Topic: Someone hacked my 2013 account, anyway to get it back? (Read 629 times)

Please always try to cross check your sentence before posting for a better understanding of what you are saying tho I get what you mean but look at your error here:
I believe you were to say STEAL so correct it. 👍

You just got your legacy back! Congratulations! Glad for ya! Having a senior member account back is like getting back a lost diamond! Welcome back Room101, hope you will enjoy your stay here after such long time

Snooped a bit . Nice to have you back! Good posts so far, thank you. Get a hat? ask in WO or pm xhomerx10 with a picture to be made into one.

Congrats on getting your account back!

you can just post a signed message on Stake your Bitcoin address here and ask someone to quote and verify your address. that's the easiest way I know and you can archive the post you made on that thread for extra precaution.

Congratulations on getting your account back.
Now there are only two things that are urgent.

Get the negative rating removed and post this screenshot:

here -> Save your nice merit records, here

Thanks!

Can anyone tell me the best place to post an un-editable address, so if this happens again, and next time the thief is smart enough to delete the one address I had posted, I can get it back? Much longer password this time, so should be harder to get my password if the forum is hacked again, but better safe than sorry!

Welcome back Room101!

Excellent idea, thanks

You'll probably want to PM veleor and ask him to remove your negative feedback (he noticed your account had changed hands).

It's mine again Thanks again everyone, I appreciate it

Thanks everyone, much appreciated

To random_australian I confirmed as well that the address has been verified and I guess sooner or later you may get your account back on you and since you already sent message to support your account now is on queued for recovery.

Archive

Verified and Archive

---

The "Room101" profile, apparently, from October 2017 passed to the farmer who bumping topics using a group of accounts: HappyScamp, miTgiB, evilscoop, Room101, naRky, BongaManollo, hansolo93.
Because all these profiles have changed passwords within 20 minutes and after that they began spamming at the same Russian ANN topic.

Archive

Yeah bitcoin core seems to verify blank messages OK, the above don't though, and I don't want to post my email. Try this:

-----BEGIN BITCOIN SIGNED MESSAGE-----
random_australian is Room101 3rd May 2020
-----BEGIN SIGNATURE-----
1FrvANzkcgWvCuVFyfphbDNHbYUMfysd4K
HzvmlD4BCm3190RJ/8P0BGxzSHaAGeVbYJLmizj3TZlnVDBWvOI6wnKkurkp+wMn3wjtxZ/zJM3Sp13Ri7nQi2c=
-----END BITCOIN SIGNED MESSAGE-----

I use this tool https://tools.qz.sg/ online since I am on my mobile but somehow it shows the signature is not valid. Can anyone verify it using Electrum or any other tools to prove that it is indeed correct?

I used this too https://reinproject.org/bitcoin-signature-tool/ but it still shows me the same output.

-----BEGIN BITCOIN SIGNED MESSAGE-----
My account Room101 has been hacked/lost. Please reset the email to ########### ( The original account email I signed up with) The current date is 3rd May 2020
-----BEGIN SIGNATURE-----
1FrvANzkcgWvCuVFyfphbDNHbYUMfysd4K
IGxvg1b3xa6K8LdStR6hG/hoJedNQr9vB+JjXml2GZq3P78EA3BU9znKxG2LY0e6pzNc+peysP2n8Fb98ZA83Cw=
-----END BITCOIN SIGNED MESSAGE-----

Here is the unedited post where I posted that address: https://bitcointalksearch.org/topic/m.15807155

Can someone please check I signed correctly. By some miracle I found the old account.

Thanks everyone for you help. Now to find a nice mint 2011 Casascius!

EDIT: Just wanted to confirm it was OK if I didn't actually put anything in the message field of the above signature. I just used the bitcoin address and signed a blank message. So in Bitcoin Core, you are verifying a blank message against with the above signature against the above address

EDIT2: It just occurred to me unless you specify the date in the message being signed you could just be pasting a signature someone posted years ago. I have sent support a signed message with date and email, I don't want to post it here for obvious reasons, but I'm pretty sure it worked correctly. Thank you so much everyone for all your help, as soon as I get back in I'll send you all some merit, I appreciate you taking the time!

as far as I know, bpip didn't record anything(like password change, email change etc..) before it was launched and the OP said that his last post was July 2017. and his theory is that his account was hacked around October (that same year) since in the post history it shows that the language being used change from English to Cyrillic. the OP's only option to prove that he owns the account is to sign a message using the address provided by krislaw which was found on the OP's post history.

The account has been inactive for a long time and it's been almost a year on November 26, 2019.

And you said that you last opened it and posted in 2017.

If indeed the account was hacked by someone else and then the email and password were changed, of course it will appear in the Mod Log section in Bpip.

But there is no notification of changes to email and password.

https://bpip.org/profile.aspx?id=129815



if you really own the account you must be able to prove ownership with the signed Bitcoin Address message that you have posted and the primary email that the account has. if these conditions cannot be met, then the account will not be able to be opened again.

If you are sure your account was hacked and you were not the recent one handling that account than I fear to say that you have lost your account. In the year 2013, there was a breach and millions of forum accounts were been hacked. Even if you had security question, it might have made it a lot easier for the hacker to get acess to your account. Also, if you had a simple password than the chances would have been way lot higher that your account is hacked as the hacker had the password hashes in sha256script.

All you can do is report the account and try contacting admins with signed message from the address mentioned by @krislaw. Atleast you can lock the account if you are not given acess again because it is important that the account should not be used to scam anyone as you might be the suspect behind happing anything similar.

I suspect your account is hacked by referring this thread posted by theymos: https://bitcointalksearch.org/topic/about-the-recent-server-compromise-1067985

Did you include a secret question option when creating your account? You can try to recover the account using that, this action would get the account locked and the hacker would not have access to it while you wait for the recovery process to be completed.
Having a signed message is not a prerequisite for accounts' recoveries, but it will quicken the process and convince users to leave negative ratings warning users not to deal with such accounts.