Yesterday I found someone is in possession of my private key from my address that I have @ blockchain.info
And he is a blockchain.info wallet user too... as last transaction make by someone using my address were done by blockchain.info nod - rest of them from nod IP 0.0.0.0 ...
and blockchain.info write me back :
"I am sorry to hear of these transactions that you did not initiate. I would also highly advise against ever using this compromised wallet again, as someone else clearly has the private keys in it. Changing your password & adding 2FA won't matter if the user has control of the private keys for that address. You need to never use that address or other addresses in that wallet again, set up a new wallet with new passwords & addresses, and enable Google Authenticator with that."
So they do not feel the problem - just I need to never use my address again ... not nice and not good.
And how come it is even possible that someone have got my private keys?
Crazy.
And is funny - I had only one address @ blockchain.info
Another address with same private key that someone else have was added to my wallet without me. I didn't knew till yesterday that I have another address there and my android blockchain wallet was showing only ballance from 1 address. CRAZY
Go MultiBTCit!