这是一个创建于 4883 天前的主题,其中的信息可能已经有所发展或是发生改变。
Dear Mt.Gox user,
Our database has been compromised, including your email. We are working on a
quick resolution and to begin with, your password has been disabled as a
security measure (and you will need to reset it to login again on Mt.Gox).
If you were using the same password on Mt.Gox and other places (email, etc),
you should change this password as soon as possible.
For more details, please see this:
https://support.mtgox.com/entries/20208066-huge-bitcoin-sell-off-due-to-a-compromised-account-rollback
The informations there will be updated as our investigation progresses.
Please accept our apologies for the troubles caused, and be certain we will do
everything we can to keep the funds entrusted with us as secure as possible.
The leaked data includes the following:
- Account number
- Account login
- Email address
- Encrypted password
While the password is encrypted, it is possible to bruteforce most passwords
with time, and it is likely bad people are working on this right now.
Any unauthorized access done to any account you own (email, mtgox, etc) should
be reported to the appropriate authorities in your country.
Thanks,
The Mt.Gox team
Our database has been compromised, including your email. We are working on a
quick resolution and to begin with, your password has been disabled as a
security measure (and you will need to reset it to login again on Mt.Gox).
If you were using the same password on Mt.Gox and other places (email, etc),
you should change this password as soon as possible.
For more details, please see this:
https://support.mtgox.com/entries/20208066-huge-bitcoin-sell-off-due-to-a-compromised-account-rollback
The informations there will be updated as our investigation progresses.
Please accept our apologies for the troubles caused, and be certain we will do
everything we can to keep the funds entrusted with us as secure as possible.
The leaked data includes the following:
- Account number
- Account login
- Email address
- Encrypted password
While the password is encrypted, it is possible to bruteforce most passwords
with time, and it is likely bad people are working on this right now.
Any unauthorized access done to any account you own (email, mtgox, etc) should
be reported to the appropriate authorities in your country.
Thanks,
The Mt.Gox team
 |
1
ideeinfo 2011-06-20 06:56:39 +08:00
杯具了
|
 |
2
wonster 2011-06-20 08:25:53 +08:00
ideeinfo 侬 好早啊
|
 |
3
c 2011-06-20 08:37:26 +08:00
丢了BTC的应该要求去赔偿!
|
|
5
wonster 2011-06-20 08:48:16 +08:00
呵呵 每天都转转
|
|
6
ideeinfo 2011-06-20 09:06:31 +08:00
居然是香港人干的?早上google提示我的gmail帐户遭到可疑的访问,赶紧改密码
The bitcoin will be back to around 17.5$/BTC after we rollback all trades that have happened after the huge Bitcoin sale that happened on June 20th near 3:00am (JST). One account with a lot of coins was compromised and whoever stole it (using a HK based IP to login) first sold all the coins in there, to buy those again just after, and then tried to withdraw the coins. The $1000/day withdraw limit was active for this account and the hacker could only get out with $1000 worth of coins. Apart from this no account was compromised, and nothing was lost. Due to the large impact this had on the Bitcoin market, we will rollback every trade which happened since the big sale, and ensure this account is secure before opening access again. UPDATE REGARDING LEAKED ACCOUNT INFORMATIONS We will address this issue too and prevent logins from each users. Leaked information includes username, email and hashed password, which does not allow anyone to get to the actual password, should it be complex enough. If you used a simple password you will not be able to login on Mt.Gox until you change your password to something more secure. If you used the same password on different places, it is recommended to change it as soon as possible. SERVICE RETURN Service will not be back before June 20th 11:00am (JST, 02:00am GMT). This may be delayed depending on what is found during the investigation. |
|
7
wonster 2011-06-20 09:11:24 +08:00
恩 不错 比抢银行来的刺激
|
|
8
ideeinfo 2011-06-20 09:35:02 +08:00
还好我的gmail密码没有到处用,否则就惨了
|
 |
9
fantianyi 2011-06-20 09:49:16 +08:00
@ideeinfo "早上google提示我的gmail帐户遭到可疑的访问,赶紧改密码"
我也有同样情况,google 安全上做得不错。 |
|
11
ideeinfo 2011-06-20 11:39:41 +08:00
看这个链接,mtgox事件的timeline: http://blog.zorinaq.com/?e=55
这段有意思,感谢这位google的兄弟,服务台太贴心了: The only positive news amongst all this is that Mike Hearn, a prominent Bitcoin community member, and part of the Google abuse/anti-hijack team, proactively forced a password change on all the Gmail accounts that were found in the leaked MtGox account list. |
 |
12
est 2011-06-20 11:45:31 +08:00
Bank robbery IRL, oh wait, not IRL.
|
|
13
est 2011-06-20 11:54:13 +08:00
reddit上的BLEAOURGH的内涵回复:
Look on the bright side: nobody in the Bitcoin mining community is going to have the processing power to make brute forcing these unsalted passwords in a reasonable amount of time feasible. |
|
14
ideeinfo 2011-06-20 12:10:06 +08:00
TrageHill开始抢客户了,哈哈
Dear Sir or Madam, A few hours ago the Bitcoin trading website Mt Gox has been hacked. Malicious individuals have been able to obtain a database containing usernames, email address and encrypted passwords. This information has been posted publicly on the internet. As a Bitcoin supporter I'm now sending a message to every email address contained in the hacked database. This is to warn you that your username, email address and password have been leaked. I therefore strongly advice you to change your passwords. If you have used the same password on different websites it's highly recommended to change your password on all of your accounts! For a more secure alternative to Mt Gox, the community appears to be moving to TradeHill. So this is no reason to lose faith in Bitcoin itself. It must be seen as a warning that not every website can be trusted with your data however! Their link is http://www.tradehill.com/?r=TH-R15683 (Note: You can remove the Referral Code when registering if you want!) This is certainly not the only website where you can exchange Bitcoins, also check out http://www.thebitcoinlist.com/dp_bitcoin/bitcoin-exchange/ Sincerely, A Bitcoin supporter 1CWSjov2N7ix41bZ8bJfHXkdLLbkUsG9Y7 |
Select Language