those who purchased unfunded get one unfunded....What the people do with the coins once they get them...well that's up to them....

Probably a stupid idea on my part....I don't know....Anyways....it looks like everything the bloke can do he is doing...

Props to *RC* but I'm sure others on here may not see it that way....

We have been already refunding affected people.
Edit: We plan on adding new stickers for existing coins. We are thinking of taking someone else's help for private keys for VIBGYOR.

krogoth

full member

Activity: 1298

Merit: 176

Krogothmanhattan alt account

Quote from: rsincognito on August 11, 2024, 08:10:33 AM

Quote from: gpfrag on August 11, 2024, 12:59:45 AM

I'm amazed at the speed of which notification and publishing of activity took place.

Is there a way to set up alerts for transactions/movement on personal public addresses so that you're instantly notified if something is happening with one of your coins?

I'd like to set something up so I get an alert on my phone jic.

Thanks

yes there is an app called crypto alerting, for your phone and they have a website, you can set it to send you a text , push notification and i even think a phone call if funds move from an address you upload into your account, here is the site. https://cryptocurrencyalerting.com/
if anyone has a reason not to use this site please let me know, i have had zero issues with it. ty

I have the app and it does alert me right away thru text with any changes in a BTC addy balance. So far so good

raritycheck

copper member

Activity: 577

Merit: 171

Quote from: raghavsood on August 11, 2024, 07:37:19 AM

Quote from: raritycheck on August 11, 2024, 07:30:55 AM

Quote from: Primo-bit on August 11, 2024, 05:04:23 AM

Quote from: rsincognito on August 10, 2024, 09:06:17 PM

I still don't know how I had 8 of these coins and NONE of them were swept. I swept all 4 of the 0.01 btc denomination coins and left the other 4 coins that are loaded with 0.001 alone and they are still loaded, weird.

edit:
Does anyone know how many of the "lost coin series" 0.001 btc coins are still loaded ? ty

I've taken a look at my #12 (gilded and silver).

Bought them both in April 2023

Gilded was loaded October 2022 Before I bought (Hacker Swept)
Silver was loaded April 2023 When I bought (I swept after the others were swept by hacker)

So this makes me to believe that maybe RC makes the keys when they are sold and changed key generator software/method from early 2023 (I think raghavsood has also mentioned it)
rsincognito you bought late 2023

I can also be completely wrong about this

Maybe RC can elaborate on that?

All keys were generated at once i.e. on the same day.

Address list was published from the day of coins announcement : https://crypto.raritycheck.com/vibgyor

It's possible some keys haven't been hacked with RNG attack or the backdoor.

Regards
Team RC

If all keys were generated in one session with the same tool, it is not possible that same keys are safe.

Every single existing VIBGYOR key should be considered unsafe, and every single loaded VIBGYOR coin should be peeled immediately.

The raritycheck team should be very, very clear in their messaging regarding this. Giving holders the impression that they might be safe if the funds haven't been swept yet is simply not an option.

How are we giving the message that the VIBGYOR coins might be safe?

raghavsood

copper member

Activity: 406

Merit: 485

Track Burns @ burned.money

Quote from: rsincognito on August 11, 2024, 08:07:19 AM

Quote from: raghavsood on August 10, 2024, 11:58:57 PM

Quote from: ironworld on August 10, 2024, 07:55:16 PM

Hi everyone!

I'm new here and found this place after researching transaction 5f3720dd75ea36efed2bffd7bc136dc8556e600d6cc94f2a82c38880e0d02b64.

On a certain day (which I honestly don't remember), I accessed bitaddress.org to generate a wallet for my godson. I'm a tech person, so I took every precaution when accessing the site (Mac/Safari or Chrome), generating the document, and even when printing it. I chose to take my laptop to the printer and connected it via a USB cable (I've worked with printer drivers for years).

I had saved the address 1EXkmyQEtNL351Q9ovUsCvsDTYtx4hVgCf to check the balance using the BlueWallet app, to see how my godson's savings were doing. Tonight, when I accessed the website, I was shocked! The funds had been moved. I immediately spoke to my godson's father, who confirmed that the funds hadn't been moved by him and that the paper was safely stored in a vault, as I had given it to him.

I can't stop thinking about where I went wrong in this process.

Thank you for the datapoint.

If you're certain you used bitaddress and not walletgenerator, my sense is that both you and raritycheck ended up on fake sites of the respective generators, which were compromised.

If you generated any other wallets using this same method, I would suggest sweeping them immediately.

@raghavsood is this guys swiped coin being done by the same people that swiped the raritycheck coins? im not as tech as you are. ty

Yes, it is the same actors - I'm working on a larger fund flow piece, and will share it once I'm done - there may be an avenue for folks who were directly stolen from to file some reports with platforms/law enforcement (although I doubt it would lead to a recovery, but not entirely impossible).

rsincognito

copper member

Activity: 630

Merit: 113

Quote from: gpfrag on August 11, 2024, 12:59:45 AM

I'm amazed at the speed of which notification and publishing of activity took place.

Is there a way to set up alerts for transactions/movement on personal public addresses so that you're instantly notified if something is happening with one of your coins?

I'd like to set something up so I get an alert on my phone jic.

Thanks

yes there is an app called crypto alerting, for your phone and they have a website, you can set it to send you a text , push notification and i even think a phone call if funds move from an address you upload into your account, here is the site. https://cryptocurrencyalerting.com/
if anyone has a reason not to use this site please let me know, i have had zero issues with it. ty

rsincognito

copper member

Activity: 630

Merit: 113

Quote from: raghavsood on August 10, 2024, 11:58:57 PM

Quote from: ironworld on August 10, 2024, 07:55:16 PM

Hi everyone!

I'm new here and found this place after researching transaction 5f3720dd75ea36efed2bffd7bc136dc8556e600d6cc94f2a82c38880e0d02b64.

On a certain day (which I honestly don't remember), I accessed bitaddress.org to generate a wallet for my godson. I'm a tech person, so I took every precaution when accessing the site (Mac/Safari or Chrome), generating the document, and even when printing it. I chose to take my laptop to the printer and connected it via a USB cable (I've worked with printer drivers for years).

I had saved the address 1EXkmyQEtNL351Q9ovUsCvsDTYtx4hVgCf to check the balance using the BlueWallet app, to see how my godson's savings were doing. Tonight, when I accessed the website, I was shocked! The funds had been moved. I immediately spoke to my godson's father, who confirmed that the funds hadn't been moved by him and that the paper was safely stored in a vault, as I had given it to him.

I can't stop thinking about where I went wrong in this process.

Thank you for the datapoint.

If you're certain you used bitaddress and not walletgenerator, my sense is that both you and raritycheck ended up on fake sites of the respective generators, which were compromised.

If you generated any other wallets using this same method, I would suggest sweeping them immediately.

@raghavsood is this guys swiped coin being done by the same people that swiped the raritycheck coins? im not as tech as you are. ty

DaveF

legendary

Activity: 3500

Merit: 6320

Crypto Swap Exchange

Quote from: LoyceV on August 11, 2024, 02:04:02 AM

Quote from: ironworld on August 10, 2024, 07:55:16 PM

I'm new here and found this place after researching transaction 5f3720dd75ea36efed2bffd7bc136dc8556e600d6cc94f2a82c38880e0d02b64.

The only thing linking it to this topic is that it was swept in the same transaction as the collectible coins. Other than that, it would probably be better to open a new topic in Bitcoin Technical Support.

Quote

On a certain day (which I honestly don't remember), I accessed bitaddress.org to generate a wallet for my godson. I'm a tech person, so I took every precaution when accessing the site (Mac/Safari or Chrome), generating the document, and even when printing it. I chose to take my laptop to the printer and connected it via a USB cable (I've worked with printer drivers for years).
~
I can't stop thinking about where I went wrong in this process.

I see several potential points of failure:

Bitaddress has many phishing clones, but I've never read anything bad about Bitaddress itself. Usually a small typo is enough.
The warning on Bitaddres.org with one s exists for a reason!
You say you took every precaution, but it sounds like you used the online website instead of using it offline, and wiping your computer afterwards.
The printer may potentially be a problem too, but that's unlikely considering it was swept together with other coins.

The clone sites are everywhere and they are STILL indexed used all the time.
I while ago I wound up getting a bunch of domains and setup the sites like this after they hosted malware: http://electrum-bitcoin.org
YEARS AND YEARS later they are still getting hits from non bot / non crawler sources. As in people had to have them bookmarked or something and tried to go back.

-Dave

raghavsood

copper member

Activity: 406

Merit: 485

Track Burns @ burned.money

Quote from: raritycheck on August 11, 2024, 07:30:55 AM

Quote from: Primo-bit on August 11, 2024, 05:04:23 AM

Quote from: rsincognito on August 10, 2024, 09:06:17 PM

I still don't know how I had 8 of these coins and NONE of them were swept. I swept all 4 of the 0.01 btc denomination coins and left the other 4 coins that are loaded with 0.001 alone and they are still loaded, weird.

edit:
Does anyone know how many of the "lost coin series" 0.001 btc coins are still loaded ? ty

I've taken a look at my #12 (gilded and silver).

Bought them both in April 2023

Gilded was loaded October 2022 Before I bought (Hacker Swept)
Silver was loaded April 2023 When I bought (I swept after the others were swept by hacker)

So this makes me to believe that maybe RC makes the keys when they are sold and changed key generator software/method from early 2023 (I think raghavsood has also mentioned it)
rsincognito you bought late 2023

I can also be completely wrong about this

Maybe RC can elaborate on that?

All keys were generated at once i.e. on the same day.

Address list was published from the day of coins announcement : https://crypto.raritycheck.com/vibgyor

It's possible some keys haven't been hacked with RNG attack or the backdoor.

Regards
Team RC

If all keys were generated in one session with the same tool, it is not possible that same keys are safe.

Every single existing VIBGYOR key should be considered unsafe, and every single loaded VIBGYOR coin should be peeled immediately.

The raritycheck team should be very, very clear in their messaging regarding this. Giving holders the impression that they might be safe if the funds haven't been swept yet is simply not an option.

Quote from: raghavsood on August 10, 2024, 11:40:05 PM

If you hold an intact, funded VIBGYOR coin or know someone who does, please make sure it is peeled and redeemed. Based on what we know about the keygen compromise so far, funds being stolen from this is a matter of WHEN, not IF. Leaving those coins funded is akin to sending a time-delayed donation to the people behind the bad keygen.

raritycheck

copper member

Activity: 577

Merit: 171

Quote from: Primo-bit on August 11, 2024, 05:04:23 AM

Quote from: rsincognito on August 10, 2024, 09:06:17 PM

I still don't know how I had 8 of these coins and NONE of them were swept. I swept all 4 of the 0.01 btc denomination coins and left the other 4 coins that are loaded with 0.001 alone and they are still loaded, weird.

edit:
Does anyone know how many of the "lost coin series" 0.001 btc coins are still loaded ? ty

I've taken a look at my #12 (gilded and silver).

Bought them both in April 2023

Gilded was loaded October 2022 Before I bought (Hacker Swept)
Silver was loaded April 2023 When I bought (I swept after the others were swept by hacker)

So this makes me to believe that maybe RC makes the keys when they are sold and changed key generator software/method from early 2023 (I think raghavsood has also mentioned it)
rsincognito you bought late 2023

I can also be completely wrong about this

Maybe RC can elaborate on that?

All keys were generated at once i.e. on the same day.

Address list was published from the day of coins announcement : https://crypto.raritycheck.com/vibgyor

It's possible some keys haven't been hacked with RNG attack or the backdoor for VIBGYOR series.

All LCS coin keys are created with bitaddress. So, please avoid panic.

Regards
Team RC

Primo-bit

copper member

Activity: 150

Merit: 93

Quote from: rsincognito on August 10, 2024, 09:06:17 PM

I still don't know how I had 8 of these coins and NONE of them were swept. I swept all 4 of the 0.01 btc denomination coins and left the other 4 coins that are loaded with 0.001 alone and they are still loaded, weird.

edit:
Does anyone know how many of the "lost coin series" 0.001 btc coins are still loaded ? ty

I've taken a look at my #12 (gilded and silver).

Bought them both in April 2023

Gilded was loaded October 2022 Before I bought (Hacker Swept)
Silver was loaded April 2023 When I bought (I swept after the others were swept by hacker)

So this makes me to believe that maybe RC makes the keys when they are sold and changed key generator software/method from early 2023 (I think raghavsood has also mentioned it)
rsincognito you bought late 2023

I can also be completely wrong about this

Maybe RC can elaborate on that?

LoyceV

legendary

Activity: 3290

Merit: 16489

Thick-Skinned Gang Leader and Golden Feather 2021

Quote from: ironworld on August 10, 2024, 07:55:16 PM

I'm new here and found this place after researching transaction 5f3720dd75ea36efed2bffd7bc136dc8556e600d6cc94f2a82c38880e0d02b64.

The only thing linking it to this topic is that it was swept in the same transaction as the collectible coins. Other than that, it would probably be better to open a new topic in Bitcoin Technical Support.

Quote

On a certain day (which I honestly don't remember), I accessed bitaddress.org to generate a wallet for my godson. I'm a tech person, so I took every precaution when accessing the site (Mac/Safari or Chrome), generating the document, and even when printing it. I chose to take my laptop to the printer and connected it via a USB cable (I've worked with printer drivers for years).
~
I can't stop thinking about where I went wrong in this process.

I see several potential points of failure:

Bitaddress has many phishing clones, but I've never read anything bad about Bitaddress itself. Usually a small typo is enough.
The warning on Bitaddres.org with one s exists for a reason!
You say you took every precaution, but it sounds like you used the online website instead of using it offline, and wiping your computer afterwards.
The printer may potentially be a problem too, but that's unlikely considering it was swept together with other coins.

raghavsood

copper member

Activity: 406

Merit: 485

Track Burns @ burned.money

Quote from: raghavsood on August 07, 2024, 03:44:41 AM

✂️
If you hodl any items from RC, I would encourage you to join the public telegram channel, or run "/subscribe https://collectible.money/creator/raritycheck" via the collectible money bot to receive updates when any RC items are peeled

For items in the collectibles tracker, you can use the telegram bot to subscribe to specific creators, series, or items (or join the public channel for everything).

For arbitrary public addresses, some explorers offer notification emails - there's also some services focusing just on alerts out there, but I haven't used any personally to recommend.

Before building the tracker, I used to just import my items' addresses into an electrum watch-only wallet and leave it running in the background - worked well enough (although not great, as I still got burned by Yogg while I was asleep)

gpfrag

jr. member

Activity: 121

Merit: 3

I'm amazed at the speed of which notification and publishing of activity took place.

Is there a way to set up alerts for transactions/movement on personal public addresses so that you're instantly notified if something is happening with one of your coins?

I'd like to set something up so I get an alert on my phone jic.

Thanks

MoparMiningLLC

legendary

Activity: 2254

Merit: 2419

EIN: 82-3893490

Quote from: raghavsood on August 11, 2024, 12:00:34 AM

Quote from: MoparMiningLLC on August 10, 2024, 11:52:18 PM

2 lost coins should show as redeemed.

For silver or alloy?

Just manually checked all remaining addresses that show funded for both series, and mempool.space shows them as funded still as well.

Would be great to see addresses/txids to rule out a case where a redeemed coin has a different address than the one published on the RC site.

ahh yea I see your post now - it was one of ea that I knew of. and you got that covered in your post.

raghavsood

copper member

Activity: 406

Merit: 485

Track Burns @ burned.money

Quote from: MoparMiningLLC on August 10, 2024, 11:52:18 PM

2 lost coins should show as redeemed.

For silver or alloy?

Just manually checked all remaining addresses that show funded for both series, and mempool.space shows them as funded still as well.

Would be great to see addresses/txids to rule out a case where a redeemed coin has a different address than the one published on the RC site.

raghavsood

copper member

Activity: 406

Merit: 485

Track Burns @ burned.money

Quote from: ironworld on August 10, 2024, 07:55:16 PM

Hi everyone!

I'm new here and found this place after researching transaction 5f3720dd75ea36efed2bffd7bc136dc8556e600d6cc94f2a82c38880e0d02b64.

On a certain day (which I honestly don't remember), I accessed bitaddress.org to generate a wallet for my godson. I'm a tech person, so I took every precaution when accessing the site (Mac/Safari or Chrome), generating the document, and even when printing it. I chose to take my laptop to the printer and connected it via a USB cable (I've worked with printer drivers for years).

I had saved the address 1EXkmyQEtNL351Q9ovUsCvsDTYtx4hVgCf to check the balance using the BlueWallet app, to see how my godson's savings were doing. Tonight, when I accessed the website, I was shocked! The funds had been moved. I immediately spoke to my godson's father, who confirmed that the funds hadn't been moved by him and that the paper was safely stored in a vault, as I had given it to him.

I can't stop thinking about where I went wrong in this process.

Thank you for the datapoint.

If you're certain you used bitaddress and not walletgenerator, my sense is that both you and raritycheck ended up on fake sites of the respective generators, which were compromised.

If you generated any other wallets using this same method, I would suggest sweeping them immediately.

MoparMiningLLC

legendary

Activity: 2254

Merit: 2419

EIN: 82-3893490

2 lost coins should show as redeemed.

Topic: RarityCheck VIBGYOR gilded #12 swept yesterday. - page 4. (Read 3976 times)