stolen coins | Bitcointalksearch.org

Crossbow376

hero member

Activity: 615

Merit: 500

Quote from: minerpumpkin on July 28, 2014, 08:53:43 AM

Quote from: InwardContour on July 28, 2014, 08:15:10 AM

Just make a true cold storage wallet using a linux live cd without internet connection and copying the wallets on different usb drives.
Place them in some different locations, there's no need for passwords.

Do they contain the whole key? If yes: What if someone gets access to one of the flash drives? If no: What if one gets corrupted/stolen/lost in a fire, etc...?

If yes: The wallet should be encrypted with a strong password, which makes brute-forcing highly improbable.
If no: He could use m-of-n multisig address, and put all those backups in different places so that it is highly unlikely to have a few of them destroyed at the same time.

minerpumpkin

hero member

Activity: 686

Merit: 500

A pumpkin mines 27 hours a night

Quote from: InwardContour on July 28, 2014, 08:15:10 AM

Just make a true cold storage wallet using a linux live cd without internet connection and copying the wallets on different usb drives.
Place them in some different locations, there's no need for passwords.

Do they contain the whole key? If yes: What if someone gets access to one of the flash drives? If no: What if one gets corrupted/stolen/lost in a fire, etc...?

InwardContour

sr. member

Activity: 644

Merit: 260

Just make a true cold storage wallet using a linux live cd without internet connection and copying the wallets on different usb drives.
Place them in some different locations, there's no need for passwords.

elliwilli

sr. member

Activity: 307

Merit: 250

et rich or die tryi

Like everyone else is saying, storing your BTC on a phone is not the greatest of ideas.
I would switch to a more secure wallet that is not as easy to compromise such as blockchain or Armory.

shogdite

hero member

Activity: 798

Merit: 1000

LIR Dev. www.letitride.io

Yeah I would never leave a sizeable amount of btc on a phone / online wallet, way too many risks involved.

I've already had a few btc stolen so I made a point of brushing up on my security, offline paper wallets are the way forward

kittycatbtc

member

Activity: 70

Merit: 10

It's pointless to have coins in your phone. brb lose phone, lose your money.

troisky

member

Activity: 70

Merit: 10

Most stolen wallet cases ive heard is just huge mistakes.

minerpumpkin

hero member

Activity: 686

Merit: 500

A pumpkin mines 27 hours a night

Quote from: Simon8x on July 25, 2014, 12:57:38 PM

Quote from: bitkilo on July 24, 2014, 06:19:21 PM

I thought i was worried about security before reading the post on this thread, now im fucking paranoid, as soon as 1 person mentions a safe way 2 store coins some1 else said they could steal it easy. Can any1 point me 2 a thread on security that is going 2 work. Thanks.

Disconnect your pc from the Internet, and then generate an offline wallet (no Internet connection afterwards) or a paper wallet (with BIP38 encryption).
Your wallet would be immune to all hacking and malware. Cheesy

Not if you re-connect that computer again afterwards. Geez, that's such an important fact to the whole idea that many people just leave out!

Simon8x

hero member

Activity: 568

Merit: 500

Quote from: bitkilo on July 24, 2014, 06:19:21 PM

I thought i was worried about security before reading the post on this thread, now im fucking paranoid, as soon as 1 person mentions a safe way 2 store coins some1 else said they could steal it easy. Can any1 point me 2 a thread on security that is going 2 work. Thanks.

Disconnect your pc from the Internet, and then generate an offline wallet (no Internet connection afterwards) or a paper wallet (with BIP38 encryption).
Your wallet would be immune to all hacking and malware. Cheesy

DrG

legendary

Activity: 2086

Merit: 1035

Quote from: bitkilo on July 24, 2014, 06:19:21 PM

I thought i was worried about security before reading the post on this thread, now im fucking paranoid, as soon as 1 person mentions a safe way 2 store coins some1 else said they could steal it easy. Can any1 point me 2 a thread on security that is going 2 work. Thanks.

Armory has a step by step guide for how to make an offline cold storage wallet:
https://bitcoinarmory.com/about/using-our-wallet/

minerpumpkin

hero member

Activity: 686

Merit: 500

A pumpkin mines 27 hours a night

Quote from: bitkilo on July 24, 2014, 06:19:21 PM

I thought i was worried about security before reading the post on this thread, now im fucking paranoid, as soon as 1 person mentions a safe way 2 store coins some1 else said they could steal it easy. Can any1 point me 2 a thread on security that is going 2 work. Thanks.

