Topic: silk road 2 hacked - page 2. (Read 4607 times)
Re the malleability issue , with Gox publishing it so ...publicly, I bet these kind of attacks went up....oh maybe 10,000% ?
gotta say that occurred to me too ..... all the hints he was dropping ....
no one believes it was an outside job from what I'm reading on the web. These guys better pray they can't be tracked
Even if they did steal it and their identities were published, I don't think any harm will come to them. Lots of empty threats and that's about it.
If they are identified they wont last a few months.
no one believes it was an outside job from what I'm reading on the web. These guys better pray they can't be tracked
They were operating an illegal website, who is going to contact the authorities to track them down.
That is what made the real SR so unique, it was run for a long time without the operator running away with everyone's coins the first chance he got. DPR could have quietly disappeared after 1 year with >100,000 coins, but instead he stuck around and continued to run the service.
In the end this is why DPR got caught as the smart thing to do when running a website where the entire US government is after you is to cut out after making enough and run. The operators of SR 2.0 seemed to have learned the lesson well.
Leaving btc on an exchange run by criminals dealing in illegal wares - what could go wrong?
no one believes it was an outside job from what I'm reading on the web. These guys better pray they can't be tracked
Even if they did steal it and their identities were published, I don't think any harm will come to them. Lots of empty threats and that's about it.
no one believes it was an outside job from what I'm reading on the web. These guys better pray they can't be tracked
wait a second - how the hell would this vulnerability allow withdrawing unlimited amount of bitcoins?
if you withdraw coins and dupe the TX with a wrong hash you are not getting double coins in any way and why would a marketplace then refund the customer? it doesn't make any sense.
if you deposit coins and dupe the TX with a wrong hash then you may see "unconfirmed" coins under your balance that will never get any confirmations.
explain me if I misunderstand anything here
I'm guessing it happened with mutating the tx ids.if you withdraw coins and dupe the TX with a wrong hash you are not getting double coins in any way and why would a marketplace then refund the customer? it doesn't make any sense.
if you deposit coins and dupe the TX with a wrong hash then you may see "unconfirmed" coins under your balance that will never get any confirmations.
explain me if I misunderstand anything here
User requests withdrawal
Wallet sends funds, user mutates tx
wallet checks tx, cant find it, resends funds or credits user's account.
rinse/repeat
Just a guess, no clue how viable that really would be.
So my bitcoin just got rarer now ?
Hackers are not hodlers, but sodlers.
So my bitcoin just got rarer now ?
Oh yeah, let's use malleability problem we never heard of before to steal your coins 
We might hear few of these more.
We might hear few of these more.
Maybe it was Steve?
Reddit users speak about 88000 coins. Seems serious money got hacked.
http://www.reddit.com/r/Bitcoin/comments/1xtv92/breaking_silk_road_2_hacked_over_88000_bitcoins/
http://www.reddit.com/r/Bitcoin/comments/1xtv92/breaking_silk_road_2_hacked_over_88000_bitcoins/
SELL ALL YOUR COINS PEOPLE
Wow...
Reddit users speak about 88,000 coins. Seems serious money got hacked.
http://www.reddit.com/r/Bitcoin/comments/1xtv92/breaking_silk_road_2_hacked_over_88000_bitcoins/
http://www.reddit.com/r/Bitcoin/comments/1xtv92/breaking_silk_road_2_hacked_over_88000_bitcoins/
wait a second - how the hell would this vulnerability allow withdrawing unlimited amount of bitcoins?
if you withdraw coins and dupe the TX with a wrong hash you are not getting double coins in any way and why would a marketplace then refund the customer? it doesn't make any sense.
if you deposit coins and dupe the TX with a wrong hash then you may see "unconfirmed" coins under your balance that will never get any confirmations.
explain me if I misunderstand anything here
if you withdraw coins and dupe the TX with a wrong hash you are not getting double coins in any way and why would a marketplace then refund the customer? it doesn't make any sense.
if you deposit coins and dupe the TX with a wrong hash then you may see "unconfirmed" coins under your balance that will never get any confirmations.
explain me if I misunderstand anything here
It wouldn't. However in mtgox's case they had their wallet set to auto approve these requests and were just giving people bitcoins out of their hot wallet that they didn't own. Basically they were giving people attempting to fraud them other people's bitcoins.
What if Mt.Gox also has no coins ? Maybe that guy just stole all the coins and wants to get out.
wait a second - how the hell would this vulnerability allow withdrawing unlimited amount of bitcoins?
if you withdraw coins and dupe the TX with a wrong hash you are not getting double coins in any way and why would a marketplace then refund the customer? it doesn't make any sense.
if you deposit coins and dupe the TX with a wrong hash then you may see "unconfirmed" coins under your balance that will never get any confirmations.
explain me if I misunderstand anything here
I'm guessing it happened with mutating the tx ids.if you withdraw coins and dupe the TX with a wrong hash you are not getting double coins in any way and why would a marketplace then refund the customer? it doesn't make any sense.
if you deposit coins and dupe the TX with a wrong hash then you may see "unconfirmed" coins under your balance that will never get any confirmations.
explain me if I misunderstand anything here
User requests withdrawal
Wallet sends funds, user mutates tx
wallet checks tx, cant find it, resends funds or credits user's account.
rinse/repeat
Just a guess, no clue how viable that really would be.
This.
Most people are not tech savvy. They see "flaw in bitcoin!" in the news or hear it from their friends, and scammers like this SR guy use that as a pretext to steal peoples coins, hoping to get away with it.
Jump to: