Bitcoin Forum>Bitcoin>Bitcoin Discussion
Pages:
Author

Topic: Someone tried to retrieve my mtgox password (Read 2872 times)

LightRider
legendary
Activity: 1500
Merit: 1021
I advocate the Zeitgeist Movement & Venus Project.
Someone tried to retrieve my mtgox password
June 28, 2011, 04:13:11 PM
#22
Quote
This is an automatically generated Delivery Status Notification

THIS IS A WARNING MESSAGE ONLY.

YOU DO NOT NEED TO RESEND YOUR MESSAGE.

Delivery to the following recipient has been delayed:

    [email protected]

Message will be retried for 2 more day(s)

Technical details of temporary failure:
The recipient server did not accept our requests to connect. Learn more at http://mail.google.com/support/bin/answer.py?answer=7720
[w001.mo.us.xta.net (1): Connection refused]

Just got this.
bitcon
legendary
Activity: 2212
Merit: 1008
Re: Someone tried to retrieve my mtgox password
June 28, 2011, 01:32:53 PM
#21
if you use(d) the same password for mt. gox and your email account, then they might be able to send a password reminder to your email and check your email and get your password that way or even lock you out of your own account.  never use the same password twice.
Mousepotato
hero member
Activity: 896
Merit: 1000
Seal Cub Clubbing Club
Re: Someone tried to retrieve my mtgox password
June 28, 2011, 01:26:10 PM
#20
Quote from: Dirt Rider on June 27, 2011, 04:39:40 PM
No.  Anyone can send you an email and set the reply-to address to be anything they want.
I'm pretty sure he was being sarcastic Smiley
dacoinminster
legendary
Activity: 1260
Merit: 1031
Rational Exuberance
Re: Someone tried to retrieve my mtgox password
June 28, 2011, 11:25:34 AM
#19
They replied to my support ticket as follows:

Ticket #****: Re: [Mt.Gox] Password recovery

Your request (#****) has been deemed solved.

To review, comment and reopen the request, follow the link below:
http://support.mtgox.com/tickets/****


Jiraiya, Jun-28 18:33 (JST):

Hello,

We have identified an issue with our password reset system that caused many users to receive unsolicited password reset emails. It is likely this was the cause of you receiving this email.

We would, however, like to remind you that having the same password for multiple online accounts is not secure.

Thanks,
Regards,
Jiraiya

MtGox.com Team
Rogue Star
member
Activity: 89
Merit: 10
Re: Someone tried to retrieve my mtgox password
June 27, 2011, 09:36:35 PM
#18
at first i thought it was someone trying to reset my password because the IP was off. then I thought it was a phishing attempt when i saw the reply to address was weird after responding. i don't know what to think now, but i'm still leaning toward phishing :-/

in any case i forward it to mtgox which triggered the support site to create a ticket, hopefully i'll hear back from them.
kwukduck
legendary
Activity: 1937
Merit: 1001
Re: Someone tried to retrieve my mtgox password
June 27, 2011, 08:54:18 PM
#17
too, as have 2 of my friends.
Vinnie
full member
Activity: 126
Merit: 100
Re: Someone tried to retrieve my mtgox password
June 27, 2011, 08:16:29 PM
#16
I got it, too.
dacoinminster
legendary
Activity: 1260
Merit: 1031
Rational Exuberance
Re: Someone tried to retrieve my mtgox password
June 27, 2011, 08:04:57 PM
#15
I got it too. I'm relieved that lots of people got this - I thought maybe someone had hacked my email and they were trying to reset my password because they knew they had access to my email.

Of course, I don't have enough BTC to be worth stealing, so they would be disappointed even if it worked Smiley
Seraphim401
full member
Activity: 215
Merit: 100
Live Long and Prosper
Re: Someone tried to retrieve my mtgox password
June 27, 2011, 05:18:41 PM
#14
I got the same e-mail,be careful guys.
 
Dirt Rider
member
Activity: 111
Merit: 10
Re: Someone tried to retrieve my mtgox password
June 27, 2011, 04:55:44 PM
#13
Quote from: LightRider on June 27, 2011, 04:48:19 PM
I have received a similar message, although I had not made such a request. The IP address the request originated from is a tor server in Germany. Someone is definitely trying to break back into the accounts.

Ok so someone is for some reason triggering password recovery requests.  I am not sure what they have to gain from that, unless they think they can somehow intercept the outbound email messages from MtGox, that's a scary thought.
nosfera2
newbie
Activity: 42
Merit: 0
Re: Someone tried to retrieve my mtgox password
June 27, 2011, 04:51:53 PM
#12
Quote from: Dirt Rider on June 27, 2011, 04:39:40 PM
Quote from: nosfera2 on June 27, 2011, 04:37:36 PM
No way! They hacked Mt Gox again and changed the domain name!

No.  Anyone can send you an email and set the reply-to address to be anything they want.

Whooshitywhoo!  Wink
Dirt Rider
member
Activity: 111
Merit: 10
Re: Someone tried to retrieve my mtgox password
June 27, 2011, 04:51:27 PM
#11
Quote from: EricJ2190 on June 27, 2011, 04:47:34 PM
All of Mt. Gox's mail originates from the server w001.mo.us.xta.net. Just check the headers on your account recovery emails. The fact that is shows up in the From address of the password reset email is probably just a mistake on their part.

So confirm that the address is real by looking at the header of the suspect email?

Sure, I suppose it's possible that MtGox just goofed on the reply-to, which of course means that someone requested password recovery for my account and also ploum's (and it wasn't us).
LightRider
legendary
Activity: 1500
Merit: 1021
I advocate the Zeitgeist Movement & Venus Project.
Re: Someone tried to retrieve my mtgox password
June 27, 2011, 04:48:19 PM
#10
I have received a similar message, although I had not made such a request. The IP address the request originated from is a tor server in Germany. Someone is definitely trying to break back into the accounts.
twobitcoins
full member
Activity: 144
Merit: 100
Re: Someone tried to retrieve my mtgox password
June 27, 2011, 04:48:05 PM
#9
I received such an email.  I determined it was most likely from Mt. Gox because I had recently changed my email address on Mt. Gox to a new, unique one and the email came to that address.  The strange From field is disconcerting, but I think it is a misconfiguration rather than an attack in this case.
EricJ2190
full member
Activity: 134
Merit: 102
Re: Someone tried to retrieve my mtgox password
June 27, 2011, 04:47:34 PM
#8
All of Mt. Gox's mail originates from the server w001.mo.us.xta.net. Just check the headers on your account recovery emails. The fact that is shows up in the From address of the password reset email is probably just a mistake on their part.
Dirt Rider
member
Activity: 111
Merit: 10
Re: Someone tried to retrieve my mtgox password
June 27, 2011, 04:47:34 PM
#7
Quote from: Vince Torres on June 27, 2011, 04:40:54 PM
I think this is a conspiracy. We need some answers.

Oh give me a break.  Have you never received spam and/or phishing emails?
ploum
sr. member
Activity: 428
Merit: 253
Re: Someone tried to retrieve my mtgox password
June 27, 2011, 04:41:31 PM
#6
With the list of users and their email address having been made public, I'm astonished we are not receiving more of those  Roll Eyes
Vince Torres
sr. member
Activity: 337
Merit: 250
Re: Someone tried to retrieve my mtgox password
June 27, 2011, 04:40:54 PM
#5
I think this is a conspiracy. We need some answers.
Dirt Rider
member
Activity: 111
Merit: 10
Re: Someone tried to retrieve my mtgox password
June 27, 2011, 04:39:40 PM
#4
Quote from: nosfera2 on June 27, 2011, 04:37:36 PM
No way! They hacked Mt Gox again and changed the domain name!

No.  Anyone can send you an email and set the reply-to address to be anything they want.
Dirt Rider
member
Activity: 111
Merit: 10
Re: Someone tried to retrieve my mtgox password
June 27, 2011, 04:38:31 PM
#3
I received the same email.  Looks like some form of phishing attempt.
Pages:
Bitcoin Forum>Bitcoin>Bitcoin Discussion
Jump to: