Pages:
Author

Topic: Stealing Bitcoins from online wallets with 2FA (Read 1291 times)

sr. member
Activity: 501
Merit: 340
Bye Felisha!
October 05, 2017, 12:55:30 PM
#63

I trusted 2FA features and security because given codes are constantly changing, even our mobile cellphone will be lost and stolen still it is hard for the thieves to open our wallet because of password and 2FA is required. But still we should give consideration the possibility of this advice but for now the 2FA features is today's the most safest security if this will fail the possibilty of 3FA will be the alternative.

2fa isnt the safest. I believe a better solution would be to use a multi device authentication technique.
legendary
Activity: 1176
Merit: 1001
The most Professional Cryptocurrency Casino
In fact the error lies with the account owner because he is not careful maybe he open the address that given by the hacker and he is not aware with it. 2fa is just one additional security tool but much safer if you store bitcoin in offline wallet.
legendary
Activity: 2702
Merit: 3045
Top Crypto Casino
Being online is not safe and nothing is 100% secure especially where there is money and second factor authentication or two-step verification is just another step to more secure accounts.
You have to do what you have to do and take all security measures and hope you don't get hacked because if you don't, you have better to stop dealing online because you are afraid of thiefs.
hero member
Activity: 2506
Merit: 645
Eloncoin.org - Mars, here we come!
Hackers are made to break security,Locks,Passwords. You're not safe if you're mobile network or online wallet user. For hackers its easy to exploited both. That's why i recommend downloaded wallets.
Even though 2fa is a very good security but still i have heard people bypass 2fa and hack into people account. Hackers always find a way to crack even the most secure online systems.
sr. member
Activity: 420
Merit: 250
The first thing to be learned by any new crypto-currency user is the opening phrase of this article: exchanges are not wallets. Therefore, NEVER keep all your funds in one of these companies.
If you are interested in doing trade or any other operation, leave in exchange only the value that you will use in operations.
Another important tip is to enable two-factor authentication (known as 2FA). The exchanges usually offer the option to send the code by email, cell phone or both. Thus, you can identify if your account is being hacked and prevent the theft of funds. Some hardware wallets, such as the Nano S Ledger, allow for storage of several different currencies, which gives the less savvy user the convenience of not having to create multiple wallets in different locations.
hero member
Activity: 1106
Merit: 500
Life is short, practice empathy in your life
Second level of protection brings a lot of new features with offering good level of security.3 type is known:Something you have like device,something you are eye or finger print,something you know like passwords or seeds. Breaking this type of  authentication is only possible with social engineering.
legendary
Activity: 3276
Merit: 1029
Leading Crypto Sports Betting & Casino Platform
I see people calling for 2FA as a safety mechanism for their accounts even tho there is a huge vulnerability in the mobile networks known for years now.
2FA just increases the complexity of the attack, it doesn't stop it at all. Here is an article from The Hacker News that came out today about using 2FA on Bitcoin online wallets like Coinbase, although they say that it isn't a vulnerability in Coinbase at all but in the mobile system design flaws instead.

https://thehackernews.com/2017/09/hacking-bitcoin-wallets.html

The conclusion here is that you shouldn't consider a mobile network safe.

I trusted 2FA features and security because given codes are constantly changing, even our mobile cellphone will be lost and stolen still it is hard for the thieves to open our wallet because of password and 2FA is required. But still we should give consideration the possibility of this advice but for now the 2FA features is today's the most safest security if this will fail the possibilty of 3FA will be the alternative.
Have you read the whole article dude? I know that 2 fa code is constantly changing but what if the hackers could listen or read your 2fa code that's sent to your mobile phone? it's dangerous isn't it.
if you use 2fa with google authenticator, or else, it's still safe, but 2fa through sms or voice call, no way you will be safe.
member
Activity: 471
Merit: 10
QUUBE — First&Only Quantum Resistant Ecosystem
I prefer to use the Google authenticator or authy apps to SMS 2fa. SMS 2fa is not as reliable as the app
full member
Activity: 714
Merit: 100
I see people calling for 2FA as a safety mechanism for their accounts even tho there is a huge vulnerability in the mobile networks known for years now.
2FA just increases the complexity of the attack, it doesn't stop it at all. Here is an article from The Hacker News that came out today about using 2FA on Bitcoin online wallets like Coinbase, although they say that it isn't a vulnerability in Coinbase at all but in the mobile system design flaws instead.

https://thehackernews.com/2017/09/hacking-bitcoin-wallets.html

The conclusion here is that you shouldn't consider a mobile network safe.

I trusted 2FA features and security because given codes are constantly changing, even our mobile cellphone will be lost and stolen still it is hard for the thieves to open our wallet because of password and 2FA is required. But still we should give consideration the possibility of this advice but for now the 2FA features is today's the most safest security if this will fail the possibilty of 3FA will be the alternative.
full member
Activity: 196
Merit: 100
I think hacker only can hack Bitcoin from wallet with 2FA code send to SMS not for code from Google Authenticator cause it's not easy to hack a wallet with two-authentication beside the code from Google Authenticator change every 30 seconds so I think it's almost possible to hack these wallet. But maybe it can be if the hacker is very professional. I think we should try to keep our phone or computer clean, don't click at anything we don't sure that it safe.
sr. member
Activity: 490
Merit: 389
Do not trust the government
your topic is very misleading because it is not a weakness with 2FA in general. and 2 Factor Authentication is a wide range of different things as a second layer of security.

what the article is pointing out is some weakness in the network system that can potentialy be used to read SMS and listen to calls.

but the common way of using 2FA is Google Authentication which uses neither of these!

I agree that I made the post only with mobile networks in mind. I guess that other forms of 2FA as Google Authenticator became popular in recent years and I haven't got used to thinking about it as a widely adopted alternative. I thought that 2FA services are dominated by use of cellular networks and see here that it might not be the case anymore.
legendary
Activity: 2128
Merit: 1293
There is trouble abrewing
your topic is very misleading because it is not a weakness with 2FA in general. and 2 Factor Authentication is a wide range of different things as a second layer of security.

what the article is pointing out is some weakness in the network system that can potentialy be used to read SMS and listen to calls.

but the common way of using 2FA is Google Authentication which uses neither of these!
hero member
Activity: 1694
Merit: 502
★Bitvest.io★ Play Plinko or Invest!
I use 2FA, on couple places SMS verification. I think I'm protected, until now I didn't have any problems on internet, I'm careful as I can be but I think that we are vulnerable if we become targets of some genius hackers. Luckily they have good paying jobs, or with knowledge they have I doubt they will attack us little people for couple dollars. That's why it's not good to go around and talk how you have a lot of bitcoins, or that you are very rich. Don't draw attention to yourself and there will not be any problems with hackers that wish to steal from you.
sr. member
Activity: 602
Merit: 265
2fa is vulnerable and can be attacked, but it is very difficult to do. cybersecurity experts have warned us that this will happen eventually, and it happened back in May when hackers stole millions of Euros attacking the banks outdated 2FA. If this can happen to a bank, it could obviously happen to online web wallets and exchanges. 

read more here; https://www.cyberscoop.com/finally-happened-criminals-exploit-ss7-vulnerabilities-prompting-concerns-2fa/
sr. member
Activity: 501
Merit: 340
Bye Felisha!
Do not use your phone number for 2FA - especially if you are based in the USA. There are better alternatives such as code generators (Google Authenticator) and Hardware Keys (Ledger Nano S - yes, you can use your hardware wallet for 2FA).

++

I agree with this 200%
newbie
Activity: 48
Merit: 0
Do not use your phone number for 2FA - especially if you are based in the USA. There are better alternatives such as code generators (Google Authenticator) and Hardware Keys (Ledger Nano S - yes, you can use your hardware wallet for 2FA).
full member
Activity: 179
Merit: 100
Stealing bitcoins from wallet with 2FA is difficult because every one our the 6 digit code is automatically changing so I advice to for your wallet you must use 2FA to secure your account or the is another way is after you recieve your earning in your bitcoin wallet you withdraw it immidiately
sr. member
Activity: 350
Merit: 250
Also only keep coins that you can afford to loose in your online wallet, 2fa may not fail you but the online wallet may, still suggest to keep your coins in much safer place like hardware wallet or some wallet that you control the keys
full member
Activity: 262
Merit: 100
you are all the time talking about safety 2 FA and what you use it for many years!!But in the very structure of the ligaments of the email+phone+2 fa is vulnerability. Now ordered a nano ledger,I'm sure the amount of 84 euros for these purposes not so much.Has anyone used this wallet?
sr. member
Activity: 266
Merit: 250
When there is anything related to mobile or desktop or anything connected to internet nothing is safe completely. That is why it is always advisable to have hardware or paper wallet instead of mobile or desktop wallet which are connected to internet. Any  of these things can be attacked and infected by virus and data could be corrupted or taken away from the user,so the best  way is to have a backup of data ,in case anything gets corrupted and be careful of the spams that are most likely to cross your path once in a while.
Pages:
Jump to: