Author Topic: Could this be the most insecure wallet online? -RETRACTED  (Read 975 times)

0 Members and 1 Guest are viewing this topic.

Offline wdfh

  • Jr. Member
  • **
  • Posts: 26
    • View Profile
Could this be the most insecure wallet online? -RETRACTED
« on: June 04, 2017, 12:33:10 am »
Hi Guys,

I want to bring to your attention something that occurred to me today, so if by chance you go to this wallet, and coin it does not happen to you.

I'm diversifying a little, so picked up some BURST coin on Bittrex.

Behold, the online Burst Wallet
https://wallet.burst-team.us:8127/index.html

So, you register, it offers a set of of phrase words, or you can choose your own.
I chose my own, all good. Logged in, looks good.

The big fuckin problem is! if you go to login again, like I did and you don't get your phrase quite right... it will still log you in to some random account with random fuckin public keys!

I sent my coins to this random address, not realising that it was not my account. I have tried to get my withdrawal stopped by contacting Bittrex, and it is currently 'reserved'

But seriously, WTF! talk about a trap...

I request anyone reading this to go to the link https://wallet.burst-team.us:8127/index.html
Just type in one letter, or some random letters... or hold the F key down or whatever, then hit enter

You will be logged in to the wallet. There will be an ID and PUBLIC KEY for you to send your coins to!

NOT HAPPY!!!!

*retracted... moderators you can go ahead and delete this post

« Last Edit: June 04, 2017, 04:59:35 am by wdfh »

Offline wdfh

  • Jr. Member
  • **
  • Posts: 26
    • View Profile
Re: Could this be the most insecure wallet online?
« Reply #1 on: June 04, 2017, 01:23:59 am »
I have got this sorted, but still think that is an issue that you can view the wallet without a valid login

Offline wdfh

  • Jr. Member
  • **
  • Posts: 26
    • View Profile
Re: Could this be the most insecure wallet online?
« Reply #2 on: June 04, 2017, 04:58:26 am »
Still getting there...have got the manual out now, which I should have done in the first instance.
I will officially retract this statement about being insecure though, its quite the opposite actually