Author Topic: Account Hijacked  (Read 6279 times)

0 Members and 1 Guest are viewing this topic.

Offline tsuratsura-3557

Account Hijacked
« on: February 28, 2019, 04:16:13 am »
Dear Forum members,

I would like to report my account hijack that happened around Feb 7th.
As I did not check my account frequently, I just found out that my balance became almost 0 when I checked on Feb 15th.

I lost almost all cryptos that I owned and I would like to inform all Bitshares holders of this incident so that no more victims will be created.

I checked some google and found out that there was malicious Bitshares proposal around end of January in 2019.
I believe my account was hijacked by this malicious proposal and he/she stole all crypto.
I do not think I approved this proposal but I might have accidentally approved.

I have just attached cryptofresh https://cryptofresh.com/u/tsuratsura-3557 and this is the all I have.
I do hope Bitshares will prevent this kind of malicious proposal from attacking all members in the future.

Should you require anything further, please let me know.

Regards,

Toshi

Offline lin5464

  • Jr. Member
  • **
  • Posts: 41
    • View Profile
  • BitShares: lin5464
Re: Account Hijacked
« Reply #1 on: February 28, 2019, 06:23:39 am »

Offline tsuratsura-3557

Re: Account Hijacked
« Reply #2 on: February 28, 2019, 06:34:43 am »
Thanks for the information.  I just wanted to inform that

last three line transaction including this

Transfer tsuratsura-3557 send to openledger 11.539348 OPEN.BTC

were done by me.

Regards,

Offline tsuratsura-3557

Re: Account Hijacked
« Reply #3 on: February 28, 2019, 06:38:18 am »
Also, I just noticed that GANT777 stole all my BTS ?


Offline sschiessl

Re: Account Hijacked
« Reply #4 on: February 28, 2019, 08:26:20 am »
Sorry to hear about that. The new version of the UI includes protection to not accidently approve a proposal (it was already a two step process before, now it is three!).

The proposal itself can't do any harm to your account, so you must have (accidently) clicked on approving it, which then gave the attacker full access to your account.

Offline armin

  • Full Member
  • ***
  • Posts: 133
    • View Profile
Re: Account Hijacked
« Reply #5 on: February 28, 2019, 10:10:50 am »
remove the proposals from the UI, it's only causing trouble and the people who are using them currently should already know how to use the cli_wallet

Offline tsuratsura-3557

Re: Account Hijacked
« Reply #6 on: February 28, 2019, 11:08:47 am »
Thank you all and if almost all Bitshare users know how to handle and do not approve this kind of malicious proposal, I am relieved.
My loss was tremendous but I learned a lot. I do hope that this kind of thing won't happen again in Bitshares.

Very best regards,


Offline armin

  • Full Member
  • ***
  • Posts: 133
    • View Profile
Re: Account Hijacked
« Reply #7 on: February 28, 2019, 04:35:03 pm »
No actually this accident can happen to anyone, the proposal is right there on the UI to accept and an uninformed / fatigued user will make the same mistake

Offline tshen

Re: Account Hijacked
« Reply #8 on: February 28, 2019, 05:11:35 pm »
I think the UX could be improved. Maybe the proposal dialog should not just pop up. It could go to a specialized menu item that the user must intentionally go to that page and Accept after double confirmations.  In that page we could put some warning text clearly indicating that Accept could cause you to lose fund.
Tong Shen, Coordinator Assistant, Core Team | 沈瞳,BitShares Core 开发团队 协调员助理
Spark Blockchain | 星火区块链:北美领先的区块链咨询及孵化公司 https://sparkincu.com/
WeChat | 微信号: cnjsstong

Offline postup5

  • Newbie
  • *
  • Posts: 4
    • View Profile
  • BitShares: postup5
Re: Account Hijacked
« Reply #9 on: March 08, 2019, 04:43:24 pm »
This happened to me yesterday, Tuesday, March 7, 2019. I can still get into my account fortunately. The names that show up in my activity feed that various funds were sent to are as follows:
1. cryptobridge-upgrade
2. rz120
3. There was another name but so far it has been buried too far to find it.
They cancel all your orders and then go to work extracting funds. The first thing they bought was KRIPT. I found this article https://bitcoinexchangeguide.com/openledger-dex-domains-openledger-io-openledger-info-hijacked/. If you scroll down to the comments there is this link https://dex.openledger.io/access-issue-ol-reimbursement-program/ which has good information on what to do. I filled out a ticket and was immediately e-mailed: "We would like to tell you that we have received your request and a ticket has been created. We will check your message and You’ll hear from us a reply no later than in 72 hours." Here is more information if interested in this link https://steemit.com/bitshares/@kingscrown/watch-out-the-bitshares-scam-going-and-getting-more-sophisitacted.

Offline Digital Lucifer

  • Global Moderator
  • Sr. Member
  • *****
  • Posts: 323
  • 13 years of being Slackware abUser
    • View Profile
    • BitShares 3.0
  • BitShares: dls.cipher
  • GitHub: dls-cipher
Re: Account Hijacked
« Reply #10 on: March 16, 2019, 01:41:14 pm »
No actually this accident can happen to anyone, the proposal is right there on the UI to accept and an uninformed / fatigued user will make the same mistake

Accident of blind sign on a paper in a bank regarding your account and its balance ?
Milos (DL) Preocanin
Owner and manager of bitshares.org through Consensus
Move Institute - RN: 2098555000
Murska Sobota, Slovenia, SI.

Offline tsuratsura-3557

Re: Account Hijacked
« Reply #11 on: March 18, 2019, 12:18:59 pm »
Thanks for good information. I will look into them.

Regards,

This happened to me yesterday, Tuesday, March 7, 2019. I can still get into my account fortunately. The names that show up in my activity feed that various funds were sent to are as follows:
1. cryptobridge-upgrade
2. rz120
3. There was another name but so far it has been buried too far to find it.
They cancel all your orders and then go to work extracting funds. The first thing they bought was KRIPT. I found this article https://bitcoinexchangeguide.com/openledger-dex-domains-openledger-io-openledger-info-hijacked/. If you scroll down to the comments there is this link https://dex.openledger.io/access-issue-ol-reimbursement-program/ which has good information on what to do. I filled out a ticket and was immediately e-mailed: "We would like to tell you that we have received your request and a ticket has been created. We will check your message and You’ll hear from us a reply no later than in 72 hours." Here is more information if interested in this link https://steemit.com/bitshares/@kingscrown/watch-out-the-bitshares-scam-going-and-getting-more-sophisitacted.

Offline Thul3

  • Sr. Member
  • ****
  • Posts: 365
    • View Profile
Re: Account Hijacked
« Reply #12 on: March 18, 2019, 12:45:02 pm »
I had the same proposal from openledger-something .I was thinking a bit if to accept or not because a day ealier i contacted openledger support about a manuel withdrawl but decided at the end since i can't see (at least i don't know where) what the proposal contains i won't accept it.

Offline postup5

  • Newbie
  • *
  • Posts: 4
    • View Profile
  • BitShares: postup5
Re: Account Hijacked
« Reply #13 on: March 21, 2019, 11:34:17 pm »
I did hear back after a few days regarding my ticket. Seems there is nothing they can do. Here is a link to my bitshares explorer account page:http://bts.ai/u/postup5
Looks like openledger-security has control and has all but drained it. It is unacceptable that nothing has been said or done to protect others from this exploit. I won't be using bitshares anymore.

Offline iamredbar

Re: Account Hijacked
« Reply #14 on: March 22, 2019, 01:09:16 am »
I did hear back after a few days regarding my ticket. Seems there is nothing they can do. Here is a link to my bitshares explorer account page:http://bts.ai/u/postup5
Looks like openledger-security has control and has all but drained it. It is unacceptable that nothing has been said or done to protect others from this exploit. I won't be using bitshares anymore.

This is not an exploit. You need to be aware of what you are agreeing to when approving a proposal.
BitShares Testnet Witness