Now you've got to be paranoid that people claiming to show you a safe way of creating such a safe cold wallet won't actually lure you into a trap where they can easily access your coins! Tongue

bitkilo

legendary

Activity: 1638

Merit: 1010

https://www.bitcoin.com/

I thought i was worried about security before reading the post on this thread, now im fucking paranoid, as soon as 1 person mentions a safe way 2 store coins some1 else said they could steal it easy. Can any1 point me 2 a thread on security that is going 2 work. Thanks.

minerpumpkin

hero member

Activity: 686

Merit: 500

A pumpkin mines 27 hours a night

Quote from: monbux on July 21, 2014, 08:10:39 PM

Go to https://www.bitaddress.org and turn off your internet, then generate a new address, and print multiple copies of it to store into safe places.

If you connect the device you're using for this to the Internet after creating your wallet, you're not better of than before, because a backdoor program or a keylogger could still have captured your private key.

ajareselde

legendary

Activity: 1722

Merit: 1000

Satoshi is rolling in his grave. #bitcoin

Quote from: Fiora on July 22, 2014, 07:46:45 PM

how do you even begin to start cracking into wallets?

same way you bruteforce into anything, you can use
bruteforce - trying every combination and lenght
dictionary - trying every pass(word) that is located in dictionary file
rainbowtable- pre-hashed attempt that increases speed insanely, but also takes insane amount of time to initialy create one.

if you use combination of lowercase,uppercase and symbols, and use like 10 chars, i doubt anyone could break it, but even with that applied, you cant be fooligh and write password somewhere on your computer (in a .txt file or something) because attacker will probably search for that first.

DrG

legendary

Activity: 2086

Merit: 1035

Quote from: Chemistry1988 on July 23, 2014, 02:29:00 AM

Quote from: Feneusens on July 22, 2014, 10:35:20 PM

Using a long password is by far the best security.

A long password doesn't equal to a strong password.
"abcdefghijklmnopqrstuvwxyz" is long but is not as good as "%1Q&wc8r9!S8".

Also, if you have malware on your computer, your password will get compromised as soon as you set it up...

That's only true if you're assuming the attacker would only use roman alphabet dictionary for the attack. This first password you noted "abcdefghijklmnopqrstuvwxyz" while having a smaller dictionary is significantly longer to have a much higher entropy.

Ideally if you're going to use long passwords, just jumble some words together and flip one word backwards (radio in this case) like "froghitbananaeschewnineteenpinkcamelotoidar" - even a dictionary based attack would take years if it had to try to guess 1 or more words backwards.

Remember - if you make it too hard to remember you will lose those coins for good. Search for all the people who came on here posting that they can't remember their password or they must have miskeyed a word - it's sad.

Chemistry1988

legendary

Activity: 1120

Merit: 1000

Quote from: Feneusens on July 22, 2014, 10:35:20 PM

Using a long password is by far the best security.

A long password doesn't equal to a strong password.
"abcdefghijklmnopqrstuvwxyz" is long but is not as good as "%1Q&wc8r9!S8".

Also, if you have malware on your computer, your password will get compromised as soon as you set it up...

DrG

legendary

Activity: 2086

Merit: 1035

Quote from: Feneusens on July 22, 2014, 10:35:20 PM

Using a long password is by far the best security.

More important that the entropy (length) of a password is the exclusivity of the passphrase. If you use the same password of JO98h%$&hkCD43SD on every website you visit, the hacker simply needs to hack into any retail website you used the passphrase on and now he has your email and passphrase.

You can use crappy passwords on most every site, for you Bitcoins use a passphrase you don't use anywhere else.

Feneusens

sr. member

Activity: 275

Merit: 250

Using a long password is by far the best security.

Fiora

newbie

Activity: 56

Merit: 0

how do you even begin to start cracking into wallets?

PangPang

hero member

Activity: 499

Merit: 500

Quote from: bitkilo on July 21, 2014, 06:29:53 PM

Yep thats right another thread on some idiot having his coins stolen. Long story short i had a small amount stolen from my blockchain wallet, now i didnt have any protection on this wallet other than a good password because it only had about $2 in it and its a good way 2 find out if someone is getting into my phone. So question is, i only use internet on my phone as i dont have a computer and always on the move and now ive been hacked or something whats the best way to upgrade protection on a andriod smart phone? If u need anymore info just ask.

Use a long random password that has never been used on any other sites, enable 2FA, avoid clicking suspicious links or downloading suspicious files.

Topic: stolen coins (Read 1894 times)