- Oct 14, 2005
- 9,711
- 6
- 76
Huge Bitcoin sell off due to a compromised account - rollback
DDoS attack on Mt. Gox continues!
Mt Gox and many pools have been DDOS attacked recently. Apparently someone does not like this BitCoin thing. Who has the motives to destroy it?
Senators seek crackdown on "Bitcoin" currency
Drugs and cyber terrorists are on the growing list of reasons for shutting down the anonymous digital currency. Shutting down the "Silk Road" may be a start but not the end of this battle.
LulzSec Hackers Post Sony Dev. Source Code, Get $7K Donation
Well if you've been living under a rock go over to the Video Cards and Graphics subforum and catch up. For those in the know it looks like the untrackable BitCoins are changing hands without any government oversight and now has started to land into known "cyber terrorists" hands. They may not be labeled that now but they will be. LulzSec just received a donation of BitCoins for about $7200 in U.S. currency. Many are saying this cannot be stopped much in the same way Bittorrents cannot be stopped. The virtual currency has spiked in value over the past few weeks and continues to grow in popularity.
How long before its deemed a crime to exchange virtual currency for the sake of stopping terrorism funding? Should the government regulate BitCoin transactions?
The bitcoin will be back to around 17.5$/BTC after we rollback all trades that have happened after the huge Bitcoin sale that happened on June 20th near 3:00am (JST).
Service should be back by June 20th 11:00am (JST, 02:00am GMT) with all the trades reversed and accounts available.
One account with a lot of coins was compromised and whoever stole it (using a HK based IP to login) first sold all the coins in there, to buy those again just after, and then tried to withdraw the coins. The $1000/day withdraw limit was active for this account and the hacker could only get out with $1000 worth of coins.
Apart from this no account was compromised, and nothing was lost. Due to the large impact this had on the Bitcoin market, we will rollback every trade which happened since the big sale, and ensure this account is secure before opening access again.
UPDATE REGARDING LEAKED ACCOUNT INFORMATIONS
We will address this issue too and prevent logins from each users. Leaked information includes username, email and hashed password, which does not allow anyone to get to the actual password, should it be complex enough. If you used a simple password you will not be able to login on Mt.Gox until you change your password to something more secure. If you used the same password on different places, it is recommended to change it as soon as possible.
DDoS attack on Mt. Gox continues!
So it seems as though someone out there does not want Mt. Gox to be able to stay in business. From what I've read, Mt. Gox is likely going to move to a network host that will be more resilient to attacks of this type.
A DDoS attack is a Distributed Denial of Service attack, which aims to stop legitimate users from accessing a resource. A DDoS can be performed in a variety of different ways, but from what I can guess of the nature of the attack is that it appears to be a zombie botnet attack. This is only a theory of course, however, a botnet attack is an incredibly simple and cheap way to bring down a web server such as the one used by Mt. Gox.
So, here is some theorycrafting for you: I think the attacker is either someone that doesn't want Bitcoins to be traded, or someone that wants to force Mt. Gox to have more secure servers. Generally a DDoS is perpetrated as a form of protest, or it can be a malicious attack. In my opinion, the attacker has the purpose of malice.
My opinion is based on a few assumptions. I'm going to assume that Bitcoin is still relatively obscure, so it's highly unlikely that any type of agency or group of any renown would take the time to try to bring down a small website like Mt. Gox. If anything, the attacker likely someone using a rented Botnet, or using that type of software to make themselves look much larger than they really are.
From what I've read, the attack so far has gotten about 7,000 IP addresses banned, which is a fairly small pool, which leads me to further believe that it's a very small scale attack. So, the solution of moving to a network that can handle more stress, or one that has better protection will most likely allow Mt. Gox to ignore any continued attempts by this particular individual.
Moving to a more secure network does NOT necessarily protect against a clever attacker. If the attacker gets more bandwidth to attack with, it's highly unlikely that Mt Gox will be able to protect itself. So if you're reading this Mt Gox, get yourself multiple web server backups and you'll never have this problem again.
Mt Gox and many pools have been DDOS attacked recently. Apparently someone does not like this BitCoin thing. Who has the motives to destroy it?
Senators seek crackdown on "Bitcoin" currency
ST. LOUIS (Thomson Reuters Accelus) - Two senators are pressing federal authorities to crack down on an online black market and "untraceable" digital currency known as Bitcoins after reports that they are used to buy illegal drugs anonymously.
Drugs and cyber terrorists are on the growing list of reasons for shutting down the anonymous digital currency. Shutting down the "Silk Road" may be a start but not the end of this battle.
LulzSec Hackers Post Sony Dev. Source Code, Get $7K Donation
The hacker group LulzSec has struck again and the target (surprise) is Sony.
This time theyve released 54MB of source code for Sony Computer Entertainments Developer Network, and an internal network map of Sony BMG. The group say this is their fifth Sony hack, and the 16th overall against Sony. The website attrition.org has a timeline of the recent Sony hacks that would suggest this is indeed attack No. 16.
Sony has been the victim of a stream of cyber attacks since mid-April, when hackers broke into its PlayStation Network and compromised the details of more than 100 million registered users.
LulzSec posted a terse press release on its website saying, Konichiwa from LulzSec, Sony Bastards! and Thats hackers 16, Sony 0. Your move! They signed the missive, Lulz Security, and uploaded the data as a torrent onto PirateBay.
The hacker group also announced on Twitter today that they had received $7,200 worth of BitCoin donations, bringing their total balance to $7,853.35.
Well if you've been living under a rock go over to the Video Cards and Graphics subforum and catch up. For those in the know it looks like the untrackable BitCoins are changing hands without any government oversight and now has started to land into known "cyber terrorists" hands. They may not be labeled that now but they will be. LulzSec just received a donation of BitCoins for about $7200 in U.S. currency. Many are saying this cannot be stopped much in the same way Bittorrents cannot be stopped. The virtual currency has spiked in value over the past few weeks and continues to grow in popularity.
How long before its deemed a crime to exchange virtual currency for the sake of stopping terrorism funding? Should the government regulate BitCoin transactions?
Last edited: