Pages:
Author

Topic: Trojan Wallet stealer be careful - page 18. (Read 50290 times)

hero member
Activity: 980
Merit: 506
September 12, 2011, 03:15:02 PM
Anyone recently had this wallet stealer attack them?
newbie
Activity: 15
Merit: 0
September 07, 2011, 05:41:15 PM
Vladmir,

how would you know that you don't have any viruses or trojans if you don't run any anti-virus or anti-malware software?
You could have keyloggers, bots or a banking trojan and have no way to detect it.  Also no idea if a rootkit got installed.
??
newbie
Activity: 5
Merit: 0
September 07, 2011, 05:02:59 AM
What if the program above was the spyware!!! mind blown. Shocked
newbie
Activity: 6
Merit: 0
September 06, 2011, 10:29:54 AM
What the fuck is bitcoins? lol, I really dunnp:S
sr. member
Activity: 574
Merit: 250
September 05, 2011, 05:22:24 PM
Good to remember that the weakest link in any chain of security is the user.

Who is the user for your wallet?

You.

Forewarned is forearmed, and the only thing wrong with paranoia is that it doesn't make you cautious enough. They don't make parables up about the wise man who thought ahead and planned for everything to go exactly wrong at the worst possible moment in the most disastrous way. No, they make them up about the silly rabbits who think that the sky will never, ever fall on their heads. Bad people are out there planning and coding bad things for you right now as we speak, and they have nothing but ill will and criminal intent towards you.

Practice safe Bitcoining at all times. You never know where that block has been.
newbie
Activity: 27
Merit: 0
September 05, 2011, 05:10:35 PM
unless it's been found by someone with a good reputation to be legit

Rep alone is a great start but not the final checking point. When installing apps recomended even by the reputable (yes, who reccomended it to them?) you should also do your own research, for example, Google query of : Appname + trojan, to start with. Also, if the app requires admin rights to install or execute (even in the case of a portable app), then the best practice is to install it sandboxed with network access disabled. Actually if its not intended as a network app, sandbox it or firewall it regardless. Since Windows 7 has a lack of decent lightweight firewall, sanbox may be the best bet for many here.

hero member
Activity: 812
Merit: 1001
-
September 02, 2011, 07:33:40 PM
Or you had really bad experience or you have way to much free time Smiley
I know that setting a laptop like that is a matter of spending 2 -3 hours in front of the screen but most people (including me) will do that after they got burnt. For now I am running on Ubuntu and I feel quite safe behind two firewalls and so on so I do not think there is a need for so drastic measures in my case anyway.

Regards 1

I am simply professionally paranoid and do it before I (could) get burned.

newbie
Activity: 11
Merit: 0
September 01, 2011, 02:49:08 PM
Or you had really bad experience or you have way to much free time Smiley
I know that setting a laptop like that is a matter of spending 2 -3 hours in front of the screen but most people (including me) will do that after they got burnt. For now I am running on Ubuntu and I feel quite safe behind two firewalls and so on so I do not think there is a need for so drastic measures in my case anyway.

Regards 1
newbie
Activity: 5
Merit: 0
August 31, 2011, 05:17:56 AM
If you have more than 1000 Bitcoins in your wallet:

1. get yourself a low cost netbook.
2. Install not bloated linux (like archlinux) or FreeBSD or OpenBSD (in order of growing paranoia).
   - make sure that the above is done with ecrypted partitions and swap (plenty of guides on the net).
   - make sure that the above is done while offline as much as possible (for truly paranoid ones).
   - make sure that you do not not even configure wireless hardware, let alone using it
   - physically plug in Ethernet cable when you need connectivity for a minute or so
3. Install bitcoin client, generate a bunch of bitcoin addresses (current account)
4. Over time transfer in small amounts your funds from your existing client to the addresses created in step 3
5. Keep this used exclusively as bitcoin client and nothing else, plug in Ethernet cable when you need to transfer money.
6. Keep this hardware wallet safe.
7. Creating a bitcoin savings account and making secure backups is still need to be done as described in multiply guides elsewhere.

P.S. Do not forget your passwords.






This is a good tip, although I don't have more than 20 bitcoins lol
full member
Activity: 196
Merit: 100
August 30, 2011, 10:17:59 PM
Linux is the superior choice everytime.
full member
Activity: 154
Merit: 100
August 30, 2011, 10:11:33 PM
I would never trust my wallet.dat being contained on a Windows machine. Come to that, I also won't use any Android apps either for bitcoin purposes.

I've also had some friends who have been hit with the mining trojan that is doing the rounds at the moment. This is why a secured linix box (or even a VM) is a must when it comes to dealing with BTC's
hero member
Activity: 700
Merit: 500
full member
Activity: 196
Merit: 100
August 30, 2011, 10:02:12 PM
There is a (new?) trojan wallet stealer out in the wild ATM.

Plenty of script kiddies and scammers are going to be trying to get you to download and install it, what's more they'll be putting posts to do so (using lies obviously).

Don't install anything linked to on this forum, unless it's been found by someone with a good reputation to be legit. Assume everything is an attempt to steal your wallet.

You should also encrypt your wallet when not in use.
http://www.freeotfe.org/

Here is a portable apps version http://www.freeotfe.org/downloads/FreeOTFEExplorer_3_51.paf.exe

You have been warned.

Nefario

I can't run exe's in Linux.
newbie
Activity: 40
Merit: 0
August 30, 2011, 12:57:10 PM
Thanks for the headsup though, but i almost never use my wallet locally, and have send the funds directly to gox and the like.

Just hoping they dont do stupid things though Smiley
newbie
Activity: 14
Merit: 0
August 29, 2011, 12:10:52 PM
many wallets in many places. Kind of not all eggs in one basket thing.
too hard to maintain.
just install linux on a free partition of your computer, download btcclient and host your BTC there.
would also be the best solution if you're just surfing/emailing
newbie
Activity: 27
Merit: 0
August 28, 2011, 07:56:32 PM
many wallets in many places. Kind of not all eggs in one basket thing.
newbie
Activity: 8
Merit: 0
August 27, 2011, 04:05:33 AM
It is the best method, flash disk with secure os, without any additional software, only coin client. Wallet address printed and used to payment. It guarantee no hack and hijacks Wink
newbie
Activity: 10
Merit: 0
August 27, 2011, 12:19:17 AM
use privatix to create an encrypted bootable (linux) usb disk. store your wallet there, and encrypted on a backup. access your wallet only from the bootable disk and you will be fine.
ama
member
Activity: 112
Merit: 10
August 26, 2011, 11:30:07 AM
3. Install bitcoin client, generate a bunch of bitcoin addresses (current account)
4. Over time transfer in small amounts your funds from your existing client to the addresses created in step 3

Hi,

Why do you (and others) recommend to generate several addresses instead of only one?  Is there any advantage on doing that?  I've seen it recommended some other times and also people asking why, but nobody seems to answer and explain it.
member
Activity: 112
Merit: 10
August 26, 2011, 05:39:52 AM
Given how much of a hassle it is to keep one's wallet file secure, it's no surprise that many people keep their coins in online wallets (where they're likely in even bigger danger).
Pages:
Jump to: