@valzav and @xeroc
any suggestions on this error yet?

Quote from: educatedwarrior on November 03, 2014, 03:21:52 am

Quote from: roadkill on November 03, 2014, 02:46:34 am

Quote from: educatedwarrior on November 03, 2014, 02:31:07 am

Quote from: roadkill on November 03, 2014, 02:02:30 am

So.. have you formatted yet?

Nothing else was stolen?

Hi roadkill, thanks for asking.   I created new account "delegate.educatedwarrior" to accept donations and nothing else has been stolen.   However, I'm still having issues making transfers from on wallet to another... error posted above.

Your other coins are safe? Do you suspect BTS was the sole target?

Roadkill, they wipe out my PTS, BTS, and DNS.  Probably have control of  my AGS now too.   These bastards knew what the hell they were doing.

I think a "BTS" Armory software and a hardware wallet would go a long way in the future.

You mentioned the funds were extracted to a particular address. Have the funds moved from that address?

Here is the history of what happened so far... all transactions below.

PTS
-   10/31 9:36:22pm (UTC) 2080 PTS moved to address PqwaEkunbDFBweRdNQdKPLWWSEbmXH7jrU and are still there - https://coinplorer.com/PTS/Transactions/87677618d6c2f243ea1f35b86825c565f99c166be4b58ac8445b04c1505c1ab5

DNS
-   10/31 3:58 PM http://dns.bitsharesblocks.com/blocks?top=256541 (1,021,791.78 DNS stolen, can’t tell if funds moved)
BTSX
–10/31 3:59 PM http://www.bitsharesblocks.com/blocks/block?id=887769  (440,000.50 BTS  stolen, can’t tell if funds moved)
-10/31/4:00 PM http://www.bitsharesblocks.com/blocks/block?id=887777 (559,999.38 BTS stolen, can’t tell if funds moved)

AGS
- compromised.

Why does the destination address for the transactions have  UNKNOWN as a name and how is that possible?   ... doesn't a name have to be registered with a public address, how could that be?  Looks very fishy 

Quote from: educatedwarrior on November 03, 2014, 01:06:15 pm

Here are a couple questions I can answer now.


Did you use a password manager or did you type in your password each time you loaded the wallet?   No ... any suggestions

Have you made an inventory of your wallet change addresses and compared them with the suspect address?   I'm sorry, I'm unfamiliar with what you mean by change addresses..   Could you explain?

Has bytemaster or anyone else with technical expertise contacted you to start a forensic investigation?    No

Here is a FAQ on the concept of the CHANGE ADDRESS:

http://www1.agsexplorer.com/ags101


In short, a change address is generated automatically in your wallet.

To find the change addresses in your wallet, in debug console of PTS, type:   listaddressgroupings

This will show all the change addresses. Compare these addresses with the suspect address. Is there a match?

And to confirm: I presume the funds are missing from your PTS (not BTSX) wallet. True?

Werneo , the funds are missing from my PTS wallet and my BTSX wallet and my DNS wallet.  When the notes wallet comes out I'll have to race to move it out of the genesis block before it is stolen, since they probably have control of my PTS and AGS now.

 

This could just as easily have happened to btstv because our BitShares client, account, and address is located on a windows computer that visits countless gomorragraphic websites for hours.

Therefore, we pledge to give all excess donations from now until Cyber Monday to:

BTS:codeblooded

By Cyber Monday, all our promotions will be finished, and after we finish paying out the winning contestants, all remaining balance will go towards helping recoup some of educatedwarrior's stolen BTS.

Our heart and BTS go out to you warrior, please accept our humble token of financial support.

We feel for you, because it could just as easily have been us because not only do we not have any adblock or updated antivirus software to speak of, we have brutal day jobs that make computer security learning a low priority to us.

If someone can show us how to remove the titan features, then we can have a public display of who is donating what to our injured brother.

btstv , this would be much appreciated.   I don't know how much I can thank you ... and all our other brothers lending support.   I hope the entire community can learn from this experience and establish better protocols for the future.       

Anyone planning to put together a "best practices" document for securing your bts wallet, or does one already exist?    Someone or I can start a thread if you guys think it may be beneficial.

werneo , those are some great questions.  I'm working on getting those answers to you.

Quote from: educatedwarrior on November 03, 2014, 02:31:07 am

Quote from: roadkill on November 03, 2014, 02:02:30 am

So.. have you formatted yet?

Nothing else was stolen?

Hi roadkill, thanks for asking.   I created new account "codeblooded" to accept donations and nothing else has been stolen.   However, I'm still having issues making transfers from on wallet to another... error posted above.

Your other coins are safe? Do you suspect BTS was the sole target?

Roadkill, they wipe out my PTS, BTS, and DNS.  Probably have control of  my AGS now too.   These bastards knew what the hell they were doing.

I think a "BTS" Armory software and a hardware wallet would go a long way in the future.

So.. have you formatted yet?

Nothing else was stolen?

Hi roadkill, thanks for asking.   I created new account "codeblooded" to accept donations and nothing else has been stolen.   However, I'm still having issues making transfers from on wallet to another... error posted above.

OnceUponAtime and LionDani, thank you very much for the donations.    I definitely have a long way to go to get close to recouping my loss, but this is a start and I really appreciate your charity.

Currently I'm getting errors transfering funds out of my educatedwarrior wallet so I need to get that resolved before I can transfer what donations I received out.      Issue posted here --->https://bitsharestalk.org/index.php?topic=10919.msg143861#msg143861

I did register a new name delegate.educatedwarrior which is not compromised to accept donations.

bytemaster is right, they compromised the BTSX wallet and therefore got all of my imported keys for PTS, BTC (Angelshares), BTSX, and DNS all at the same time.

So here is the total I lost... my former investment proves my loyalty to the Invictus community.
1,000,000 BTSX
2080 PTS
1,021,791 DNS

I think Liondani's idea of an insurance DAC is a great idea.  I also think a document needs to be posted with protocols to better secure wallets.   Getting a BTSX wallet compromised is devastating since you stand to lose equity in multiple DACs.  I'm definitely planning to move all of my wallets to Unix now.

Question for Bytemaster ... Is there a way to do an address substitution so I could get my AGS back ... if approved by the Invictus Community?