Pages:
Author

Topic: Robbed more than 100,000 NXT - page 2. (Read 4362 times)

newbie
Activity: 44
Merit: 0
September 22, 2014, 04:30:18 PM
#41
Did you recovered it back  ?
hero member
Activity: 756
Merit: 506
September 22, 2014, 04:27:11 PM
#40
Jeff Garzik (Bitcoin core developer) thinks there could be a backdoor in NXT that is resulting in all these thefts.

Sorry but I'm not buying it that some brute forcer is inserting every quotation from the bible into the password generator, or that they can crack 125 character passwords consisting of gibberish.



Can you post a link to something he has written about this.

https://twitter.com/jgarzik/status/511866795582427136
newbie
Activity: 56
Merit: 0
September 22, 2014, 04:23:38 PM
#39
Jeff Garzik (Bitcoin core developer) thinks there could be a backdoor in NXT that is resulting in all these thefts.

Sorry but I'm not buying it that some brute forcer is inserting every quotation from the bible into the password generator, or that they can crack 125 character passwords consisting of gibberish.



Can you post a link to something he has written about this.
legendary
Activity: 1181
Merit: 1002
September 22, 2014, 04:15:18 PM
#38
the following possibilities come to my mind:

password weak: you should disclose the now completely useless password
bad client: which one are you running?
bad third party software / keylogger: possible?
fishing: have you entered your passphrase on an external server or downloaded the client from a "fake" source?
physical theft: did you write it on paper and could this have been copied/stolen?
full member
Activity: 145
Merit: 100
September 22, 2014, 03:59:32 PM
#37
Thanks starik69: google translate proposed "citizen must" for the part provided - but russian text is impossible to understand. (if you don't speak it ;-))

All right google translated, but it's not the beginning of the password it is composed of several phrases and symbols.
full member
Activity: 182
Merit: 100
September 22, 2014, 03:58:28 PM
#36
Jeff Garzik (Bitcoin core developer) thinks there could be a backdoor in NXT that is resulting in all these thefts.

Sorry but I'm not buying it that some brute forcer is inserting every quotation from the bible into the password generator, or that they can crack 125 character passwords consisting of gibberish.



There probably is a backdoor, too many NXT coins have been stolen with No explanation as to how.


NXT is hacked.
legendary
Activity: 1181
Merit: 1002
September 22, 2014, 03:55:54 PM
#35
Sorry but I'm not buying it that some brute forcer is inserting every quotation from the bible into the password generator, or that they can crack 125 character passwords consisting of gibberish.

This is exactly what is happening and has happened for months: opening lines, bible quotes, citations, etc. in different languages and from different sources.
How do you think doctorevil found the 1984 quote that leads to the genesis account?

These are simply no passwords but crap.
And that's not bruteforce but dictionary attacks.
full member
Activity: 145
Merit: 100
September 22, 2014, 03:51:37 PM
#34
Oh, not Bible but russian constitution?  Shocked

UGOLOVNYI KODEKS, tam ishi parol.  Wink
legendary
Activity: 1181
Merit: 1002
September 22, 2014, 03:48:26 PM
#33
Thanks starik69: google translate proposed "citizen must" for the part provided - but russian text is impossible to understand. (if you don't speak it ;-))
hero member
Activity: 756
Merit: 506
September 22, 2014, 03:46:03 PM
#32
Jeff Garzik (Bitcoin core developer) thinks there could be a backdoor in NXT that is resulting in all these thefts.

Sorry but I'm not buying it that some brute forcer is inserting every quotation from the bible into the password generator, or that they can crack 125 character passwords consisting of gibberish.

legendary
Activity: 1367
Merit: 1000
September 22, 2014, 03:44:41 PM
#31
Oh, not Bible but russian constitution?  Shocked

Password weak -> money loss. Can not do nothing.  Cry

If NXT password system is so weak why we do not see hacking of >10M accounts? (Bter or Klee were hacked not because of password)  Roll Eyes
full member
Activity: 145
Merit: 100
September 22, 2014, 03:33:40 PM
#30
Why do you need my account and password? You do not believe that someone stole my NXT? Password I do not want to disclose a number of reasons, which do not consider it necessary to describe here.

1) Your pass phrase would confirm your claim is legitimate. And yes, why would anyone believe your claim in this nest of vipers that this forum is Smiley
2) Your pass phrase would shed light on whether your account was hacked due to the weak pass phrase, which it most likely was because Google search reveals the part of the pass phrase you provided is in Google's database.

Want to Pick up on password using google to my account.
I can send you any messages from my account to confirm ownership. Password will not write.
The question is how to punish a thief? Maybe I should write a letter to the stock exchanges with his account, or are there any ways?
sr. member
Activity: 336
Merit: 260
September 22, 2014, 03:28:12 PM
#29
Why do you need my account and password? You do not believe that someone stole my NXT? Password I do not want to disclose a number of reasons, which do not consider it necessary to describe here.

1) Your pass phrase would confirm your claim is legitimate. And yes, why would anyone believe your claim in this nest of vipers that this forum is Smiley
2) Your pass phrase would shed light on whether your account was hacked due to the weak pass phrase, which it most likely was because Google search reveals the part of the pass phrase you provided is in Google's database.
full member
Activity: 182
Merit: 100
September 22, 2014, 03:27:34 PM
#28
Join the club, mine disappeared mysteriously too. No more NXT for me, and don't tell me it was my 128 character randomly generated cut and paste password either.

The NXT asset exchange and wallets were compromised I seen.

I would avoid using NXT.
full member
Activity: 145
Merit: 100
September 22, 2014, 03:23:31 PM
#27


that's part of my password:

Uhf;lfybyj,zpfy

more I see no reason to write my password

If you've lost all your funds from the account, why wouldn't you share the password?

Unless you're using the password somewhere else or haven't told the complete truth, you have no reason not to give us the password so we can verify the accuracy of your claims.

Why do you need my account and password? You do not believe that someone stole my NXT? Password I do not want to disclose a number of reasons, which do not consider it necessary to describe here.
legendary
Activity: 1344
Merit: 1001
September 22, 2014, 03:18:44 PM
#26


that's part of my password:

Uhf;lfybyj,zpfy

more I see no reason to write my password

If you've lost all your funds from the account, why wouldn't you share the password?

Unless you're using the password somewhere else or haven't told the complete truth, you have no reason not to give us the password so we can verify the accuracy of your claims.
legendary
Activity: 1181
Merit: 1002
September 22, 2014, 03:18:06 PM
#25
This guy did, first known victim of this thief:
https://nxtforum.org/general-discussion/help!-my-nxt-account-stolen-account-for-nxt-wczn-dgql-xm69-62l3n/msg92255/#msg92255
His pass was just a random phrase from Genesis, complete with full stop.

Yes, and it was a simple dictionary attack with the Bible quotes as source. I wonder why people don't use the pass phrase provided the NXT client, it's random enough and can't be cracked in a billion years.

that's part of my password:

Uhf;lfybyj,zpfy

more I see no reason to write my password


Googling this gives me a referat.ru hit - is it possible that the reminder can also be found there?
sr. member
Activity: 336
Merit: 260
September 22, 2014, 03:14:50 PM
#24
that's part of my password:

Uhf;lfybyj,zpfy

more I see no reason to write my password

Does this mean anything in another language/keyboard layout? Google says it does.
full member
Activity: 145
Merit: 100
September 22, 2014, 03:12:11 PM
#23
This guy did, first known victim of this thief:
https://nxtforum.org/general-discussion/help!-my-nxt-account-stolen-account-for-nxt-wczn-dgql-xm69-62l3n/msg92255/#msg92255
His pass was just a random phrase from Genesis, complete with full stop.

Yes, and it was a simple dictionary attack with the Bible quotes as source. I wonder why people don't use the pass phrase provided the NXT client, it's random enough and can't be cracked in a billion years.

that's part of my password:

Uhf;lfybyj,zpfy

more I see no reason to write my password
full member
Activity: 139
Merit: 100
September 22, 2014, 03:06:29 PM
#22
Thats why i dont invest on nxt   Grin
Pages:
Jump to: