TradeFortress(aka $username): Trust Abuse - page 2.

ACCTseller

hero member

Activity: 532

Merit: 500

no longer selling accounts

Quote from: marcotheminer on April 16, 2015, 08:53:47 AM

Quote from: ACCTseller on April 16, 2015, 08:08:24 AM

Quote from: marcotheminer on April 16, 2015, 05:54:21 AM

Quote from: ACCTseller on April 16, 2015, 12:10:59 AM

Quote from: Muhammed Zakir on April 16, 2015, 12:06:20 AM

Quote from: ACCTseller on April 15, 2015, 10:37:26 PM

=snip=
He isn't even posting from his TF account anymore.
=snip=

AFAIK it is same account. He changed username/display name to $username.

The account was last active in February. He is almost certainly posting from another account somewhere, most likely advertising some kind of coding services potentially in a paid signature campaign. I have a couple of suspects, but nothing solid as of yet

I feel like I'm implied here? Am I wrong?

I wasn't aware that you know how to code like that. Yes you are wrong. No I don't think you are TF.

Sorry, I thought you meant he was doing a coding job for me when you said: advertising some kind of coding services potentially in a paid signature campaign. I read 'in' as 'for'.

Nevermind!

I was saying that he is both selling his coding services and is in a paid signature campaign.

Although the person who you hired to code your bot has questionable ethics at best so I hope you were able to audit how it works personally.

marcotheminer

legendary

Activity: 2072

Merit: 1049

┴puoʎǝq ʞool┴

Quote from: ACCTseller on April 16, 2015, 08:08:24 AM

Quote from: marcotheminer on April 16, 2015, 05:54:21 AM

Quote from: ACCTseller on April 16, 2015, 12:10:59 AM

Quote from: Muhammed Zakir on April 16, 2015, 12:06:20 AM

Quote from: ACCTseller on April 15, 2015, 10:37:26 PM

=snip=
He isn't even posting from his TF account anymore.
=snip=

AFAIK it is same account. He changed username/display name to $username.

The account was last active in February. He is almost certainly posting from another account somewhere, most likely advertising some kind of coding services potentially in a paid signature campaign. I have a couple of suspects, but nothing solid as of yet

I feel like I'm implied here? Am I wrong?

I wasn't aware that you know how to code like that. Yes you are wrong. No I don't think you are TF.

Sorry, I thought you meant he was doing a coding job for me when you said: advertising some kind of coding services potentially in a paid signature campaign. I read 'in' as 'for'.

Nevermind!

Quickseller

copper member

Activity: 2996

Merit: 2374

There was recently a flaw in (I think it was) authy that was patched where someone could enter a certain command into the box where you enter the 2fa code that allowed people to bypass 2fa. I know that the issue affected coinbase. So it is possible that the attacker used the same exploit. See the below article
http://sakurity.com/blog/2015/03/15/authy_bypass.html/

The fact that the same hosting company was used certainly makes it look like that the hack was staged as it makes it so he was able to give a easy explanation as to what happened. At this point it would really not be possible to prove anything either way because any logs related to the hack would have been deleted/overwritten by now as the hosting was no longer paid for after the hack. So any records are likely gone.

Blazr

hero member

Activity: 882

Merit: 1006

Quote from: DebitMe on April 16, 2015, 08:45:44 AM

He had made a few deals with individuals with larger balances where they received a portion of their deposits back, but thats about it. Instead, he kept all the shares of AsicMiner and other securities for himself, instead of reimbursing those that he screwed over. (and with AM going under that is now worthless as well).

Yeah the crash of ASICMINER was a serious blow to him, he had a significant portion of coinlenders user funds invested in ASICMINER shares. I highly suspect that coinlenders was insolvent when he launched inputs.io and he was hoping funds from inputs.io would tie him over until he made back the lost coinlenders funds.

r3wt

hero member

Activity: 686

Merit: 504

always the student, never the master.

well so much for my thread Cheesy

DebitMe

legendary

Activity: 2800

Merit: 1012

Get Paid Crypto To Walk or Drive

Quote from: redsn0w on April 16, 2015, 08:42:21 AM

Quote from: Blazr on April 16, 2015, 08:32:28 AM

Quote from: r3wt on April 16, 2015, 08:19:54 AM

Supposedly, what had happened was that someone was able to dupe a Linode customer service rep into giving them access to the server's in browser tty shell. That's the story i was given.

Not exactly, allegedy what happened is the hackers hacked the email address [email protected] due to password reuse. This email address was a recovery email address for another account, which IIRC was [email protected]. Once they accessed this account, the hacker then allegedly reset the Linode password and somehow bypassed the 2FA on the linode account.

That is exactly what happened with another site Bitcoinica which was hacked 3 times in 2012, same hosting company and all, and Bitcoinica was also owned by an Australian:
https://bitcointalksearch.org/topic/bitcoinica-lost-43554-btc-from-linode-compromise-suspicious-txids-publicized-66979

in fact TF was even warned not to use this host for this reason many times by many people and ignored all of them.

It is very possible that it is a coincidence, but this also could've been planned.

There is one small detail that does not make sense however. The part about how th linode 2FA was bypassed was basically skipped over in his explanation, and also the account [email protected] had 2FA enabled too, so I don't know how the account password could be reset without turning off 2FA, and TF never mentioned how that was done either, in fact he never mentioned he had 2FA enabled on this account at all when he in fact did.

Hmmm.. thanks for this short version, I will read also the Bitcoinica hack.

Quote from: DebitMe on April 16, 2015, 08:40:12 AM

He also told everyone (at least when I deposited) that all deposits were backup up with assets in AsicMiner and other securities and that if a hacked occurred, he would reimburse those affected.

I think nobody has never received anything backwards, or am I wrong?

He had made a few deals with individuals with larger balances where they received a portion of their deposits back, but thats about it. Instead, he kept all the shares of AsicMiner and other securities for himself, instead of reimbursing those that he screwed over. (and with AM going under that is now worthless as well).

redsn0w

legendary

Activity: 1778

Merit: 1043

#Free market

Quote from: Blazr on April 16, 2015, 08:32:28 AM

Quote from: r3wt on April 16, 2015, 08:19:54 AM

Supposedly, what had happened was that someone was able to dupe a Linode customer service rep into giving them access to the server's in browser tty shell. That's the story i was given.

Not exactly, allegedy what happened is the hackers hacked the email address [email protected] due to password reuse. This email address was a recovery email address for another account, which IIRC was [email protected]. Once they accessed this account, the hacker then allegedly reset the Linode password and somehow bypassed the 2FA on the linode account.

That is exactly what happened with another site Bitcoinica which was hacked 3 times in 2012, same hosting company and all, and Bitcoinica was also owned by an Australian:
https://bitcointalksearch.org/topic/bitcoinica-lost-43554-btc-from-linode-compromise-suspicious-txids-publicized-66979

in fact TF was even warned not to use this host for this reason many times by many people and ignored all of them.

It is very possible that it is a coincidence, but this also could've been planned.

There is one small detail that does not make sense however. The part about how th linode 2FA was bypassed was basically skipped over in his explanation, and also the account [email protected] had 2FA enabled too, so I don't know how the account password could be reset without turning off 2FA, and TF never mentioned how that was done either, in fact he never mentioned he had 2FA enabled on this account at all when he in fact did.

Hmmm.. thanks for this short version, I will read also the Bitcoinica hack.

Quote from: DebitMe on April 16, 2015, 08:40:12 AM

He also told everyone (at least when I deposited) that all deposits were backup up with assets in AsicMiner and other securities and that if a hacked occurred, he would reimburse those affected.

I think nobody has never received anything backwards, or am I wrong?

peligro

hero member

Activity: 593

Merit: 500

1NoBanksLuJPXf8Sc831fPqjrRpkQPKkEA

Quote from: Blazr on April 16, 2015, 08:32:28 AM

There is one small detail that does not make sense however. The part about how th linode 2FA was bypassed was basically skipped over in his explanation, and also the account [email protected] had 2FA enabled too, so I don't know how the account password could be reset without turning off 2FA, and TF never mentioned how that was done either, in fact he never mentioned he had 2FA enabled on this account at all when he in fact did.

It points it to being a self hack. He would have had a good explanation otherwise.

Quote from: DebitMe on April 16, 2015, 08:40:12 AM

He also told everyone (at least when I deposited) that all deposits were backup up with assets in AsicMiner and other securities and that if a hacked occurred, he would reimburse those affected.

How much did you lose?

DebitMe

legendary

Activity: 2800

Merit: 1012

Get Paid Crypto To Walk or Drive

He also told everyone (at least when I deposited) that all deposits were backup up with assets in AsicMiner and other securities and that if a hacked occurred, he would reimburse those affected.

Blazr

hero member

Activity: 882

Merit: 1006

Quote from: ACCTseller on April 16, 2015, 08:29:52 AM

I don't understand how a 14 year old ended up being trusted with millions of dollars worth of Bitcoin (if he is 16 now then he was ~14 at the time of the hack).

There was over 4k btc lost at the time of the hack and Bitcoin was valued a lot more then it is now. Several hundreds of dollars more.

Yeah IIRC shortly after the hacked Bitcoin hit $1,000, most reporters reported the hack to be $4.1million.

It is crazy, but all the evidence points to him being around that age. A website like coinlenders.com or inputs.io isn't really that hard to make, it is easier to make a wallet service than it is for example a Bitcoin exchange, and under the hood both websites worked very similarly. However TF does have an older brother who I suspect has an account here, so it's possible the older brother was involved, but I think that the people who lost money should definitely get some legal advise on how to proceed, debating it here isn't much use, best to leave it up to the lawyers to figure out what happened.

Blazr

hero member

Activity: 882

Merit: 1006

Quote from: r3wt on April 16, 2015, 08:19:54 AM

Supposedly, what had happened was that someone was able to dupe a Linode customer service rep into giving them access to the server's in browser tty shell. That's the story i was given.

Not exactly, allegedy what happened is the hackers hacked the email address [email protected] due to password reuse. This email address was a recovery email address for another account, which IIRC was [email protected]. Once they accessed this account, the hacker then allegedly reset the Linode password and somehow bypassed the 2FA on the linode account.

That is exactly what happened with another site Bitcoinica which was hacked 3 times in 2012, same hosting company and all, and Bitcoinica was also owned by an Australian:
https://bitcointalksearch.org/topic/bitcoinica-lost-43554-btc-from-linode-compromise-suspicious-txids-publicized-66979

in fact TF was even warned not to use this host for this reason many times by many people and ignored all of them.

It is very possible that it is a coincidence, but this also could've been planned.

There is one small detail that does not make sense however. The part about how th linode 2FA was bypassed was basically skipped over in his explanation, and also the account [email protected] had 2FA enabled too, so I don't know how the account password could be reset without turning off 2FA, and TF never mentioned how that was done either, in fact he never mentioned he had 2FA enabled on this account at all when he in fact did.

ACCTseller

hero member

Activity: 532

Merit: 500

no longer selling accounts

Quote from: Blazr on April 16, 2015, 08:25:42 AM

Quote from: ACCTseller on April 16, 2015, 08:08:24 AM

How old is TF Huh

He doesn't come off as someone who is school/college aged.

He is very likely 16-18 years old, which is why nobody should post his personal information here and those who lost money should contact the police and/or a lawyer.

I don't understand how a 14 year old ended up being trusted with millions of dollars worth of Bitcoin (if he is 16 now then he was ~14 at the time of the hack).

There was over 4k btc lost at the time of the hack and Bitcoin was valued a lot more then it is now. Several hundreds of dollars more.

redsn0w

legendary

Activity: 1778

Merit: 1043

#Free market

Quote from: Blazr on April 16, 2015, 08:25:42 AM

Quote from: ACCTseller on April 16, 2015, 08:08:24 AM

How old is TF Huh

He doesn't come off as someone who is school/college aged.

He is very likely 16-18 years old, which is why nobody should post his personal information here and those who lost money should contact the police and/or a lawyer.

I don't know the complete story, but can I ask you how much bitcoin has lost (due the 'hack' to inputs.io)?

Blazr

hero member

Activity: 882

Merit: 1006

Quote from: ACCTseller on April 16, 2015, 08:08:24 AM

How old is TF Huh

He doesn't come off as someone who is school/college aged.

He is very likely 16-18 years old, which is why nobody should post his personal information here and those who lost money should contact the police and/or a lawyer.

r3wt

hero member

Activity: 686

Merit: 504

always the student, never the master.

Quote from: ACCTseller on April 16, 2015, 08:08:24 AM

Quote from: marcotheminer on April 16, 2015, 05:54:21 AM

Quote from: ACCTseller on April 16, 2015, 12:10:59 AM

Quote from: Muhammed Zakir on April 16, 2015, 12:06:20 AM

Quote from: ACCTseller on April 15, 2015, 10:37:26 PM

=snip=
He isn't even posting from his TF account anymore.
=snip=

AFAIK it is same account. He changed username/display name to $username.

The account was last active in February. He is almost certainly posting from another account somewhere, most likely advertising some kind of coding services potentially in a paid signature campaign. I have a couple of suspects, but nothing solid as of yet

I feel like I'm implied here? Am I wrong?

I wasn't aware that you know how to code like that. Yes you are wrong. No I don't think you are TF.

Quote from: r3wt on April 16, 2015, 07:50:21 AM

Quote from: Blazr on April 16, 2015, 07:44:13 AM

I think TradeFortress may be off Bitcointalk for now while he prepares for his end-of-year exams, I believe it's his final year exam or whatever they call it in Australia.

In regards to Inputs.io, Do you think he really did it?

It was too easy for whoever hacked them to hack inputs. He was well versed in security practices and preached good practices.

It was either him or told someone a specific way to hack the website intentionally. He most likely got some amount of money out of the "hack"

Quote from: Blazr on April 16, 2015, 07:44:13 AM

I think TradeFortress may be off Bitcointalk for now while he prepares for his end-of-year exams, I believe it's his final year exam or whatever they call it in Australia.

How old is TF Huh

He doesn't come off as someone who is school/college aged.

Supposedly, what had happened was that someone was able to dupe a Linode customer service rep into giving them access to the server's in browser tty shell. That's the story i was given.

ACCTseller

hero member

Activity: 532

Merit: 500

no longer selling accounts

Quote from: marcotheminer on April 16, 2015, 05:54:21 AM

Quote from: ACCTseller on April 16, 2015, 12:10:59 AM

Quote from: Muhammed Zakir on April 16, 2015, 12:06:20 AM

Quote from: ACCTseller on April 15, 2015, 10:37:26 PM

=snip=
He isn't even posting from his TF account anymore.
=snip=

AFAIK it is same account. He changed username/display name to $username.

The account was last active in February. He is almost certainly posting from another account somewhere, most likely advertising some kind of coding services potentially in a paid signature campaign. I have a couple of suspects, but nothing solid as of yet

I feel like I'm implied here? Am I wrong?

I wasn't aware that you know how to code like that. Yes you are wrong. No I don't think you are TF.

Quote from: r3wt on April 16, 2015, 07:50:21 AM

Quote from: Blazr on April 16, 2015, 07:44:13 AM

I think TradeFortress may be off Bitcointalk for now while he prepares for his end-of-year exams, I believe it's his final year exam or whatever they call it in Australia.

In regards to Inputs.io, Do you think he really did it?

It was too easy for whoever hacked them to hack inputs. He was well versed in security practices and preached good practices.

It was either him or told someone a specific way to hack the website intentionally. He most likely got some amount of money out of the "hack"

Quote from: Blazr on April 16, 2015, 07:44:13 AM

I think TradeFortress may be off Bitcointalk for now while he prepares for his end-of-year exams, I believe it's his final year exam or whatever they call it in Australia.

How old is TF Huh

He doesn't come off as someone who is school/college aged.

r3wt

hero member

Activity: 686

Merit: 504

always the student, never the master.

Quote from: Blazr on April 16, 2015, 07:44:13 AM

I think TradeFortress may be off Bitcointalk for now while he prepares for his end-of-year exams, I believe it's his final year exam or whatever they call it in Australia.

In regards to Inputs.io, Do you think he really did it?

Blazr

hero member

Activity: 882

Merit: 1006

I think TradeFortress may be off Bitcointalk for now while he prepares for his end-of-year exams, I believe it's his final year exam or whatever they call it in Australia.

marcotheminer

legendary

Activity: 2072

Merit: 1049

┴puoʎǝq ʞool┴

Quote from: ACCTseller on April 16, 2015, 12:10:59 AM

Quote from: Muhammed Zakir on April 16, 2015, 12:06:20 AM

Quote from: ACCTseller on April 15, 2015, 10:37:26 PM

=snip=
He isn't even posting from his TF account anymore.
=snip=

AFAIK it is same account. He changed username/display name to $username.

The account was last active in February. He is almost certainly posting from another account somewhere, most likely advertising some kind of coding services potentially in a paid signature campaign. I have a couple of suspects, but nothing solid as of yet

I feel like I'm implied here? Am I wrong?

r3wt

hero member

Activity: 686

Merit: 504

always the student, never the master.

Quote from: redsn0w on April 15, 2015, 11:43:38 PM

Yes, Why are you worried about a negative trust received from him? I can say it is a privilege receive a negative trust from him (a well know scammer). However the trust system is not moderated (or this is who a lot of users are saying) and you should contact him orivately and ask to remove the feedback.

it's the principal of the matter.

Topic: TradeFortress(aka $username): Trust Abuse - page 2. (Read 1973 times)