Pages:
Author

Topic: Silkroad 2.0 under attack....again - page 2. (Read 6081 times)

hero member
Activity: 630
Merit: 500
September 13, 2014, 05:10:32 AM
#32
You would think the FBI would have learnt its lesson from the first Silkroad takedown. Even if they were to shut down Silkroad 2, Silkroad 3 would soon pop up (I think SR2 was up within a month of SR1 being taken down), that's not even factoring in all the new developments like Open Bazaar etc.
sr. member
Activity: 980
Merit: 256
Decentralized Ascending Auctions on Blockchain
September 13, 2014, 01:02:27 AM
#31
Is it really possible to steal coins from SR 2.0? They had removed the escrow system many months ago, and replaced it with the multi-sig wallet system. If SR 2.0 does not hold Bitcoins of its users anymore, how it is possible to steal the coins from that site?

Anyway, if a robbery did actually happened, then I am sure that the admins will refund the lost coins. They had already did that during the last robbery.

They havent implemented multi sig yet, it's in beta for a small number of users.

Also, the original "hack" wasn't a hack.

Defcon et al, realised they were playing a very dangerous game, and that the money they were making wasn't worth it. So they came up with a figure - say $3 million that they wanted for their own risk. They stole it themselves, blaming transaction malleability with some lame ass excuse about how they were moving all the money into the hot wallet just as the hacker struck (lol)

Once they had their little nest eggs stashed away so they had money to disappear if the FBI came calling or they felt under threat they returned with their "sweaty and humbled" speech about how they would repay everyone, then they repay everyone with a percentage of the fees they're collecting from users. (they're probably still skimming, I bet 100% of fees are not repaying people)

It makes sense, if I was them I'd do the exact same thing, rather than earn $10,000 a week or whatever knowing at any time the FBI could bust you and you'd have risked everything for a measly sum, start by stealing a good amount so you're safe then let the users repay that...


I understand the part about them stealing the bitcoin at first so to have to not take on the risk of being caught by law enforcement. What I don't understand is why they continued to operate the site after the "hack" - their risk of jail time is still present.

I do agree that the timing of the previous attack was very suspicious as it coincided with a time when the amount of money held in escrow was more or less at an all time high. 

because they want to continue making money.

They stole their nest egg, now they're adding to it. I do not believe that it's taken so long to repay the hack, there has also been some very suspicious scams. Obvious scammers made vendors with good feedback, accounts hijacked. I genuinely believe the crew behind SR2 are running it as a long con. They both steal and scam, and run it as a real market in order to maximise their profits.

They stole $3m or thereabouts.

They set up people like RaulGallardo with vendor accounts, and stole tens of thousands. Quite a few weird vendors have popped up and stolen money even when vendor reg was closed...somehow. So I guess they probably steal a small proportion, I dunno, say 3% of the money going through the site.

They also run it legitimately, getting 4% fees or so, but I bet they are using half of that to repay victims and half for themselves, hence why it's taken since february to repay.

These guys are professional crooks, to think they're running their highly illegal darknet market in an honest way is laughable. Look what happened to the last guy who did that.
full member
Activity: 238
Merit: 100
September 12, 2014, 10:57:06 PM
#30
Is it really possible to steal coins from SR 2.0? They had removed the escrow system many months ago, and replaced it with the multi-sig wallet system. If SR 2.0 does not hold Bitcoins of its users anymore, how it is possible to steal the coins from that site?

Anyway, if a robbery did actually happened, then I am sure that the admins will refund the lost coins. They had already did that during the last robbery.

They havent implemented multi sig yet, it's in beta for a small number of users.

Also, the original "hack" wasn't a hack.

Defcon et al, realised they were playing a very dangerous game, and that the money they were making wasn't worth it. So they came up with a figure - say $3 million that they wanted for their own risk. They stole it themselves, blaming transaction malleability with some lame ass excuse about how they were moving all the money into the hot wallet just as the hacker struck (lol)

Once they had their little nest eggs stashed away so they had money to disappear if the FBI came calling or they felt under threat they returned with their "sweaty and humbled" speech about how they would repay everyone, then they repay everyone with a percentage of the fees they're collecting from users. (they're probably still skimming, I bet 100% of fees are not repaying people)

It makes sense, if I was them I'd do the exact same thing, rather than earn $10,000 a week or whatever knowing at any time the FBI could bust you and you'd have risked everything for a measly sum, start by stealing a good amount so you're safe then let the users repay that...


I understand the part about them stealing the bitcoin at first so to have to not take on the risk of being caught by law enforcement. What I don't understand is why they continued to operate the site after the "hack" - their risk of jail time is still present.

I do agree that the timing of the previous attack was very suspicious as it coincided with a time when the amount of money held in escrow was more or less at an all time high. 
legendary
Activity: 1344
Merit: 1000
September 12, 2014, 10:30:53 PM
#29
the silk road bitcoin sold for $900 double the market value !


full member
Activity: 231
Merit: 100
September 12, 2014, 10:12:53 PM
#28
they cannot win this in the long term
legendary
Activity: 1148
Merit: 1014
In Satoshi I Trust
September 12, 2014, 10:10:01 AM
#27
i guess the police or the fbi are attacking them. but there is not only silk road 2.0 , there are more.
sr. member
Activity: 369
Merit: 250
September 12, 2014, 08:21:27 AM
#26

FORUM STATS for the silkroad community. I would say probably less than a quarter of SR members are on the forums but who knows.

794376 Posts in 41569 Topics by 60805 Members. Latest Member: lokiau
Latest Post: "Re: norway.." ( Today at 01:13:04 pm )
View the most recent posts on the forum.
hero member
Activity: 1022
Merit: 500
September 12, 2014, 07:56:14 AM
#25
legendary
Activity: 1974
Merit: 1029
September 12, 2014, 07:55:43 AM
#24
Anyone please , what is this Silkroad thing ?

What were the google/ddg/wikipedia searches you tried?
staff
Activity: 3500
Merit: 6152
September 12, 2014, 07:44:35 AM
#23
Anyone please , what is this Silkroad thing ?
sr. member
Activity: 369
Merit: 250
September 12, 2014, 07:39:32 AM
#22
12+ hours and no response from Defcon...
Vendors are already moving to Evolution and Agora. The ship is going down!!!
sr. member
Activity: 369
Merit: 250
September 12, 2014, 07:26:59 AM
#21
Why do you think they will be stolen? Any vulnerability that can be used for such purpose, like the maleability stuff?

You say you have the feeling, but gave no evidence of how it might happens?

I have lost more coins than you will ever own! Period.
This is one response to Defcons last post...


Defcon,

I do not think it was appropriate of you to ignore every single vendors post confirming that all our withdrawls are not working, avoiding the issue entirely, and instead discussing something of much less importance: Market downtime.

You should be responding to the half a dozen + threads in the vendor roundtable asking just what the hell is going on.

Instead, you make a generic post in the public forum, ignoring all of our very serious questions. Not a very good way to show support to the people who make this place possible.

Is the money safe or not?
legendary
Activity: 1092
Merit: 1001
Touchdown
September 12, 2014, 04:20:16 AM
#20
Inb4 Silkroad 3.0
Or Open Bazaar or a fork thereof.
staff
Activity: 3500
Merit: 6152
September 12, 2014, 04:14:22 AM
#19
Execuse my ignorance , but what is Silkroad ? O_O  Cry
sr. member
Activity: 980
Merit: 256
Decentralized Ascending Auctions on Blockchain
September 12, 2014, 03:54:35 AM
#18
Is it really possible to steal coins from SR 2.0? They had removed the escrow system many months ago, and replaced it with the multi-sig wallet system. If SR 2.0 does not hold Bitcoins of its users anymore, how it is possible to steal the coins from that site?

Anyway, if a robbery did actually happened, then I am sure that the admins will refund the lost coins. They had already did that during the last robbery.

They havent implemented multi sig yet, it's in beta for a small number of users.

Also, the original "hack" wasn't a hack.

Defcon et al, realised they were playing a very dangerous game, and that the money they were making wasn't worth it. So they came up with a figure - say $3 million that they wanted for their own risk. They stole it themselves, blaming transaction malleability with some lame ass excuse about how they were moving all the money into the hot wallet just as the hacker struck (lol)

Once they had their little nest eggs stashed away so they had money to disappear if the FBI came calling or they felt under threat they returned with their "sweaty and humbled" speech about how they would repay everyone, then they repay everyone with a percentage of the fees they're collecting from users. (they're probably still skimming, I bet 100% of fees are not repaying people)

It makes sense, if I was them I'd do the exact same thing, rather than earn $10,000 a week or whatever knowing at any time the FBI could bust you and you'd have risked everything for a measly sum, start by stealing a good amount so you're safe then let the users repay that...

legendary
Activity: 1120
Merit: 1000
September 12, 2014, 01:41:50 AM
#17
Why do you think they will be stolen? Any vulnerability that can be used for such purpose, like the maleability stuff?

You say you have the feeling, but gave no evidence of how it might happens?
legendary
Activity: 3766
Merit: 1217
September 12, 2014, 01:09:25 AM
#16
Is it really possible to steal coins from SR 2.0? They had removed the escrow system many months ago, and replaced it with the multi-sig wallet system. If SR 2.0 does not hold Bitcoins of its users anymore, how it is possible to steal the coins from that site?

Anyway, if a robbery did actually happened, then I am sure that the admins will refund the lost coins. They had already did that during the last robbery.
hero member
Activity: 798
Merit: 500
Time is on our side, yes it is!
September 12, 2014, 12:43:45 AM
#15
I have a feeling another 2+ million in BTC is going to be stolen.
Thoughts?


People need to grow up and take better care of their coins.  If you know there will be attacks why leave coins there.  It's just going to undermine Bitcoin and you lose money on top of it so why do it.  I hope your wrong and I'm over reacting because I'm ready for some good news not another circus for the media and trolls to have a beargasm with.
sr. member
Activity: 261
Merit: 250
September 11, 2014, 11:18:15 PM
#14
I would guess that it is the government attempting to determine the location of the SR servers in ways similar to how SR1's servers were found. They likely wanted to do this before SR2 would have time to implement "fixes" to avoid the same vulnerabilities as the FBI's methods were revealed recently.

From what I have read they are being DDoS'ed which is likely something similar to what the FBI did to Sr1.

They actually removed the CAPTCHA months ago.
They have some kind of Captcha today, at least on their forums. I would not discount the governments ability to make some kind of connection to the forum servers and the actual website servers that have the actual market place.
sr. member
Activity: 369
Merit: 250
September 11, 2014, 10:15:33 PM
#13
Posted just now!!!   Cheesy

"Community,

While we continue testing different approaches to blocking the inbound DDoS, we are also processing withdrawals which were delayed by the traffic flood.

We understand how important cashflow is and are prioritizing transmitting all delayed withdrawals to the network over the next four hours.

Please confirm here when you receive your withdrawal.

To our adversaries: You cannot stop us. We will overcome every attack.

Defcon"
Pages:
Jump to: