Stealing Bitcoins from online wallets with 2FA

CrazyCraig

sr. member

Activity: 501

Merit: 340

Bye Felisha!

Quote from: Flor1982 on October 03, 2017, 06:13:57 PM

I trusted 2FA features and security because given codes are constantly changing, even our mobile cellphone will be lost and stolen still it is hard for the thieves to open our wallet because of password and 2FA is required. But still we should give consideration the possibility of this advice but for now the 2FA features is today's the most safest security if this will fail the possibilty of 3FA will be the alternative.

2fa isnt the safest. I believe a better solution would be to use a multi device authentication technique.

bajing

legendary

Activity: 1176

Merit: 1001

The most Professional Cryptocurrency Casino

In fact the error lies with the account owner because he is not careful maybe he open the address that given by the hacker and he is not aware with it. 2fa is just one additional security tool but much safer if you store bitcoin in offline wallet.

khaled0111

legendary

Activity: 2520

Merit: 2853

Top Crypto Casino

Being online is not safe and nothing is 100% secure especially where there is money and second factor authentication or two-step verification is just another step to more secure accounts.
You have to do what you have to do and take all security measures and hope you don't get hacked because if you don't, you have better to stop dealing online because you are afraid of thiefs.

MFahad

hero member

Activity: 2464

Merit: 644

Eloncoin.org - Mars, here we come!

Hackers are made to break security,Locks,Passwords. You're not safe if you're mobile network or online wallet user. For hackers its easy to exploited both. That's why i recommend downloaded wallets.
Even though 2fa is a very good security but still i have heard people bypass 2fa and hack into people account. Hackers always find a way to crack even the most secure online systems.

Raxitto

sr. member

Activity: 420

Merit: 250

The first thing to be learned by any new crypto-currency user is the opening phrase of this article: exchanges are not wallets. Therefore, NEVER keep all your funds in one of these companies.
If you are interested in doing trade or any other operation, leave in exchange only the value that you will use in operations.
Another important tip is to enable two-factor authentication (known as 2FA). The exchanges usually offer the option to send the code by email, cell phone or both. Thus, you can identify if your account is being hacked and prevent the theft of funds. Some hardware wallets, such as the Nano S Ledger, allow for storage of several different currencies, which gives the less savvy user the convenience of not having to create multiple wallets in different locations.

Dalmar

hero member

Activity: 1092

Merit: 500

Life is short, practice empathy in your life

Second level of protection brings a lot of new features with offering good level of security.3 type is known:Something you have like device,something you are eye or finger print,something you know like passwords or seeds. Breaking this type of authentication is only possible with social engineering.

shinratensei_

legendary

Activity: 3080

Merit: 1024

Leading Crypto Sports Betting & Casino Platform

Quote from: Flor1982 on October 03, 2017, 06:13:57 PM

Quote from: aleksej996 on September 19, 2017, 06:53:04 PM

I see people calling for 2FA as a safety mechanism for their accounts even tho there is a huge vulnerability in the mobile networks known for years now.
2FA just increases the complexity of the attack, it doesn't stop it at all. Here is an article from The Hacker News that came out today about using 2FA on Bitcoin online wallets like Coinbase, although they say that it isn't a vulnerability in Coinbase at all but in the mobile system design flaws instead.

https://thehackernews.com/2017/09/hacking-bitcoin-wallets.html

The conclusion here is that you shouldn't consider a mobile network safe.

I trusted 2FA features and security because given codes are constantly changing, even our mobile cellphone will be lost and stolen still it is hard for the thieves to open our wallet because of password and 2FA is required. But still we should give consideration the possibility of this advice but for now the 2FA features is today's the most safest security if this will fail the possibilty of 3FA will be the alternative.

Have you read the whole article dude? I know that 2 fa code is constantly changing but what if the hackers could listen or read your 2fa code that's sent to your mobile phone? it's dangerous isn't it.
if you use 2fa with google authenticator, or else, it's still safe, but 2fa through sms or voice call, no way you will be safe.

EmmanCryp

member

Activity: 471

Merit: 10

QUUBE — First&Only Quantum Resistant Ecosystem

I prefer to use the Google authenticator or authy apps to SMS 2fa. SMS 2fa is not as reliable as the app

Flor1982

full member

Activity: 714

Merit: 100

Quote from: aleksej996 on September 19, 2017, 06:53:04 PM

I see people calling for 2FA as a safety mechanism for their accounts even tho there is a huge vulnerability in the mobile networks known for years now.
2FA just increases the complexity of the attack, it doesn't stop it at all. Here is an article from The Hacker News that came out today about using 2FA on Bitcoin online wallets like Coinbase, although they say that it isn't a vulnerability in Coinbase at all but in the mobile system design flaws instead.

https://thehackernews.com/2017/09/hacking-bitcoin-wallets.html

The conclusion here is that you shouldn't consider a mobile network safe.

I trusted 2FA features and security because given codes are constantly changing, even our mobile cellphone will be lost and stolen still it is hard for the thieves to open our wallet because of password and 2FA is required. But still we should give consideration the possibility of this advice but for now the 2FA features is today's the most safest security if this will fail the possibilty of 3FA will be the alternative.

Cindy1983

full member

Activity: 196

Merit: 100

I think hacker only can hack Bitcoin from wallet with 2FA code send to SMS not for code from Google Authenticator cause it's not easy to hack a wallet with two-authentication beside the code from Google Authenticator change every 30 seconds so I think it's almost possible to hack these wallet. But maybe it can be if the hacker is very professional. I think we should try to keep our phone or computer clean, don't click at anything we don't sure that it safe.

aleksej996

sr. member

Activity: 490

Merit: 389

Do not trust the government

Quote from: BrewMaster on October 03, 2017, 12:50:47 PM

your topic is very misleading because it is not a weakness with 2FA in general. and 2 Factor Authentication is a wide range of different things as a second layer of security.

what the article is pointing out is some weakness in the network system that can potentialy be used to read SMS and listen to calls.

but the common way of using 2FA is Google Authentication which uses neither of these!

I agree that I made the post only with mobile networks in mind. I guess that other forms of 2FA as Google Authenticator became popular in recent years and I haven't got used to thinking about it as a widely adopted alternative. I thought that 2FA services are dominated by use of cellular networks and see here that it might not be the case anymore.

BrewMaster

legendary

Activity: 2114

Merit: 1292

There is trouble abrewing

your topic is very misleading because it is not a weakness with 2FA in general. and 2 Factor Authentication is a wide range of different things as a second layer of security.

what the article is pointing out is some weakness in the network system that can potentialy be used to read SMS and listen to calls.

but the common way of using 2FA is Google Authentication which uses neither of these!

Barbut

hero member

Activity: 1694

Merit: 502

★Bitvest.io★ Play Plinko or Invest!

I use 2FA, on couple places SMS verification. I think I'm protected, until now I didn't have any problems on internet, I'm careful as I can be but I think that we are vulnerable if we become targets of some genius hackers. Luckily they have good paying jobs, or with knowledge they have I doubt they will attack us little people for couple dollars. That's why it's not good to go around and talk how you have a lot of bitcoins, or that you are very rich. Don't draw attention to yourself and there will not be any problems with hackers that wish to steal from you.

TrumpD

sr. member

Activity: 602

Merit: 265

2fa is vulnerable and can be attacked, but it is very difficult to do. cybersecurity experts have warned us that this will happen eventually, and it happened back in May when hackers stole millions of Euros attacking the banks outdated 2FA. If this can happen to a bank, it could obviously happen to online web wallets and exchanges.

read more here; https://www.cyberscoop.com/finally-happened-criminals-exploit-ss7-vulnerabilities-prompting-concerns-2fa/

CrazyCraig

sr. member

Activity: 501

Merit: 340

Bye Felisha!

Quote from: kondor1030 on October 03, 2017, 11:03:34 AM

Do not use your phone number for 2FA - especially if you are based in the USA. There are better alternatives such as code generators (Google Authenticator) and Hardware Keys (Ledger Nano S - yes, you can use your hardware wallet for 2FA).

++

I agree with this 200%

kondor1030

newbie

Activity: 48

Merit: 0

Do not use your phone number for 2FA - especially if you are based in the USA. There are better alternatives such as code generators (Google Authenticator) and Hardware Keys (Ledger Nano S - yes, you can use your hardware wallet for 2FA).

mrfaith01

full member

Activity: 179

Merit: 100

Stealing bitcoins from wallet with 2FA is difficult because every one our the 6 digit code is automatically changing so I advice to for your wallet you must use 2FA to secure your account or the is another way is after you recieve your earning in your bitcoin wallet you withdraw it immidiately

acpr23

sr. member

Activity: 350

Merit: 250

Also only keep coins that you can afford to loose in your online wallet, 2fa may not fail you but the online wallet may, still suggest to keep your coins in much safer place like hardware wallet or some wallet that you control the keys

viramarket

full member

Activity: 262

Merit: 100

you are all the time talking about safety 2 FA and what you use it for many years!!But in the very structure of the ligaments of the email+phone+2 fa is vulnerability. Now ordered a nano ledger,I'm sure the amount of 84 euros for these purposes not so much.Has anyone used this wallet?

Sylenth

sr. member

Activity: 266

Merit: 250

When there is anything related to mobile or desktop or anything connected to internet nothing is safe completely. That is why it is always advisable to have hardware or paper wallet instead of mobile or desktop wallet which are connected to internet. Any of these things can be attacked and infected by virus and data could be corrupted or taken away from the user,so the best way is to have a backup of data ,in case anything gets corrupted and be careful of the spams that are most likely to cross your path once in a while.

Topic: Stealing Bitcoins from online wallets with 2FA (Read 1239 times)