Cryptocurrency exchange Binance gehackt: 37 miljoen euro ...

[uncensored-r/BitcoinMarkets] Hacked Bitcoin exchange accounts and wallet.dat's posted on Tumblr - Apparently from the darknet ...

The following post by itsheath928 is being replicated because the post has been silently removed and some comments within it have been silently removed.
The original post can be found(in censored form) at this link:
np.reddit.com/ BitcoinMarkets/comments/7wrc1e
The original post's content was as follows:
http://hackedwallets.tumblr.com/
A hacker friend of mine actually found £40 BTC in a Blockchain login.
Interested to see if anyone else finds anything.
submitted by censorship_notifier to noncensored_bitcoin [link] [comments]

Hacked Bitcoin exchange accounts and wallet.dat's posted on Tumblr - Apparently from the darknet market Alphabay

Hacked Bitcoin exchange accounts and wallet.dat's posted on Tumblr - Apparently from the darknet market Alphabay submitted by HiIAMCaptainObvious to BitcoinAll [link] [comments]

02-11 06:23 - 'Hacked Bitcoin exchange accounts and wallet.dat's posted on Tumblr - Apparently from the darknet market Alphabay' (hackedwallets.tumblr.com) by /u/itsheath928 removed from /r/Bitcoin within 5-15min

Hacked Bitcoin exchange accounts and wallet.dat's posted on Tumblr - Apparently from the darknet market Alphabay
Go1dfish undelete link
unreddit undelete link
Author: itsheath928
submitted by removalbot to removalbot [link] [comments]

Hacked Bitcoin exchange accounts and wallet.dat's posted on Tumblr - Apparently from the darknet market Alphabay /r/BitcoinMarkets

Hacked Bitcoin exchange accounts and wallet.dat's posted on Tumblr - Apparently from the darknet market Alphabay /BitcoinMarkets submitted by HiIAMCaptainObvious to BitcoinAll [link] [comments]

How to Cold Store Your Cryptocurrency for Safekeeping

According to CipherTrace (which specializes in litigation tools and services for cryptographic markets), between 2018 and 2019, the amount of theft from cryptographic wallets exceeds $2 billion. Thefts and break-ins are caused by a variety of reasons: simple incompetence in cryptographic storage, as well as by companies that provide storage services. It is not unusual for holders of crypto currency to lose access to their wallets by themselves, one of the last known cases occurred in Ireland: ,57 million dollars couldn’t be confiscated from a detained drug dealer, which were stored in bitcoins. The problem was that the wallets keys were lost.
The most secure way is a cold storage — all account data and private keys are kept offline and all transactions are manual. This storage method is great because it is fully protected from hacking and interception of data, but it is not suitable for those who make daily transfers of cryptocurrency, it is simply inconvenient.
If you compare “cold and hot” wallets, you can give a simple example: A hot wallet can be compared to a wallet that can be lost and stolen. But you can always access your funds. A cold wallet is safe, and access to it is not permanent. You can also take or put money, but it will require a special code.
In this article we will tell you about the most popular types of cold wallets and we will analyze their pros and cons.

Types of cold wallets

All cold wallets have one common thing — the data is stored offline. However, there are several types of cold wallets, which differ in the degree of protection, physical embodiment and cost of the wallet.

Desktop wallet

Desktop wallets are also known for a high level of protection, in addition to the ability to store crypto currency offline. There are so-called “light” wallets weighing less than 1 gb, and “heavy” wallets weighing more than 1 gb. Two of the desktop wallets can be distinguished:

Exodus Wallet

Multicurrency wallet. It was created in 2016 and supports more than 100 crypto currencies, since 2019 has a phone application. The wallet allows you to export private keys that are created locally, and then to upload them back. Private keys can be discounted to removable media and downloaded only when the transaction is completed. If the user decides to leave private keys on the same computer where the wallet is located, keys are securely encrypted. In order to use your wallet ,there is no need to register or to download the entire blockchain — synchronization is taking place online. In addition to wallet services Exodus Wallet provides an integrated crypto-exchange. The installation file weighs 85 mb.

Bitcoin Core

Bitcoin Core is the official Bitcoin wallet. The size of the wallet is 160 gb, but according to the developers of the company, it’s better to give it a separate winchester with the size of 500 gb. From the security viewpoint, it’s suggested to install a security code or a seed phrase, which may consist 8 words. It is also suggested to copy wallet.dat file. — private wallet key, which will allow you to restore access to your funds.

Hardware wallets

Appears like a regular flash drive with an interface (screen, control keys). This wallet can safely store information about the balance and keys, full functionality is available only when connected to a computer, but the latest models have a special button that allows you to confirm the transaction without connecting to a PC. Each time the device offers to generate a new code-password to confirm the transaction, which significantly reduces the probability of hacking. After generating the code, you need to set a mnemonic phrase (seed) — it consists of 12 or 24 words, which are not related to each other in any way. Such type of wallets has a special protection system that allows you to connect even to potentially infected PCs. The wallets themselves won’t be affected by malware.
The obvious cons of hardware wallets are the following:
  1. It is also possible to lose a device that is so small in size.
  2. A physical device can easily fail due to a variety of damages.
  3. It is not recommended to buy such wallets from “hand”, even from friends, as they can be pre-installed with malware.
As you can see, storing crypto currency with a hardware wallets is very safe and secure, however you should take care about the device. Many people who hold a large amount of crypto currency, in order to not to lose a hardware wallet, store it in a safe deposit box, depriving someone of access to it.

Popular Hardware Wallets models

Trezor One

The first hardware wallet produced in 2013 by the Czech company Satoshi Labs. The device has an OLED display with a pin code, public addresses and Seed phrases. Trezor One has won recognition from users due to its multicurrency and affordable price ($65), it is also considered one of the most secure hardware wallets.
Ledger Nano S
The wallet was released in 2016 by the French company Ledger SAS. Distinctive feature from the other wallets, is the Secure Element controller, which meets banking standards and is certified CC EAL 5+. Also, in order to work with each crypto currency you need to install a special application for this currency on the device, it is not quite convenient, however more secure. The average price of the device is $85.
KeepKey
The purse was released in 2015 in the U.S.. Distinctive feature is OLED display — 256 by 64 pixels. Due to this, you can fully see both the address of the wallet, and the seed phrase. Also, the wallet has a built-in exchange service ShapeShift — an opportunity to exchange crypto currency without entering the exchange. The average price of the device is $50.
BitBox01
Ionos Schnelly’s wallet was invented in Switzerland. In size it’s almost the most compact among all representatives of the hardware wallets. A distinctive feature is the availability of a backup — the card can be multiplied and kept in several places, by analogy with the seed-phrase. In November 2020, support for these wallets will be discontinued, but all owners will be given a 30% discount on the new model. The average price of the device is $55.
CoolWalletS
Developed in Taiwan by CoolBitX, which has long been manufacturing components for Visa and MasterCard. As well as Ledger Nano S has a security standard CC EAL 5+. This wallet works only through smartphones, connecting to them through Bluetooch. The average price of the device is $100.

Paper Wallet

In the age of technological process, plain paper has become a rather reliable method for storing cryptocurrency. With the help of special services, such as bitaddress.org, you can generate public and private keys, then writing them down on paper. You can also print keys as a QR code. To accept transactions with such a wallet, you provide the sender with a public key. To access the funds, you need to find any online wallet that supports your crypto currency. Enter your private key into your online wallet, thus integrating your funds into the system. However, you should understand that after this procedure your wallet will become “hot”.
The best of this storage method — paper wallet is free, its safety depends only from you. When storing a paper wallet to protect it from the fire, water and aging. Also, do not tell other people about where your paper wallet is hidden.
The disadvantages of this storage:
  1. If your wallet is lost, it will be impossible to restore it.
  2. Exposed to a physical damage.
  3. After sending the transaction, you will have to create a new cold wallet.

Offline transaction signature

For this storage method, you will need two PCs. The essence is that the secret keys are never in contact with the Internet, but are stored digitally. Offline transaction method is suitable for people who do not make a daily transactions and have an access to two devices. The process is below:
  1. A hot wallet is installed on a PC with the Internet. The transaction is created without entering private keys and authorization.
  2. The file with transaction is copied and transferred to the second PC without Internet, where private keys are stored.
  3. The transaction is signed offline, copied and transferred back to the PC with the Internet.
In fact, you can do it with one PC and a USB drive. The USB drive will store private keys. Also, you can create a transaction without entering private keys and authorization, after disconnecting the Internet, connect the flash drive, sign the transaction, turn on the Internet. In this case, you should take care of the antivirus system.
The disadvantages of this method:
  1. Using two PCs or a USB drive involves a lot of actions, which is time consuming.
  2. You need to back up your keys in case your PC or flash drive fails.

Multi-signature wallet

This method implies the creation of a wallet, which can be only withdrawn on condition that the transaction is verified by a predetermined number of users. The maximum number of users who can hold private keys of the wallet- is 15. It is considered as one of the most reliable ways of storage, in fact private keys are not only stored offline, but also divided between different people. Often the wallet with multisignatures is used by large crypto-companies, whose management believes that individually employees can not spend the budget. Moreover, when creating this wallet, the number of required multisignatures is minimal. For example: if one of the six keys is lost, the remaining ones will be enough for the transaction.
The disadvantages of this storage:
  1. If most of the keys are lost, access to the funds cannot be restored.
  2. You will not be able to make transactions on your own without the participation of other key holders.

Private Key Fragmentation

The private wallet key consists of 64 symbols. The key is divided into several fragments. They don’t represent anything separately, but if you put all the fragments together, you can access the funds. The key fragments are similar to multisignatures, but in this case you don’t need a multisig-wallet, and the whole process can be done manually.
The disadvantages of this method:
  1. If one fragment is lost, access to funds will be lost.
  2. The maximum level of protection can only be reached when key fragments are distributed to different places, for example: bookshelf, safe deposit box, car. If you divide the key fragments and put them in different boxes — the required level of protection will not be achieved.
When writing down key fragments on paper, protect the key from fire, water and aging.

Conclusion

Digital currencies are not physically expressed and exist only in the digital code, so cold wallets that doesn’t have an access to the Internet, protect cryptocurrencies from the most important and common problem — hacker theft. However, holders of cold wallets need to understand that the safety of a private key depends only on them. There are different ways to store private keys outside the network, but each of them makes it difficult for the user to make transactions.
Hardware wallets that have been specifically designed for this purpose are considered to be the best option for storing cryptocurrencies. With their help it is possible both to store funds off the network and to make transactions easily, without risking the safety of a private key. If you use other cold wallets, it is recommended to combine them with hot wallets. Keep the required crypto currency for daily transfers on hot wallets, and keep all other crypto on cold wallets.
Please don’t forget to follow us on Telegram and stay updated!
YOUR CRYPTO BOSS
submitted by yourcryptoboss19 to u/yourcryptoboss19 [link] [comments]

Reddcoin (#RDD) May 2020 Team Update, or “New Wallets & What to Expect when You’re Expecting PoSV v2”

Link to Medium post -> https://medium.com/@techadept/reddcoin-rdd-may-2020-team-update-or-what-to-expect-when-youre-expecting-posv-v2-b708319221ce?sk=b5eafc57b67327d99a35380f390d77ca
Hey, ReddHeads!
To new ReddHeads, welcome! To old ReddHeads, welcome back! It’s an exciting time in Reddcoin (RDD) for a lot of reasons, and we, the Reddcoin Core development team, wanted to get a brief update out to touch base on some of the highlights.
Attached are some screenshots of our work to enhance security and interoperability, and to extend support to MacOS Catalina in our newest v3.10.1 wallet.
This wallet release also includes components and performance & security upgrades taken from the Bitcoin 0.10 codebase, and we will be following much of that same development and enhancement in our Reddcoin Core wallet in the future, with 0.11 up next.
This release is not a required upgrade (except for Catalina users), but will benefit user experience and security significantly. We’ll be publishing, of course, a full public changelog, hashes and commit list in Github along with open source code and compiled executables upon release.
But the major changes in Reddcoin v3 are just about to start, as PoSV v2 gets ready to activate. Released to the community on 12/24/19, the blockchain has (at time of writing) reached 8197 of the required 9000 block threshold, or 91.08% of our goal of supermajority. If you haven’t upgraded yet, or aren’t staking, it’s time.
After PoSV v2 activation, older (v2.x, v1.x) wallets will not be able to send transactions or stake.
We anticipate activation to be reached within a very short time period, especially once our Mac ReddHeads are able to participate, and as such we want to ensure that information for the general community is available and up to date.
1) AM I GOING TO LOSE MY REDDCOIN (RDD)??
a. NO. This is a soft-fork, and whether you’ve upgraded to a v3 wallet or not, you cannot lose your coins. The blockchain itself will remain the same, it is only the rules of staking that are changing. Older wallets WILL stop functioning immediately after the threshold is passed and PoSV v2 activates, but all that is required at that point to restore functionality is to install the new v3 wallet. If you need help, please join our Telegram or Discord live chats for community or Dev help directly. No ReddHead left behind!
2) WHAT DO I NEED TO DO??
a. If you’re staking, make sure you’re using a v3 wallet, preferably the latest version. Right now, that is v3.0.1, in a few days with the above noted release it will be v3.10.1. You may also wish to use the “Backup…” function at this time to make sure you have a backup of the only important file you need, the “wallet.dat” file. There are no mobile staking options at this time due to the nature of our PoSV protocol, but you can deposit coins in the dev team-run ReddBot on Telegram to stake if you have no other options until a mobile staking option is made available.
b. If you’re not staking, or are holding on Coinomi, or Guarda, or other 3rd party wallets, or on an exchange, or a paper wallet, you will also have no operational issues, but of course you’re encouraged to help secure the network and validate transactions, by starting to stake.
3) I’M BORED. ENTERTAIN ME!
a. OK. As successful as our first meetup was, we agree. Look for an upcoming benefit concert from Reddcoin and hopscotchmafiamusic.com at the end of this month. No, really. Free awesome music, cool people, come have a bit of fun with the ReddHead community virtually!
4) I’M HUNGRY. FEED ME!
a. Well…with the activation of PoSV v2, and the creation of Reddcoin’s self- funded development mechanism, we’re very excited to be able to provide at least some resources and RDD toward the Reddcoin Community Food & Supply Bank initiative in the near future. Reddcoin Core will also be donating any funds received in connection with the above concert event to worthy and working charities, especially if we can convince them to receive RDD (or BTC). Watch for further info about this and other charity initiatives to come. Our own efforts rely on PoSV v2 activation, but will be documented publicly and transparently as they evolve.
5) I WAS USING RDD AND THEN X (or Y or Z) HAPPENED AND NOW I’M BROKE AND SAD AND ANGRY. HELP ME!
a. Perhaps you’ve not heard about Reddcoin’s uniquely conceived “Reddcoin Restitution Fund”. Been hacked? Lost a few coins when your computer crashed or your brother formatted your hard drive? Reddcoin has committed a percentage of PoSV v2 funding to give back to users legitimately affected by events beyond their control.
Cases of extreme stupidity will be vetted on a case by case basis, obviously fraudulent claims will be laughed at, and all cases will be dependent on a reasonable standard of proof and verification. This is also going to be an evolving and good faith approach to giving back to our real ReddHead community, and will require both transparency and abuse-prevention to be successful, but we look forward to being able to help those who deserve and need it. NOTE: Trading and speculative losses aren’t covered in any of this. Obviously.
6) I WANT TO KNOW MORE!
We’re working right now to rebuild our main website www.reddcoin.com into a more informative and resource-rich site, but it’s a good starting point. We are in the process of updating our roadmap to cover the end of 2020 and the future as well, and both of those should be available and will be announced within the next month.
a. www.medium.com/@techadept
b. www.reddcoin.com/reddpaper and https://reddcoin.com/reddpaper-faq/
c. www.twitter.com/@reddcoin
d. www.reddit.com/reddcoin
e. https://t.me/ReddcoinOfficial (Telegram chat)
g. https://www.facebook.com/reddcoin
7) IS TECHADEPT DRINKING WHILE WRITING THIS UPDATE??
a. Yes. Macallan. Fight me.
submitted by TechAdept to reddCoin [link] [comments]

Reddcoin (#RDD) May 2020 Team Update, or “New Wallets & What to Expect when You’re Expecting PoSV v2”

Link to Medium post -> https://medium.com/@techadept/reddcoin-rdd-may-2020-team-update-or-what-to-expect-when-youre-expecting-posv-v2-b708319221ce?sk=b5eafc57b67327d99a35380f390d77ca
Hey, ReddHeads and Crypto Fans!!
To new ReddHeads, welcome! To old ReddHeads, welcome back! It’s an exciting time in Reddcoin (RDD) for a lot of reasons, and we, the Reddcoin Core development team, wanted to get a brief update out to touch base on some of the highlights.
Attached are some screenshots of our work to enhance security and interoperability, and to extend support to MacOS Catalina in our newest v3.10.1 wallet.
This wallet release also includes components and performance & security upgrades taken from the Bitcoin 0.10 codebase, and we will be following much of that same development and enhancement in our Reddcoin Core wallet in the future, with 0.11 up next.
This release is not a required upgrade (except for Catalina users), but will benefit user experience and security significantly. We’ll be publishing, of course, a full public changelog, hashes and commit list in Github along with open source code and compiled executables upon release.
But the major changes in Reddcoin v3 are just about to start, as PoSV v2 gets ready to activate. Released to the community on 12/24/19, the blockchain has (at time of writing) reached 8197 of the required 9000 block threshold, or 91.08% of our goal of supermajority. If you haven’t upgraded yet, or aren’t staking, it’s time.
After PoSV v2 activation, older (v2.x, v1.x) wallets will not be able to send transactions or stake.
We anticipate activation to be reached within a very short time period, especially once our Mac ReddHeads are able to participate, and as such we want to ensure that information for the general community is available and up to date.
1) AM I GOING TO LOSE MY REDDCOIN (RDD)??
a. NO. This is a soft-fork, and whether you’ve upgraded to a v3 wallet or not, you cannot lose your coins. The blockchain itself will remain the same, it is only the rules of staking that are changing. Older wallets WILL stop functioning immediately after the threshold is passed and PoSV v2 activates, but all that is required at that point to restore functionality is to install the new v3 wallet. If you need help, please join our Telegram or Discord live chats for community or Dev help directly. No ReddHead left behind!
2) WHAT DO I NEED TO DO??
a. If you’re staking, make sure you’re using a v3 wallet, preferably the latest version. Right now, that is v3.0.1, in a few days with the above noted release it will be v3.10.1. You may also wish to use the “Backup…” function at this time to make sure you have a backup of the only important file you need, the “wallet.dat” file. There are no mobile staking options at this time due to the nature of our PoSV protocol, but you can deposit coins in the dev team-run ReddBot on Telegram to stake if you have no other options until a mobile staking option is made available.
b. If you’re not staking, or are holding on Coinomi, or Guarda, or other 3rd party wallets, or on an exchange, or a paper wallet, you will also have no operational issues, but of course you’re encouraged to help secure the network and validate transactions, by starting to stake.
3) I’M BORED. ENTERTAIN ME!
a. OK. As successful as our first meetup was, we agree. Look for an upcoming benefit concert from Reddcoin and hopscotchmafiamusic.com at the end of this month. No, really. Free awesome music, cool people, come have a bit of fun with the ReddHead community virtually!
4) I’M HUNGRY. FEED ME!
a. Well…with the activation of PoSV v2, and the creation of Reddcoin’s self- funded development mechanism, we’re very excited to be able to provide at least some resources and RDD toward the Reddcoin Community Food & Supply Bank initiative in the near future. Reddcoin Core will also be donating any funds received in connection with the above concert event to worthy and working charities, especially if we can convince them to receive RDD (or BTC). Watch for further info about this and other charity initiatives to come. Our own efforts rely on PoSV v2 activation, but will be documented publicly and transparently as they evolve.
5) I WAS USING RDD AND THEN X (or Y or Z) HAPPENED AND NOW I’M BROKE AND SAD AND ANGRY. HELP ME!
a. Perhaps you’ve not heard about Reddcoin’s uniquely conceived “Reddcoin Restitution Fund”. Been hacked? Lost a few coins when your computer crashed or your brother formatted your hard drive? Reddcoin has committed a percentage of PoSV v2 funding to give back to users legitimately affected by events beyond their control.
Cases of extreme stupidity will be vetted on a case by case basis, obviously fraudulent claims will be laughed at, and all cases will be dependent on a reasonable standard of proof and verification. This is also going to be an evolving and good faith approach to giving back to our real ReddHead community, and will require both transparency and abuse-prevention to be successful, but we look forward to being able to help those who deserve and need it. NOTE: Trading and speculative losses aren’t covered in any of this. Obviously.
6) I WANT TO KNOW MORE!
We’re working right now to rebuild our main website www.reddcoin.com into a more informative and resource-rich site, but it’s a good starting point. We are in the process of updating our roadmap to cover the end of 2020 and the future as well, and both of those should be available and will be announced within the next month.
a. www.medium.com/@techadept
b. www.reddcoin.com/reddpaper and https://reddcoin.com/reddpaper-faq/
c. www.twitter.com/@reddcoin
d. www.reddit.com/reddcoin
e. https://www.facebook.com/reddcoin
7) IS TECHADEPT DRINKING WHILE WRITING THIS UPDATE??
a. Yes. Macallan. Fight me.
submitted by TechAdept to CryptoCurrency [link] [comments]

The biggest cryptocurrency thefts in the last 10 years

In this article, we will try to remember all the major theft of cryptocurrencies over the past 10 years.
1. Bitstamp $5.3 mln (BTC), January 4th, 2015
On January 4, 2015, the operational hot wallet of Bitstamp announced that it was hacked by an anonymous hacker and 19,000 Bitcoins (worth of $5 million) were lost.
The initiation of the attack fell on November 4, 2014. Then Damian Merlak, the CTO of the exchange, was offered free tickets to punk rock festival Punk Rock Holiday 2015 via Skype, knowing that Merlak is interested in such music and he plays in the band. To receive the tickets, he was asked to fill out a participant questionnaire by sending a file named “Punk Rock Holiday 2015 TICKET Form1.doc”. This file contained the VBA script. By opening the file, he downloaded the malware on his computer. Although Merlak did not suspect wrong and has opened the "application form", to any critical consequences, this did not open access to the funds of exchange.
The attackers, however, did not give up. The attack continued for five weeks, during which hackers presented themselves as journalists, then headhunters.
Finally, the attackers were lucky. On December 11, 2014, the infected word document was opened on his machine by Bitstamp system administrator Luka Kodric, who had access to the exchange wallet. The file came to the victim by email, allegedly on behalf of an employee of the Association for computer science, although in fact, as the investigation showed, the traces of the file lead deep into Tor. Hackers were not limited to just one letter. Skype attacker pretending to be an employee of the Association for computing machinery, convinced that his Frame though to make international honor society, which required some paperwork. Kodric believed.
By installing a Trojan on Kodriс's computer hackers were able to obtain direct access to the hot wallet of the exchange. The logs show that the attacker, under the account of Kodric, gained access to the server LNXSRVBTC, where he kept the wallet file.dat, and the DORNATA server where the password was stored. Then the servers were redirected to a certain IP address that belongs to one of the providers of Germany.
There are still no official reports of arrests in this case. Obviously, the case is complicated by the fact that the hackers are outside the UK, and the investigation has to cooperate with law enforcement agencies in other countries.
2. GateHub $9.5 mln (XRP), June 1th, 2019
Hackers have compromised nearly 100 XRP Ledger wallets on cryptocurrency wallet service GateHub. The incident was reported by GateHub in a preliminary statement on June 6.
XRP enthusiast Thomas Silkjær, who first noticed the suspicious activity, estimates that the hackers have stolen nearly $10 million worth of cryptocurrency (23,200,000 XRP), $5.5 million (13,100,000 XRP) of which has already been laundered through exchanges and mixer services.
GateHub notes that it is still conducting an investigation and therefore cannot publish any official findings. Also, GateHub advises victims to make complaints to the relevant authorities of their jurisdiction.
3. Tether, $30.9 mln (USDT), November 19th, 2017
Tether created a digital currency called "US tokens" (USDT) — they could be used to trade real goods using Bitcoin, Litecoin and Ether. By depositing $1 in Tether, the user received 1 USD, which can be converted back into fiat. On November 19, 2017, the attacker gained access to the main Tether wallet and withdrew $ 30.9 million in tokens. For the transaction, he used a Bitcoin address, which means that it was irreversible.
To fix the situation, Tether took action by which the hacker was unable to withdraw the stolen money to fiat or Bitcoin, but the panic led to a decrease in the value of Bitcoin.
4. Ethereum, $31 mln (ETH), July 20th, 2017
On July 20, 2017, the hacker transferred 153,037 Ethers to $31 million from three very large wallets owned by SwarmCity, Edgeless Casino and Eternity. Unknown fraudster managed to change the ownership of wallets, taking advantage of the vulnerability with multiple signatures.
First, the theft was noticed by the developers of SwarmCity.
Further events deserve a place in history: "white hackers" returned the stolen funds, and then protected other compromised accounts. They acted in the same way as criminals, who stole funds from vulnerable wallets — just not for themselves. And it all happened in less than a day.
5. Dao (Decentralized Autonomous Organization) $70 mln (ETH), June 18th, 2016
On June 18, 2016, members of the Ethereum community noticed that funds were being drained from the DAO and the overall ETH balance of the smart contract was going down. A total of 3.6 million Ether (worth around $70 million at the time) was drained by the hacker in the first few hours. The attack was possible because of an exploit found in the splitting function. The attackes withdrew Ether from the DAO smart contract multiple times using the same DAO Tokens. This was possible due to what is known as a recursive call exploit.
In this exploit, the attacker was able to "ask" the smart contract (DAO) to give the Ether back multiple times before the smart contract could update its own balance. There were two main faults that made this possible: the fact that when the DAO smart contract was created the coders did not take into account the possibility of a recursive call, and the fact that the smart contract first sent the ETH funds and then updated the internal token balance.
It's important to understand that this bug did not come from Ethereum itself, but from this one application that was built on Ethereum. The code written for the DAO had multiple bugs, and the recursive call exploit was one of them. Another way to look at this situation is to compare Ethereum to the Internet and any application based on Ethereum to a website: if a website is not working, it doesn't mean that the Internet is not working, it simply means that one website has a problem.
The hacker stopped draining the DAO for unknown reasons, even though they could have continued to do so.
The Ethereum community and team quickly took control of the situation and presented multiple proposals to deal with the exploit. In order to prevent the hacker from cashing in the Ether from his child DAO after the standard 28 days, a soft-fork was voted on and came very close to being introduced. A few hours before it was set to be released, a few members of the community found a bug with the implementation that opened a denial-of-service attack vector. This soft fork was designed to blacklist all the transactions made from the DAO.
6. NiceHash, 4736.42 (BTC), December 6th, 2017
NiceHash is a Slovenian cryptocurrency hash power broker with integrated marketplace that connects sellers of hashing power (miners) with buyers of hashing power using the sharing economy approach.
On December 6, 2017, the company's servers became the target of attack. At first, Reddit users reported that they could not access their funds and make transactions — when they tried to log in, they were shown a message about a service interruption. In the end, it became known that the service had undergone a major cyberattack and 4736,42 Bitcoins disappeared without a trace.
Despite heavy losses, NiceHash was able to continue working, but CEO and founder Marco Koval resigned, giving way to a new team. The company managed to maintain the trust of investors and began to strengthen the protection of its systems.
7. Mt.Gox, 850000 (BTC), June 19th, 2011
The Hacking Of Mt.Gox was one of the biggest Bitcoin thefts in history. It was the work of highly professional hackers using complex vulnerabilities.
A hacker (or a group of hackers) allegedly gained access to a computer owned by one of the auditors and used a security vulnerability to access Mt.Gox servers, then changed the nominal value of Bitcoin to 1 cent per coin.
Then they brought out about 2000 BTC. Some customers, without knowing it, conducted transactions at this low price, a total of 650 BTC, and despite the fact that the hacking hit the headlines around the world, no Bitcoin could be returned.
To increase investor confidence, the company has compensated all of the stolen coins, placed most of the remaining funds in offline storage, and the next couple of years was considered the most reliable Bitcoin exchanger in the world.
However, it was only an illusion of reliability.
The problems of the organization were much more serious, and the management probably did not even know about them.
CEO of Mt.Gox, Mark Karpeles, was originally a developer, but over time he stopped delving into technical details, basking in the rays of glory — because he created the world's largest platform for cryptocurrency exchange. At that time Mt.Gox handled over 70% of all Bitcoin transactions.
And, of course, there were those who wanted to take advantage of the technological weakness of the service. At some point, hackers made it so that Bitcoins could be bought at any price, and within minutes millions of dollars worth of coins were sold — mostly for pennies. World prices for Bitcoin stabilized in a few minutes, but it was too late.
As a result, Mt.Gox lost about 850,000 Bitcoins. The exchange had to declare bankruptcy, hundreds of thousands of people lost money, and the Japanese authorities arrested CEO Mark Karpeles for fraud. He pleaded not guilty and was subsequently released. In 2014, the authorities restored some of the Bitcoins remaining at the old addresses, but did not transfer them to the exchange, and created a trust to compensate for the losses of creditors.
8. Coincheck, $530 mln, January 26th, 2018
The sum was astonishing, and even surpassed the infamous Mt.Gox hack.
While Mt.Gox shortly filed for bankruptcy following the hack, Coincheck has surprisingly remained in business and was even recently approved as a licensed exchange by Japan’s Financial Services (FSA).
Coincheck was founded in 2014 in Japan and was one of the most popular cryptocurrency exchanges in the country. Offering a wide variety of digital assets including Bitcoin, Ether, LISK, and NEM, Coincheck was an emerging exchange that joined the Japan Blockchain Association.
Since Coincheck was founded it 2014, it was incidentally not subject to new exchange registration requirements with Japan’s FSA — who rolled out a framework after Mt. Gox –, and eventually was a contributing factor to its poor security standards that led to the hack.
On January 26th, 2018, Coincheck posted on their blog detailing that they were restricting NEM deposits and withdrawals, along with most other methods for buying or selling cryptocurrencies on the platform. Speculation arose that the exchange had been hacked, and the NEM developers issued a statement saying they were unaware of any technical glitches in the NEM protocol and any issues were a result of the exchange’s security.
Coincheck subsequently held a high-profile conference where they confirmed that hackers had absconded with 500 million NEM tokens that were then distributed to 19 different addresses on the network. Totaling roughly $530 million at the time — NEM was hovering around $1 then — the Coincheck hack was considered the largest theft in the industry’s history.
Coincheck was compelled to reveal some embarrassing details about their exchange’s security, mentioning how they stored all of the NEM in a single hot wallet and did not use the NEM multisignature contract security recommended by the developers.
Simultaneously, the NEM developers team had tagged all of the NEM stolen in the hack with a message identifying the funds as stolen so that other exchanges would not accept them. However, NEM announced they were ending their hunt for the stolen NEM for unspecified reasons several months later, and speculation persisted that hackers were close to cashing out the stolen funds on the dark web.
Mainstream media covered the hack extensively and compared it to similar failures by cryptocurrency exchanges in the past to meet adequate security standards. At the time, most media coverage of cryptocurrencies was centered on their obscure nature, dramatic volatility, and lack of security. Coincheck’s hack fueled that narrative considerably as the stolen sum was eye-popping and the cryptocurrency used — NEM — was unknown to most in the mainstream.
NEM depreciated rapidly following the hack, and the price fell even more throughout 2018, in line with the extended bear market in the broader industry. Currently, NEM is trading at approximately $0.07, a precipitous fall from ATH over $1.60 in early January.
The extent of the Coincheck hack was rivaled by only a few other hacks, notably the Mt.Gox hack. While nominally Coincheck is the largest hack in the industry’s history, the effects of Mt.Gox were significantly more impactful since the stolen funds consisted only of Bitcoin and caused a sustained market correction as well as an ongoing controversy with the stolen funds and founder. Moreover, Mt.Gox squandered 6% of the overall Bitcoin circulation at the time in a market that was much less mature than it is today.
Despite the fallout, Coincheck is now fully operational and registered with Japan’s FSA.
As practice shows, people make mistakes and these mistakes can cost a lot. Especially, when we talk about mad cryptoworld. Be careful and keep your private keys in a safe place.
submitted by SwapSpace_co to BitcoinMarkets [link] [comments]

Groestlcoin 6th Anniversary Release

Introduction

Dear Groestlers, it goes without saying that 2020 has been a difficult time for millions of people worldwide. The groestlcoin team would like to take this opportunity to wish everyone our best to everyone coping with the direct and indirect effects of COVID-19. Let it bring out the best in us all and show that collectively, we can conquer anything.
The centralised banks and our national governments are facing unprecedented times with interest rates worldwide dropping to record lows in places. Rest assured that this can only strengthen the fundamentals of all decentralised cryptocurrencies and the vision that was seeded with Satoshi's Bitcoin whitepaper over 10 years ago. Despite everything that has been thrown at us this year, the show must go on and the team will still progress and advance to continue the momentum that we have developed over the past 6 years.
In addition to this, we'd like to remind you all that this is Groestlcoin's 6th Birthday release! In terms of price there have been some crazy highs and lows over the years (with highs of around $2.60 and lows of $0.000077!), but in terms of value– Groestlcoin just keeps getting more valuable! In these uncertain times, one thing remains clear – Groestlcoin will keep going and keep innovating regardless. On with what has been worked on and completed over the past few months.

UPDATED - Groestlcoin Core 2.18.2

This is a major release of Groestlcoin Core with many protocol level improvements and code optimizations, featuring the technical equivalent of Bitcoin v0.18.2 but with Groestlcoin-specific patches. On a general level, most of what is new is a new 'Groestlcoin-wallet' tool which is now distributed alongside Groestlcoin Core's other executables.
NOTE: The 'Account' API has been removed from this version which was typically used in some tip bots. Please ensure you check the release notes from 2.17.2 for details on replacing this functionality.

How to Upgrade?

Windows
If you are running an older version, shut it down. Wait until it has completely shut down (which might take a few minutes for older versions), then run the installer.
OSX
If you are running an older version, shut it down. Wait until it has completely shut down (which might take a few minutes for older versions), run the dmg and drag Groestlcoin Core to Applications.
Ubuntu
http://groestlcoin.org/forum/index.php?topic=441.0

Other Linux

http://groestlcoin.org/forum/index.php?topic=97.0

Download

Download the Windows Installer (64 bit) here
Download the Windows Installer (32 bit) here
Download the Windows binaries (64 bit) here
Download the Windows binaries (32 bit) here
Download the OSX Installer here
Download the OSX binaries here
Download the Linux binaries (64 bit) here
Download the Linux binaries (32 bit) here
Download the ARM Linux binaries (64 bit) here
Download the ARM Linux binaries (32 bit) here

Source

ALL NEW - Groestlcoin Moonshine iOS/Android Wallet

Built with React Native, Moonshine utilizes Electrum-GRS's JSON-RPC methods to interact with the Groestlcoin network.
GRS Moonshine's intended use is as a hot wallet. Meaning, your keys are only as safe as the device you install this wallet on. As with any hot wallet, please ensure that you keep only a small, responsible amount of Groestlcoin on it at any given time.

Features

Download

iOS
Android

Source

ALL NEW! – HODL GRS Android Wallet

HODL GRS connects directly to the Groestlcoin network using SPV mode and doesn't rely on servers that can be hacked or disabled.
HODL GRS utilizes AES hardware encryption, app sandboxing, and the latest security features to protect users from malware, browser security holes, and even physical theft. Private keys are stored only in the secure enclave of the user's phone, inaccessible to anyone other than the user.
Simplicity and ease-of-use is the core design principle of HODL GRS. A simple recovery phrase (which we call a Backup Recovery Key) is all that is needed to restore the user's wallet if they ever lose or replace their device. HODL GRS is deterministic, which means the user's balance and transaction history can be recovered just from the backup recovery key.

Features

Download

Main Release (Main Net)
Testnet Release

Source

ALL NEW! – GroestlcoinSeed Savior

Groestlcoin Seed Savior is a tool for recovering BIP39 seed phrases.
This tool is meant to help users with recovering a slightly incorrect Groestlcoin mnemonic phrase (AKA backup or seed). You can enter an existing BIP39 mnemonic and get derived addresses in various formats.
To find out if one of the suggested addresses is the right one, you can click on the suggested address to check the address' transaction history on a block explorer.

Features

Live Version (Not Recommended)

https://www.groestlcoin.org/recovery/

Download

https://github.com/Groestlcoin/mnemonic-recovery/archive/master.zip

Source

ALL NEW! – Vanity Search Vanity Address Generator

NOTE: NVidia GPU or any CPU only. AMD graphics cards will not work with this address generator.
VanitySearch is a command-line Segwit-capable vanity Groestlcoin address generator. Add unique flair when you tell people to send Groestlcoin. Alternatively, VanitySearch can be used to generate random addresses offline.
If you're tired of the random, cryptic addresses generated by regular groestlcoin clients, then VanitySearch is the right choice for you to create a more personalized address.
VanitySearch is a groestlcoin address prefix finder. If you want to generate safe private keys, use the -s option to enter your passphrase which will be used for generating a base key as for BIP38 standard (VanitySearch.exe -s "My PassPhrase" FXPref). You can also use VanitySearch.exe -ps "My PassPhrase" which will add a crypto secure seed to your passphrase.
VanitySearch may not compute a good grid size for your GPU, so try different values using -g option in order to get the best performances. If you want to use GPUs and CPUs together, you may have best performances by keeping one CPU core for handling GPU(s)/CPU exchanges (use -t option to set the number of CPU threads).

Features

Usage

https://github.com/Groestlcoin/VanitySearch#usage

Download

Source

ALL NEW! – Groestlcoin EasyVanity 2020

Groestlcoin EasyVanity 2020 is a windows app built from the ground-up and makes it easier than ever before to create your very own bespoke bech32 address(es) when whilst not connected to the internet.
If you're tired of the random, cryptic bech32 addresses generated by regular Groestlcoin clients, then Groestlcoin EasyVanity2020 is the right choice for you to create a more personalised bech32 address. This 2020 version uses the new VanitySearch to generate not only legacy addresses (F prefix) but also Bech32 addresses (grs1 prefix).

Features

Download

Source

Remastered! – Groestlcoin WPF Desktop Wallet (v2.19.0.18)

Groestlcoin WPF is an alternative full node client with optional lightweight 'thin-client' mode based on WPF. Windows Presentation Foundation (WPF) is one of Microsoft's latest approaches to a GUI framework, used with the .NET framework. Its main advantages over the original Groestlcoin client include support for exporting blockchain.dat and including a lite wallet mode.
This wallet was previously deprecated but has been brought back to life with modern standards.

Features

Remastered Improvements

Download

Source

ALL NEW! – BIP39 Key Tool

Groestlcoin BIP39 Key Tool is a GUI interface for generating Groestlcoin public and private keys. It is a standalone tool which can be used offline.

Features

Download

Windows
Linux :
 pip3 install -r requirements.txt python3 bip39\_gui.py 

Source

ALL NEW! – Electrum Personal Server

Groestlcoin Electrum Personal Server aims to make using Electrum Groestlcoin wallet more secure and more private. It makes it easy to connect your Electrum-GRS wallet to your own full node.
It is an implementation of the Electrum-grs server protocol which fulfils the specific need of using the Electrum-grs wallet backed by a full node, but without the heavyweight server backend, for a single user. It allows the user to benefit from all Groestlcoin Core's resource-saving features like pruning, blocks only and disabled txindex. All Electrum-GRS's feature-richness like hardware wallet integration, multi-signature wallets, offline signing, seed recovery phrases, coin control and so on can still be used, but connected only to the user's own full node.
Full node wallets are important in Groestlcoin because they are a big part of what makes the system be trust-less. No longer do people have to trust a financial institution like a bank or PayPal, they can run software on their own computers. If Groestlcoin is digital gold, then a full node wallet is your own personal goldsmith who checks for you that received payments are genuine.
Full node wallets are also important for privacy. Using Electrum-GRS under default configuration requires it to send (hashes of) all your Groestlcoin addresses to some server. That server can then easily spy on your transactions. Full node wallets like Groestlcoin Electrum Personal Server would download the entire blockchain and scan it for the user's own addresses, and therefore don't reveal to anyone else which Groestlcoin addresses they are interested in.
Groestlcoin Electrum Personal Server can also broadcast transactions through Tor which improves privacy by resisting traffic analysis for broadcasted transactions which can link the IP address of the user to the transaction. If enabled this would happen transparently whenever the user simply clicks "Send" on a transaction in Electrum-grs wallet.
Note: Currently Groestlcoin Electrum Personal Server can only accept one connection at a time.

Features

Download

Windows
Linux / OSX (Instructions)

Source

UPDATED – Android Wallet 7.38.1 - Main Net + Test Net

The app allows you to send and receive Groestlcoin on your device using QR codes and URI links.
When using this app, please back up your wallet and email them to yourself! This will save your wallet in a password protected file. Then your coins can be retrieved even if you lose your phone.

Changes

Download

Main Net
Main Net (FDroid)
Test Net

Source

UPDATED – Groestlcoin Sentinel 3.5.06 (Android)

Groestlcoin Sentinel is a great solution for anyone who wants the convenience and utility of a hot wallet for receiving payments directly into their cold storage (or hardware wallets).
Sentinel accepts XPUB's, YPUB'S, ZPUB's and individual Groestlcoin address. Once added you will be able to view balances, view transactions, and (in the case of XPUB's, YPUB's and ZPUB's) deterministically generate addresses for that wallet.
Groestlcoin Sentinel is a fork of Groestlcoin Samourai Wallet with all spending and transaction building code removed.

Changes

Download

Source

UPDATED – P2Pool Test Net

Changes

Download

Pre-Hosted Testnet P2Pool is available via http://testp2pool.groestlcoin.org:21330/static/

Source

submitted by Yokomoko_Saleen to groestlcoin [link] [comments]

Years of Searching: Found Bitcoin Wallet. Data File Missing. Possible Conspiracy?

I sold a lot of runescape gold for bitcoin back in 2010/2011 as a young teenager. I also did a bit of mining. I can't remember the exact amount, but I believe I had around 500 bitcoin in 2011. At the time, it was only worth a few hundred dollars, which was still a lot for me back then. It was my pride and joy. At some point in 2011, my harddrive corrupted and my computer was inaccessible. I paid a hundred or so dollars at best buy to get it fixed. They were unable to do so. I searched the internet for answers to no avail. My birthday came around and I got a new laptop. I kinda just called the old laptop a complete loss. In 2012 I moved off for college. I honesly wasn't even thinking about bitcoin that entire year. That was until my second semester in college, the tail end of 2012. Bitcoin was soaring. Word was getting around that it was at $10/btc. At the time, this was actually huge. A lot of people started cashing out here, believe it or not. It was at this time that I remembered the old laptop. The bitcoin I had was now worth around $5k. I still had no idea how to recover it, but I knew I needed to get that laptop when I went back home. I go home for the holidays and ask about it. My parents had cleaned up house and said they threw it away as they thought it was broken. I was heartbroken. As a broke college student, that $5k was gonna really come in handy. I basically signed that bitcoin off completely after that. It was confirmed trashed.
Fast forward a few years. Christmas 2017. Bitcoin is soaring out of control. Now at $15k/btc. Everyone is talking about it. It became a topic at the dinner table. I told everyone about how I once had 500 BTC but it was lost on an old, corrupted, laptop that was thrown away. My dad is fantasizing about how rich we'd be now. He was very frustrated at the idea of literally throwing it away. It was at this point my sister's husband says that my dad gave him a laptop amongst other old electronics back then and that he thinks he still has it. We literally ended the dinner right then and there as I demanded we drive to his house. We search all over to no avail. He thinks he might have actually thrown it away as well... The loss is felt all over again.
Fast forward. March 2020. Things really haven't worked out for me in life. I'm broke. I'm out of a job at the moment due to corona. Idk how I'm ever gonna get ahead. I have random nights where I beat myself up for not being smarter as a teen. Surely there was a simple solution to a corrupt harddrive. Why did I smoke so much damn weed? Why did my dad have to give it away? Why did my sister's husband have to throw it away? Whyyyyyyyy. My sister calls me. She says she found my laptop. Holy. Shit. I drive over and power it up at her house. It turns on flawlessly... Everything is there... All my files... No corrupt harddrive anymore... What the fuck... I open bitcoin. Error. I search through all the files. The wallet is missing. "Wallet.dat" is gone. "Wallet.cpp" and "wallet.h" are there, but not the data file. What the fuck is going on. There's no way my sister did anything, she is clueless with computers. Her husband is a web developer though... Maybe he fixed it and stole the wallet. Maybe that's why they've had a huge upgrade in their life in the past year... I ask my sister if her husband did anything and she says not that she knows of. Why would she tell me about it then? Surely she would know if her husband acquire millions in bitcoin? Was this her way of telling me without actually telling me? She knows I've fallen on tough times. Does she feel guilty? I confront her husband and he has no idea what I'm talking about. I feel like I'm acting crazy now. Was I hacked in the past and had my wallet stolen? Did the best buy person steal it? I seriously think it was her husband. As far as I know, he still works the same job, but they've bought a huge house, multiple cars, and lived a lavish lifestyle all in the past year.
I'm losing my mind here. My sister acts clueless. I feel like a crazy horrible person to even accuse them of doing that, but here I am... seriously questioning them now. I just don't know what to do from here. Do I call the police? I don't even know if I technically owned that bitcoin. I'm just so confused by everything right now. If her husband found the laptop in 2017 and cashed out, he would have made at least $7 million. That's enough to make ANYONE turn slimy. Hell, part of me doesn't even blame him. I just want to know what the fuck happened. It is driving me absolutely insane.
Does anyone have any advice here? And if, by chance, said husband reads this, if you stole the btc just give me some sign to ease my mind. Anything. I just want to know. If you didn't steal it, I'm sincerely sorry, but I hope you understand why I would accuse you.
submitted by 123848912384 to Bitcoin [link] [comments]

SPOILERS [S3E10] The loop of Elliot "saving the company / stopping the hack" in S1E1, the logistics "mirage" of S3, and Hot Carla's take on Elliot in Red Wheelbarrow

SUMMARY - When Elliot is heralded as a hero for "saving" something, he is actually hacking and/or destroying it, and the pattern continues. This premise builds Elliot's loops, hacks, and undo/restarts, and he's not done. Here is what I think really happened in S3 and where things will go in S4. Like Tyrell said, "old habits, they die hard".
Remember the pilot where everyone on the show congratulated Elliot for "saving the company" (Allsafe) and "stopping the hack" (ecorp)? Elliot was heralded as being a savior for stopping the big hack, when in fact he was starting another hack that would later end Allsafe and severely damage ecorp. Elliot's trip to the Dulles server farm to stop the big ecorp hack was the cover he used, and that is where he actually planted the .dat file, right in front of us, under our noses, that would later be exploited.
https://www.usanetwork.com/mrrobot/timeline-gallery/mr-robot-season-1-easter-eggs
Elliot's actions and patterns throughout the series mirror the rootkit that was the cause of that big ecorp hack of the pilot, with Elliot as the rootkit physically and digitally.
E: I think they got a rootkit sitting inside the servers.
A: What's a rootkit?
L: ...it's a malicious code that completely takes over their system. It could delete system files, install programs, - viruses, worms -
A: How do we stop it?
E: That's the thing, it's fundamentally invisible. You can't stop it.
L: All of their servers are timing out. None of them are coming back up. This means every time we restart a server the virus replicates itself during boot-up, then crashes the host.
L: How are we supposed to bring up the network if we can't restart the servers?
E: We can't, which is what they wanted. By defending ourselves, we ended up spreading the virus everywhere.
This kind of deceptive loop of Elliot taking action to "save" something, and TELLING US he is saving something, while he is doing something entirely different is a pattern for him, and is augmented by the fact that Elliot TELLS US he hacks everyone and lies to us, so we do know that is one truth of the show....Elliot HACKS and LIES. We see Elliot do this with Stage 2, where only he knows the whole plan and Tyrell/Darlene are left wondering what is happening, even though they are both working for Elliot. We see it with Elliot's Stage 3 fakeout to own the Dark Army.

To continue that pattern, we see Elliot take control of the ecorp logistics system under the guise of creating a "paper record mirage" to keep the paper records from being blown up by his own work (allegedly as Mr. Robot) in Stage 2, in which Elliot ended up "failing". But that isn't the ONLY result of that hack. Here is what I believe really happened.

Remember that at the fancy dinner attended by Zhang/WhiteRose and Price in S3E6-7, Zhang/WR assigned a task to Price: shipping her project to the Congo using ecorp's logistics system. The very same logistics system we saw Elliot own when he started working at ecorp.....and STILL OWNS in the S3E10 finale. Elliot needed to own ecorp's logistics system and make it seem like he had a purpose for it other than his goal later on, much like his trip to the Dulles server farm in the pilot, for a later move and payout. In the case of the logistics system, Elliot needed it as the first part of his plan to get to the side of WhiteRose, since he is the ONLY PERSON who can bust through the logistics issue of getting her project to the Congo. We don't know yet HOW Elliot knows WR will want to move her project to the Congo or how long he might have known of it (possibly since childhood if he got wind of it when visiting his dad at ecorp, which we were subtly told he did in S2E6's scene w/young Elliot and Edward in the car outside the Mr. Robot store), or if he knows because he is working fowith another high-level player (like Price) that hasn't been disclosed yet, so this will need to be addressed in S4, but Elliot knows WR has a project to move to the Congo before he hacks the DA. Back to the point, this logistics move only gets Elliot one-third the way there.

Unfortunately, this means Elliot has to produce another set of circumstances that will challenge the shipping of WR's project to the Congo. What is that block? MARTIAL LAW. Martial law circumvents a lot of current DA operatives and bribes because there are a new set of players/rules/circumstances put into effect that are too new and numerous for the DA to get control of quickly enough to overcome this obstacle.

Why is there martial law in effect? Because the 71 buildings blew up. Unpleasant as it is to think about, Elliot needed those 71 buildings to blow in order to create the martial law situation, so I believe that no matter what any form of Elliot told us, we were witnessing a loop similar to the pilot hack. I believe that Elliot was NOT trying to actually stop the buildings from blowing at all, but had another agenda that needed to be started under cover of the hoodie-clad rioter chaos (and I don't think those rioters in HOODIES were any coincidence, especially on the only ecorp workday where Elliot NEVER took his hoodie off....) in the main ecorp building, and completed in the 2nd ecorp building that he snuck into after the chaos of the bomb threat that he called in, after he was fired and his access to ecorp allegedly revoked (providing a cover story and plausible deniability for Elliot should anyone suspect or try to pin things on him). What Elliot did there has yet to be revealed, but I strongly suspect that he owned ECOIN and perhaps something else that we haven't yet seen...possibly the new technology prototype that Tyrell spoke of in his "prep for Price pitch" that we saw in S1E3", possibly WHITEROSE'S PROJECT. Whatever it is, I believe we are due for another big ecorp hack reveal in S4.

So while Elliot kept our confidence and sympathy, and earned the sympathy of Darlene and Angela in his apparently valiant attempts to stop his own Stage 2 plan, I believe that Elliot NEEDED Stage 2 to happen exactly as it did....with the full force of the Dark Army taking out the 71 buildings....because this series of events facilitated martial law being imposed and allowed Elliot to own one or more things that haven't yet been revealed. Without the martial law blockade, Elliot cannot get to the side of WhiteRose with his "miraculous save" that he offered - and apparently delivered - at the end of S3. And creating a plan that one DELIBERATELY SABOTAGES is an EXCELLENT way to trace response preparedness/power pathways/players and test loyalties along the way, which is exactly what Elliot did with Stage 2 and in S3. We got a small-scale sample of that when Elliot was released from prison in S2 and wanted Cisco to arrange a meet with Xun, where Elliot asked about Stage 2. I believe Elliot knew full well what Stage 2 was (despite what he told us), thus causing intended confusion among the players ("this will get them talking"). Sam Esmail and the cast mentioned over and over that loyalty was a key theme in S3, and indeed it was. In the end of S3, Elliot has much more information about players, pathways, and the bottom line of the desires/motivations/loyalties of people in his realm, including Angela and Darlene.

There was one more component to Elliot's solution to WhiteRose, which was the Stage 3 deception that he already admitted to us was a ruse to own the DA. Elliot still owns everything DA at the end of S3, they have no time/way to recover before the end of the season, and he impresses WR enough that she sacrifices Grant to keep Elliot around, which is exactly where Elliot wants to be.

Elliot's attempts to "save" something literally blow up....but I believe those were the intended consequences the whole time. We hear Elliot and Mr. Robot occasionally comment over the 3 seasons about casualties, persistence, the losses, and the cost to get to that point, especially in their last subway conversation of S3. And in that conversation, we HEAR Elliot literally say that he did all this "for ME...I'm doing this FOR ME." That line is classic Mr. Robot, because even though Elliot tells Mr. Robot/us DIRECTLY that he did all this for himself, the context used to frame up what he did and why he did it, and the brilliant acting of Rami Malek that imbues those words with such pained sincerity, leave us feeling like Elliot really wants to try to fix things by undoing the hack. So at the end of S3, we see Elliot send the encryption key to some general ecorp address. But, as many posters here have written, and the Parsons-educated prostitute notes in the post-credit scene of S3, undoing the hack will not be beneficial, and will make things worse. As smart and thorough as Elliot is, I believe he already knows this, I don't think he is in any way ignorant of that fact. Not sure exactly what he has in store, but I'm guessing it isn't what he told us in S3. If Elliot owns Ecoin, he could lock up all the wallets (like we saw with Ray's situation of S2) and then restore debt with the ecorp records, inciting outrage among the masses as they would have no access to money. Whatever it is, it will probably be the fuel to fire a full-scale revolution that Mr. Robot told us about in the pilot, especially since Elliot has even more ways to kill the public's confidence in ecorp, which is so deeply embedded in the world's economy that destroying it will rouse the whole world to revolution.

Side note - I also think that between Elliot's "metadata" hack of the FBI of S3E4 and the access to FBI's Sentinel that Elliot was literally given (by Dom, under protest) as a way to get the encryption keys (which he had the whole time...and I believe he knew it), Elliot probably owns SENTINEL. Sentinel is a key database not just for the FBI, but NSA and the CIA as well, so if Elliot owns that, he is much closer to god access than he ever was before. I believe that Elliot had his "key" plan in motion and spotlighted Romero as the pathway to get into Sentinel under the guise of trying to find the encryption keys, which would also support the idea that many folks have had on the sub, that Elliot is ultimately responsible for Romero's death. And let's not forget that last we knew, Elliot still owned Vera's whole operation, we never saw him actually turn anything over to the authorities...that was just dropped. Vera also showed back up in the post-credit scene of S3, so will be very interesting to see where that leads in S4.

So by the end of S3, Elliot STILL owns ecorp, as he has since S1, and has increased his access there, and he likely owned Ecoin before S3 ever ended right under our noses. Elliot still owns the DA. Elliot likely owns Sentinel. Elliot may well still own Vera's operation, maybe he has also procured funds/resources from other criminals he turned in before he turned them in (I think he was creating the problems for Ray's site/hot-cold wallet system that caused Ray to seek out Elliot's help in prison, and I'm betting Elliot might still have some of that bitcoin). Elliot might even own WR's project, or be positioning himself to do that (even if WR suspects that is what Elliot will do, which she has to at this point). And Elliot managed to own ALL OF THIS while telling and/or showing us he was doing something different, or for a different purpose than he said he was doing it, just like he did in the pilot. So Elliot is repeating his loops and starting new ones, going back to the beginning. As the S3 finale title command told us...."shutdown -r"....shutdown and restart...just like the rootkit from the pilot, spreading the virus everywhere.

On to HOT CARLA. In the companion book RED WHEELBARROW, Hot Carla heralds and admires Elliot, writing about how he changed the world for the better, essentially "saving" it (in the past tense). We don't know yet exactly what Hot Carla defines as changing the world "for better" or why she regards Elliot as a savior, and it might actually line up with something Elliot did. It is possible that Hot Carla might want to see the world burn since she is a pyro who has apparently led a life filled with challenges and "saves" books by burning them. But if the pattern Elliot has demonstrated time and time again holds true, then it is likely that Elliot's "changing the world for the better" or "saving the world" is similar to Elliot "saving Allsafe", which resulted in Allsafe's total destruction, and "stopping the ecorp hack", in which Elliot was hobbling ecorp and just getting started....

ETA:
Another point to consider is why Elliot is using complicated, convoluted routes to get to his end goals, and thanks to u/bwandering for bringing up some specific questions on this here. If we follow the patterns of the show so far, we see people going to great lengths to avoid being spied on and followed. Angela zig-zags her way across town to meet with Darlene in the smart house in S2. We watch Darlene get on/off the same subway train or go to a different car to avoid followers. The DA drives Darlene and Trenton by limo to Cisco in S1 even though Darlene knows full well where he lives. Tasks are also separated and delegated, with no one having the full picture of what is going on except Elliot (even if he tells us he doesn't know), and introducing middlemen where it doesn't even seem they are really necessary, like Cisco. The convoluted route as cover for a plan so complex would be necessary so that no one could track or anticipate where Elliot or his project are going and keep him separated from evidence and interference. The show has even followed that route, giving us scenes out of order, leaving things ambiguous and not sure where things are going while Elliot is moving forward with his plans, even while in jail, while we try to keep up. This is why I believe the indirect, complex routes are chosen, as cover.

I have written before about things related to these ideas in other posts and comments, but I wanted to update and pull it together here heading toward S4. I know thinking of Elliot doing these kinds of things can be unpleasant (going to apologize in advance to u/The_Firmament and u/yeswithanh) because they are NOT attractive prospects. This character who is so near and dear to us, whose pain and loneliness we see - and which I do think is real, BTW, because you can't be that calculating of a person and take all those actions and be mentally healthy - seems to still be hacking the world and hacking us, and, as Elliot told us, "even if it's him (Mr. Robot), it's ME".

In fact, Elliot is SO GOOD at hacking people, that despite him telling and showing us what he is doing over and over, telling us that he lies and hacks everyone, we still root for him. We still feel for him. We still care for him. We still BELIEVE him. We want him to succeed in his battle with himself and take down the top 1% if 1%, even when he IS the one playing god without permission. It mirrors Elliot's hack of Krista where he literally tells her he hacks her and everyone else, yet because of how he related to her in his "just like me" expressions of loneliness, and how expertly he hacked and pivoted the Lenny Shannon situation to his advantage so that Krista would process that information/hack as Elliot being protective of her, she gives Elliot a pass AND continues to be his therapist. By the time we get to the end of S3 where we see the Mr. Robot persona literally confess Elliot's involvement in the 5/9 hack and the 71 buildings blowing, KRISTA DOES NOT BELIEVE THE CONFESSION. Says it sounds like delusions of grandeur. Granted, the show could still go this route and have none of this stuff be happening, but for now, I'm working with the premise it is less likely. So Krista continues to root for Elliot and so do we, because we relate to him. When Irving told his car salesman how to relate using simple phrases and objects like the "world's best dad" mug to "make the sale", he noted EXACTLY how to do it, and underscored the hacking method Elliot has been using with everyone since the pilot. If I am near the mark, then how safe and secure can we be in our own world if we can't tell the good guys from the bad ones on TV?

I have grappled with the thought of Elliot as VILLAIN (which is literally spelled out on the movie poster Elliot shows up undenext to 3 times in the pilot - https://imgur.com/a/diGFpNv) with respect to things I recently read about how closely Sam Esmail relates to the character of Elliot, while still following this particular path of clues from the show. While I am only guessing, I do suspect that Sam was/is trying to tell a bigger cautionary tale, especially with his comments about how technology opens the world up to more vulnerabilities than we are prepared to recognize/combat, and how that kind of hacking could affect the world (which ended up being utterly prophetic by the time the show was released). And since Sam was also inspired by the events of Arab Spring, in which a sense of hope for so many people and nations tragically didn't work across the board, leaving many with worse circumstances in the end than they started with, I think this could line up. After all, in this world of virtual reality, one often has to experience things personally to truly be able to relate and metabolize them. I don't know if this is what Sam is trying to say with this beautiful show, but I think at least part of his message must want us to come away as more aware, more decent, and better prepared humans. Maybe Mr. Robot is OUR empathy, or gullibility, test.

So whatever Elliot's definitions of "undo", "restart", or "save" actually are, they will be complicated and create more chaos and undesireable results that only Elliot might understand or want. Elliot is certainly sitting with a lot more power going into S4, and even if he takes down WR and the other 1%, which I think he will, he has become the monster he told us that he allegedly sought to destroy in the process. In the end, Elliot might have to "save" us from himself.
submitted by MaryInMaryland to MrRobot [link] [comments]

The biggest cryptocurrency thefts in the last 10 years

In this article, we will try to remember all the major theft of cryptocurrencies over the past 10 years.
1. Bitstamp $5.3 mln (BTC), January 4th, 2015
On January 4, 2015, the operational hot wallet of Bitstamp announced that it was hacked by an anonymous hacker and 19,000 Bitcoins (worth of $5 million) were lost.
The initiation of the attack fell on November 4, 2014. Then Damian Merlak, the CTO of the exchange, was offered free tickets to punk rock festival Punk Rock Holiday 2015 via Skype, knowing that Merlak is interested in such music and he plays in the band. To receive the tickets, he was asked to fill out a participant questionnaire by sending a file named “Punk Rock Holiday 2015 TICKET Form1.doc”. This file contained the VBA script. By opening the file, he downloaded the malware on his computer. Although Merlak did not suspect wrong and has opened the "application form", to any critical consequences, this did not open access to the funds of exchange.
The attackers, however, did not give up. The attack continued for five weeks, during which hackers presented themselves as journalists, then headhunters.
Finally, the attackers were lucky. On December 11, 2014, the infected word document was opened on his machine by Bitstamp system administrator Luka Kodric, who had access to the exchange wallet. The file came to the victim by email, allegedly on behalf of an employee of the Association for computer science, although in fact, as the investigation showed, the traces of the file lead deep into Tor. Hackers were not limited to just one letter. Skype attacker pretending to be an employee of the Association for computing machinery, convinced that his Frame though to make international honor society, which required some paperwork. Kodric believed.
By installing a Trojan on Kodriс's computer hackers were able to obtain direct access to the hot wallet of the exchange. The logs show that the attacker, under the account of Kodric, gained access to the server LNXSRVBTC, where he kept the wallet file.dat, and the DORNATA server where the password was stored. Then the servers were redirected to a certain IP address that belongs to one of the providers of Germany.
There are still no official reports of arrests in this case. Obviously, the case is complicated by the fact that the hackers are outside the UK, and the investigation has to cooperate with law enforcement agencies in other countries.
2. GateHub $9.5 mln (XRP), June 1th, 2019
Hackers have compromised nearly 100 XRP Ledger wallets on cryptocurrency wallet service GateHub. The incident was reported by GateHub in a preliminary statement on June 6.
XRP enthusiast Thomas Silkjær, who first noticed the suspicious activity, estimates that the hackers have stolen nearly $10 million worth of cryptocurrency (23,200,000 XRP), $5.5 million (13,100,000 XRP) of which has already been laundered through exchanges and mixer services.
GateHub notes that it is still conducting an investigation and therefore cannot publish any official findings. Also, GateHub advises victims to make complaints to the relevant authorities of their jurisdiction.
3. Tether, $30.9 mln (USDT), November 19th, 2017
Tether created a digital currency called "US tokens" (USDT) — they could be used to trade real goods using Bitcoin, Litecoin and Ether. By depositing $1 in Tether, the user received 1 USD, which can be converted back into fiat. On November 19, 2017, the attacker gained access to the main Tether wallet and withdrew $ 30.9 million in tokens. For the transaction, he used a Bitcoin address, which means that it was irreversible.
To fix the situation, Tether took action by which the hacker was unable to withdraw the stolen money to fiat or Bitcoin, but the panic led to a decrease in the value of Bitcoin.
4. Ethereum, $31 mln (ETH), July 20th, 2017
On July 20, 2017, the hacker transferred 153,037 Ethers to $31 million from three very large wallets owned by SwarmCity, Edgeless Casino and Eternity. Unknown fraudster managed to change the ownership of wallets, taking advantage of the vulnerability with multiple signatures.
First, the theft was noticed by the developers of SwarmCity.
Further events deserve a place in history: "white hackers" returned the stolen funds, and then protected other compromised accounts. They acted in the same way as criminals, who stole funds from vulnerable wallets — just not for themselves. And it all happened in less than a day.
5. Dao (Decentralized Autonomous Organization) $70 mln (ETH), June 18th, 2016
On June 18, 2016, members of the Ethereum community noticed that funds were being drained from the DAO and the overall ETH balance of the smart contract was going down. A total of 3.6 million Ether (worth around $70 million at the time) was drained by the hacker in the first few hours. The attack was possible because of an exploit found in the splitting function. The attackes withdrew Ether from the DAO smart contract multiple times using the same DAO Tokens. This was possible due to what is known as a recursive call exploit.
In this exploit, the attacker was able to "ask" the smart contract (DAO) to give the Ether back multiple times before the smart contract could update its own balance. There were two main faults that made this possible: the fact that when the DAO smart contract was created the coders did not take into account the possibility of a recursive call, and the fact that the smart contract first sent the ETH funds and then updated the internal token balance.
It's important to understand that this bug did not come from Ethereum itself, but from this one application that was built on Ethereum. The code written for the DAO had multiple bugs, and the recursive call exploit was one of them. Another way to look at this situation is to compare Ethereum to the Internet and any application based on Ethereum to a website: if a website is not working, it doesn't mean that the Internet is not working, it simply means that one website has a problem.
The hacker stopped draining the DAO for unknown reasons, even though they could have continued to do so.
The Ethereum community and team quickly took control of the situation and presented multiple proposals to deal with the exploit. In order to prevent the hacker from cashing in the Ether from his child DAO after the standard 28 days, a soft-fork was voted on and came very close to being introduced. A few hours before it was set to be released, a few members of the community found a bug with the implementation that opened a denial-of-service attack vector. This soft fork was designed to blacklist all the transactions made from the DAO.
6. NiceHash, 4736.42 (BTC), December 6th, 2017
NiceHash is a Slovenian cryptocurrency hash power broker with integrated marketplace that connects sellers of hashing power (miners) with buyers of hashing power using the sharing economy approach.
On December 6, 2017, the company's servers became the target of attack. At first, Reddit users reported that they could not access their funds and make transactions — when they tried to log in, they were shown a message about a service interruption. In the end, it became known that the service had undergone a major cyberattack and 4736,42 Bitcoins disappeared without a trace.
Despite heavy losses, NiceHash was able to continue working, but CEO and founder Marco Koval resigned, giving way to a new team. The company managed to maintain the trust of investors and began to strengthen the protection of its systems.
7. Mt.Gox, 850000 (BTC), June 19th, 2011
The Hacking Of Mt.Gox was one of the biggest Bitcoin thefts in history. It was the work of highly professional hackers using complex vulnerabilities.
A hacker (or a group of hackers) allegedly gained access to a computer owned by one of the auditors and used a security vulnerability to access Mt.Gox servers, then changed the nominal value of Bitcoin to 1 cent per coin.
Then they brought out about 2000 BTC. Some customers, without knowing it, conducted transactions at this low price, a total of 650 BTC, and despite the fact that the hacking hit the headlines around the world, no Bitcoin could be returned.
To increase investor confidence, the company has compensated all of the stolen coins, placed most of the remaining funds in offline storage, and the next couple of years was considered the most reliable Bitcoin exchanger in the world.
However, it was only an illusion of reliability.
The problems of the organization were much more serious, and the management probably did not even know about them.
CEO of Mt.Gox, Mark Karpeles, was originally a developer, but over time he stopped delving into technical details, basking in the rays of glory — because he created the world's largest platform for cryptocurrency exchange. At that time Mt.Gox handled over 70% of all Bitcoin transactions.
And, of course, there were those who wanted to take advantage of the technological weakness of the service. At some point, hackers made it so that Bitcoins could be bought at any price, and within minutes millions of dollars worth of coins were sold — mostly for pennies. World prices for Bitcoin stabilized in a few minutes, but it was too late.
As a result, Mt.Gox lost about 850,000 Bitcoins. The exchange had to declare bankruptcy, hundreds of thousands of people lost money, and the Japanese authorities arrested CEO Mark Karpeles for fraud. He pleaded not guilty and was subsequently released. In 2014, the authorities restored some of the Bitcoins remaining at the old addresses, but did not transfer them to the exchange, and created a trust to compensate for the losses of creditors.
8. Coincheck, $530 mln, January 26th, 2018
The sum was astonishing, and even surpassed the infamous Mt.Gox hack.
While Mt.Gox shortly filed for bankruptcy following the hack, Coincheck has surprisingly remained in business and was even recently approved as a licensed exchange by Japan’s Financial Services (FSA).
Coincheck was founded in 2014 in Japan and was one of the most popular cryptocurrency exchanges in the country. Offering a wide variety of digital assets including Bitcoin, Ether, LISK, and NEM, Coincheck was an emerging exchange that joined the Japan Blockchain Association.
Since Coincheck was founded it 2014, it was incidentally not subject to new exchange registration requirements with Japan’s FSA — who rolled out a framework after Mt. Gox –, and eventually was a contributing factor to its poor security standards that led to the hack.
On January 26th, 2018, Coincheck posted on their blog detailing that they were restricting NEM deposits and withdrawals, along with most other methods for buying or selling cryptocurrencies on the platform. Speculation arose that the exchange had been hacked, and the NEM developers issued a statement saying they were unaware of any technical glitches in the NEM protocol and any issues were a result of the exchange’s security.
Coincheck subsequently held a high-profile conference where they confirmed that hackers had absconded with 500 million NEM tokens that were then distributed to 19 different addresses on the network. Totaling roughly $530 million at the time — NEM was hovering around $1 then — the Coincheck hack was considered the largest theft in the industry’s history.
Coincheck was compelled to reveal some embarrassing details about their exchange’s security, mentioning how they stored all of the NEM in a single hot wallet and did not use the NEM multisignature contract security recommended by the developers.
Simultaneously, the NEM developers team had tagged all of the NEM stolen in the hack with a message identifying the funds as stolen so that other exchanges would not accept them. However, NEM announced they were ending their hunt for the stolen NEM for unspecified reasons several months later, and speculation persisted that hackers were close to cashing out the stolen funds on the dark web.
Mainstream media covered the hack extensively and compared it to similar failures by cryptocurrency exchanges in the past to meet adequate security standards. At the time, most media coverage of cryptocurrencies was centered on their obscure nature, dramatic volatility, and lack of security. Coincheck’s hack fueled that narrative considerably as the stolen sum was eye-popping and the cryptocurrency used — NEM — was unknown to most in the mainstream.
NEM depreciated rapidly following the hack, and the price fell even more throughout 2018, in line with the extended bear market in the broader industry. Currently, NEM is trading at approximately $0.07, a precipitous fall from ATH over $1.60 in early January.
The extent of the Coincheck hack was rivaled by only a few other hacks, notably the Mt.Gox hack. While nominally Coincheck is the largest hack in the industry’s history, the effects of Mt.Gox were significantly more impactful since the stolen funds consisted only of Bitcoin and caused a sustained market correction as well as an ongoing controversy with the stolen funds and founder. Moreover, Mt.Gox squandered 6% of the overall Bitcoin circulation at the time in a market that was much less mature than it is today.
Despite the fallout, Coincheck is now fully operational and registered with Japan’s FSA.
As practice shows, people make mistakes and these mistakes can cost a lot. Especially, when we talk about mad cryptoworld. Be careful and keep your private keys in a safe place.
submitted by SwapSpace_co to ethtrader [link] [comments]

An extensive guide for cashing out bitcoin and cryptocurrencies into private banks

Hey guys.
Merry Xmas !
I am coming back to you with a follow up post, as I have helped many people cash out this year and I have streamlined the process. After my original post, I received many requests to be more specific and provide more details. I thought that after the amazing rally we have been attending over the last few months, and the volatility of the last few days, it would be interesting to revisit more extensively.
The attitude of banks around crypto is changing slowly, but it is still a tough stance. For the first partial cash out I operated around a year ago for a client, it took me months to find a bank. They wouldn’t want to even consider the case and we had to knock at each and every door. Despite all my contacts it was very difficult back in the days. This has changed now, and banks have started to open their doors, but there is a process, a set of best practices and codes one has to follow.
I often get requests from crypto guys who are very privacy-oriented, and it takes me months to have them understand that I am bound by Swiss law on banking secrecy, and I am their ally in this onboarding process. It’s funny how I have to convince people that banks are legit, while on the other side, banks ask me to show that crypto millionaires are legit. I have a solid background in both banking and in crypto so I manage to make the bridge, but yeah sometimes it is tough to reconcile the two worlds. I am a crypto enthusiast myself and I can say that after years of work in the banking industry I have grown disillusioned towards banks as well, like many of you. Still an account in a Private bank is convenient and powerful. So let’s get started.
There are two different aspects to your onboarding in a Swiss Private bank, compliance-wise.
*The origin of your crypto wealth
*Your background (residence, citizenship and probity)
These two aspects must be documented in-depth.
How to document your crypto wealth. Each new crypto millionaire has a different story. I may detail a few fun stories later in this post, but at the end of the day, most of crypto rich I have met can be categorized within the following profiles: the miner, the early adopter, the trader, the corporate entity, the black market, the libertarian/OTC buyer. The real question is how you prove your wealth is legit.
1. Context around the original amount/investment Generally speaking, your first crypto purchase may not be documented. But the context around this acquisition can be. I have had many cases where the original amount was bought through Mtgox, and no proof of purchase could be provided, nor could be documented any Mtgox claim. That’s perfectly fine. At some point Mtgox amounted 70% of the bitcoin transactions globally, and people who bought there and managed to withdraw and keep hold of their bitcoins do not have any Mtgox claim. This is absolutely fine. However, if you can show me the record of a wire from your bank to Tisbane (Mtgox's parent company) it's a great way to start.
Otherwise, what I am trying to document here is the following: I need context. If you made your first purchase by saving from summer jobs, show me a payroll. Even if it was USD 2k. If you acquired your first bitcoins from mining, show me the bills of your mining equipment from 2012 or if it was through a pool mine, give me your slushpool account ref for instance. If you were given bitcoin against a service you charged, show me an invoice.
2. Tracking your wealth until today and making sense of it. What I have been doing over the last few months was basically educating compliance officers. Thanks God, the blockchain is a global digital ledger! I have been telling my auditors and compliance officers they have the best tool at their disposal to lead a proper investigation. Whether you like it or not, your wealth can be tracked, from address to address. You may have thought all along this was a bad feature, but I am telling you, if you want to cash out, in the context of Private Banking onboarding, tracking your wealth through the block explorer is a boon. We can see the inflows, outflows. We can see the age behind an address. An early adopter who bought 1000 BTC in 2010, and let his bitcoin behind one address and held thus far is legit, whether or not he has a proof of purchase to show. That’s just common sense. My job is to explain that to the banks in a language they understand.
Let’s have a look at a few examples and how to document the few profiles I mentioned earlier.
The trader. I love traders. These are easy cases. I have a ton of respect for them. Being a trader myself in investment banks for a decade earlier in my career has taught me that controlling one’s emotions and having the discipline to impose oneself some proper risk management system is really really hard. Further, being able to avoid the exchange bankruptcy and hacks throughout crypto history is outstanding. It shows real survival instinct, or just plain blissed ignorance. In any cases traders at exchange are easy cases to corroborate since their whole track record is potentially available. Some traders I have met have automated their trading and have shown me more than 500k trades done over the span of 4 years. Obviously in this kind of scenario I don’t show everything to the bank to avoid information overload, and prefer to do some snacking here and there. My strategy is to show the early trades, the most profitable ones, explain the trading strategy and (partially expose) the situation as of now with id pages of the exchanges and current balance. Many traders have become insensitive to the risk of parking their crypto at exchange as they want to be able to trade or to grasp an occasion any minute, so they generally do not secure a substantial portion on the blockchain which tends to make me very nervous.
The early adopter. Provided that he has not mixed his coin, the early adopter or “hodler” is not a difficult case either. Who cares how you bought your first 10k btc if you bought them below 3$ ? Even if you do not have a purchase proof, I would generally manage to find ways. We just have to corroborate the original 30’000 USD investment in this case. I mainly focus on three things here:
*proof of early adoption I have managed to educate some banks on a few evidences specifically related to crypto markets. For instance with me, an old bitcointalk account can serve as a proof of early adoption. Even an old reddit post from a few years ago where you say how much you despise this Ripple premined scam can prove to be a treasure readily available to show you were early.
*story telling Compliance officers like to know when, why and how. They are human being looking for simple answers to simple questions and they don’t want like to be played fool. Telling the truth, even without a proof can do wonders, and even though bluffing might still work because banks don’t fully understand bitcoin yet, it is a risky strategy that is less and less likely to pay off as they are getting more sophisticated by the day.
*micro transaction from an old address you control This is the killer feature. Send a $20 worth transaction from an old address to my company wallet and to one of my partner bank’s wallet and you are all set ! This is gold and considered a very solid piece of evidence. You can also do a microtransaction to your own wallet, but banks generally prefer transfer to their own wallet. Patience with them please. they are still learning.
*signature message Why do a micro transaction when you can sign a message and avoid potentially tainting your coins ?
*ICO millionaire Some clients made their wealth participating in ETH crowdsale or IOTA ICO. They were very easy to deal with obviously and the account opening was very smooth since we could evidence the GENESIS TxHash flow.
The miner Not so easy to proof the wealth is legit in that case. Most early miners never took screenshot of the blocks on bitcoin core, nor did they note down the block number of each block they mined. Until the the Slashdot article from August 2010 anyone could mine on his laptop, let his computer run overnight and wake up to a freshly minted block containing 50 bitcoins back in the days. Not many people were structured enough to store and secure these coins, avoid malwares while syncing the blockchain continuously, let alone document the mined blocks in the process. What was 50 BTC worth really for the early miners ? dust of dollars, games and magic cards… Even miners post 2010 are generally difficult to deal with in terms of compliance onboarding. Many pool mining are long dead. Deepbit is down for instance and the founders are MIA. So my strategy to proof mining activity is as follow:
*Focusing on IT background whenever possible. An IT background does help a lot to bring some substance to the fact you had the technical ability to operate a mining rig.
*Showing mining equipment receipts. If you mined on your own you must have bought the hardware to do so. For instance mining equipment receipts from butterfly lab from 2012-2013 could help document your case. Similarly, high electricity bill from your household on a consistent basis back in the day could help. I have already unlocked a tricky case in the past with such documents when the bank was doubtful.
*Wallet.dat files with block mining transactions from 2011 thereafter This obviously is a fantastic piece of evidence for both you and me if you have an old wallet and if you control an address that received original mined blocks, (even if the wallet is now empty). I will make sure compliance officers understand what it means, and as for the early adopter, you can prove your control over these wallet through a microtransaction. With these kind of addresses, I can show on the block explorer the mined block rewards hitting at regular time interval, and I can even spot when difficulty level increased or when halvening process happened.
*Poolmining account. Here again I have educated my partner bank to understand that a slush account opened in 2013 or an OnionTip presence was enough to corroborate mining activity. The block explorer then helps me to do the bridge with your current wallet.
*Describing your set up and putting it in context In the history of mining we had CPU, GPU, FPG and ASICs mining. I will describe your technical set up and explain why and how your set up was competitive at that time.
The corporate entity Remember 2012 when we were all convinced bitcoin would take over the world, and soon everyone would pay his coffee in bitcoin? How naïve we were to think transaction fees would remain low forever. I don’t blame bitcoin cash supporters; I once shared this dream as well. Remember when we thought global adoption was right around the corner and some brick and mortar would soon accept bitcoin transaction as a common mean of payment? Well, some shop actually did accept payment and held. I had a few cases as such of shops holders, who made it to the multi million mark holding and had invoices or receipts to proof the transactions. If you are organized enough to keep a record for these trades and are willing to cooperate for the documentation, you are making your life easy. The digital advertising business is also a big market for the bitcoin industry, and affiliates partner compensated in btc are common. It is good to show an invoice, it is better to show a contract. If you do not have a contract (which is common since all advertising deals are about ticking a check box on the website to accept terms and conditions), there are ways around that. If you are in that case, pm me.
The black market Sorry guys, I can’t do much for you officially. Not that I am judging you. I am a libertarian myself. It’s just already very difficult to onboard legit btc adopters, so the black market is a market I cannot afford to consider. My company is regulated so KYC and compliance are key for me if I want to stay in business. Behind each case I push forward I am risking the credibility and reputation I have built over the years. So I am sorry guys I am not risking it to make an extra buck. Your best hope is that crypto will eventually take over the world and you won’t need to cash out anyway. Or go find a Lithuanian bank that is light on compliance and cooperative.
The OTC buyer and the libertarian. Generally a very difficult case. If you bought your stack during your journey in Japan 5 years ago to a guy you never met again; or if you accumulated on https://localbitcoins.com/ and kept no record or lost your account, it is going to be difficult. Not impossible but difficult. We will try to build a case with everything else we have, and I may be able to onboard you. However I am risking a lot here so I need to be 100% confident you are legit, before I defend you. Come & see me in Geneva, and we will talk. I will run forensic services like elliptic, chainalysis, or scorechain on an extract of your wallet. If this scan does not raise too many red flags, then maybe we can work together ! If you mixed your coins all along your crypto history, and shredded your seeds because you were paranoid, or if you made your wealth mining professionally monero over the last 3 years but never opened an account at an exchange. ¯_(ツ)_/¯ I am not a magician and don’t get me wrong, I love monero, it’s not the point.
Cashing out ICOs Private companies or foundations who have ran an ICO generally have a very hard time opening a bank account. The few banks that accept such projects would generally look at 4 criteria:
*Seriousness of the project Extensive study of the whitepaper to limit the reputation risk
*AML of the onboarding process ICOs 1.0 have no chance basically if a background check of the investors has not been conducted
*Structure of the moral entity List of signatories, certificate of incumbency, work contract, premises...
*Fiscal conformity Did the company informed the authorities and seek a fiscal ruling.
For the record, I am not into the tax avoidance business, so people come to me with a set up and I see if I can make it work within the legal framework imposed to me.
First, stop thinking Switzerland is a “offshore heaven” Swiss banks have made deals with many governments for the exchange of fiscal information. If you are a French citizen, resident in France and want to open an account in a Private Bank in Switzerland to cash out your bitcoins, you will get slaughtered (>60%). There are ways around that, and I could refer you to good tax specialists for fiscal optimization, but I cannot organize it myself. It would be illegal for me. Swiss private banks makes it easy for you to keep a good your relation with your retail bank and continue paying your bills without headaches. They are integrated to SEPA, provide ebanking and credit cards.
For information, these are the kind of set up some of my clients came up with. It’s all legal; obviously I do not onboard clients that are not tax compliant. Further disclaimer: I did not contribute myself to these set up. Do not ask me to organize it for you. I won’t.
EU tricks
Swiss lump sum taxation Foreign nationals resident in Switzerland can be taxed on a lump-sum basis if they are not gainfully employed in our country. Under the lump-sum tax regime, foreign nationals taking residence in Switzerland may choose to pay an expense-based tax instead of ordinary income and wealth tax. Attractive cantons for the lump sum taxation are Zug, Vaud, Valais, Grisons, Lucerne and Berne. To make it short, you will be paying somewhere between 200 and 400k a year and all expenses will be deductible.
Switzerland has adopted a very friendly attitude towards crypto currency in general. There is a whole crypto valley in Zug now. 30% of ICOs are operated in Switzerland. The reason is that Switzerland has thrived for centuries on banking secrecy, and today with FATCA and exchange of fiscal info with EU, banking secrecy is dead. Regulators in Switzerland have understood that digital ledger technologies were a way to roll over this competitive advantage for the generations to come. Switzerland does not tax capital gains on crypto profits. The Finma has a very pragmatic approach. They have issued guidance- updated guidelines here. They let the business get organized and operate their analysis on a case per case basis. Only after getting a deep understanding of the market will they issue a global fintech license in 2019. This approach is much more realistic than legislations which try to regulate everything beforehand.
Italy new tax exemption. It’s a brand new fiscal exemption. Go to Aoste, get residency and you could be taxed a 100k/year for 10years. Yes, really.
Portugal What’s crazy in Europe is the lack of fiscal harmonization. Even if no one in Brussels dares admit it, every other country is doing fiscal dumping. Portugal is such a country and has proved very friendly fiscally speaking. I personally have a hard time trusting Europe. I have witnessed what happened in Greece over the last few years. Some of our ultra high net worth clients got stuck with capital controls. I mean no way you got out of crypto to have your funds confiscated at the next financial crisis! Anyway. FYI
Malta Generally speaking, if you get a residence somewhere you have to live there for a certain period of time. Being stuck in Italy is no big deal with Schengen Agreement, but in Malta it is a different story. In Malta, the ordinary residence scheme is more attractive than the HNWI residence scheme. Being an individual, you can hold a residence permit under this scheme and pay zero income tax in Malta in a completely legal way.
Monaco Not suitable for French citizens, but for other Ultra High Net worth individual, Monaco is worth considering. You need an account at a local bank as a proof of fortune, and this account generally has to be seeded with at least EUR500k. You also need a proof of residence. I do mean UHNI because if you don’t cash out minimum 30m it’s not interesting. Everything is expensive in Monaco. Real Estate is EUR 50k per square meter. A breakfast at Monte Carlo Bay hotel is 70 EUR. Monaco is sunny but sometimes it feels like a golden jail. Do you really want that for your kids?
Dubaï
  1. Set up a company in Dubaï, get your resident card.
  2. Spend one day every 6 month there
  3. ???
  4. Be tax free
US tricks Some Private banks in Geneva do have the license to manage the assets of US persons and U.S citizens. However, do not think it is a way to avoid paying taxes in the US. Opening an account at an authorized Swiss Private banks is literally the same tax-wise as opening an account at Fidelity or at Bank of America in the US. The only difference is that you will avoid all the horror stories. Horror stories are all real by the way. In Switzerland, if you build a decent case and answer all the questions and corroborate your case in depth, you will manage to convince compliance officers beforehand. When the money eventually hits your account, it is actually available and not frozen.
The IRS and FATCA require to file FBAR if an offshore account is open. However FBAR is a reporting requirement and does not have taxes related to holding an account outside the US. The taxes would be the same if the account was in the US. However penalties for non compliance with FBAR are very large. The tax liability management is actually performed through the management of the assets ( for exemple by maximizing long term capital gains and minimizing short term gains).
The case for Porto Rico. Full disclaimer here. I am not encouraging this. Have not collaborated on such tax avoidance schemes. if you are interested I strongly encourage you to seek a tax advisor and get a legal opinion. I am not responsible for anything written below. I am not going to say much because I am so afraid of uncle Sam that I prefer to humbly pass the hot potato to pwc From here all it takes is a good advisor and some creativity to be tax free on your crypto wealth if you are a US person apparently. Please, please please don’t ask me more. And read the disclaimer again.
Trust tricks Generally speaking I do not accept fringe fiscal situation because it puts me in a difficult situation to the banks I work with, and it is already difficult enough to defend a legit crypto case. Trust might be a way to optimize your fiscal situation. Belize. Bahamas. Seychelles. Panama, You name it. At the end of the day, what matters for Swiss Banks are the beneficial owner and the settlor. Get a legal opinion, get it done, and when you eventually knock at a private bank’s door, don’t say it was for fiscal avoidance you stupid ! You will get the door smashed upon you. Be smarter. It will work. My advice is just to have it done by a great tax specialist lawyer, even if it costs you some money, as the entity itself needs to be structured in a professional way. Remember that with trust you are dispossessing yourself off your wealth. Not something to be taken lightly.
“Anonymous” cash out. Right. I think I am not going into this topic, neither expose the ways to get it done. Pm me for details. I already feel a bit uncomfortable with all the info I have provided. I am just going to mention many people fear that crypto exchange might become reporting entities soon, and rightly so. This might happen anyday. You have been warned. FYI, this only works for non-US and large cash out.
The difference between traders an investors. Danmark, Holland and Germany all make a huge difference if you are a passive investor or if you are a trader. ICO is considered investing for instance and is not taxed, while trading might be considered as income and charged aggressively. I would try my best to protect you and put a focus on your investor profile whenever possible, so you don't have to pay 52% tax if you do not have to :D
Full cash out or partial cash out? People who have been sitting on crypto for long have grown an emotional and irrational link with their coins. They come to me and say, look, I have 50m in crypto but I would like to cash out 500k only. So first let me tell you that as a wealth manager my advice to you is to take some off the table. Doing a partial cash out is absolutely fine. The market is bullish. We are witnessing a redistribution of wealth at a global scale. Bitcoin is the real #occupywallstreet, and every one will discuss crypto at Xmas eve which will make the market even more supportive beginning 2018, especially with all hedge funds entering the scene. If you want to stay exposed to bitcoin and altcoins, and believe these techs will change the world, it’s just natural you want to keep some coins. In the meantime, if you have lived off pizzas over the last years, and have the means to now buy yourself an nice house and have an account at a private bank, then f***ing do it mate ! Buy physical gold with this account, buy real estate, have some cash at hands. Even though US dollar is worthless to your eyes, it’s good and convenient to have some. Also remember your wife deserves it ! And if you have no wife yet and you are socially awkward like the rest of us, then maybe cashing out partially will help your situation ;)
What the Private Banks expect. Joke aside, it is important you understand something. If you come around in Zurich to open a bank account and partially cash out, just don’t expect Private Banks will make an exception for you if you are small. You can’t ask them to facilitate your cash out, buy a 1m apartment with the proceeds of the sale, and not leave anything on your current account. It won’t work. Sadly, under 5m you are considered small in private banking. The bank is ok to let you open an account, provided that your kyc and compliance file are validated, but they will also want you to become a client and leave some money there to invest. This might me despicable, but I am just explaining you their rules. If you want to cash out, you should sell enough to be comfortable and have some left. Also expect the account opening to last at least 3-4 week if everything goes well. You can't just open an account overnight.
The cash out logistics. Cashing out 1m USD a day in bitcoin or more is not so hard.
Let me just tell you this: Even if you get a Tier 4 account with Kraken and ask Alejandro there to raise your limit over $100k per day, Even if you have a bitfinex account and you are willing to expose your wealth there, Even if you have managed to pass all the crazy due diligence at Bitstamp,
The amount should be fractioned to avoid risking your full wealth on exchange and getting slaughtered on the price by trading big quantities. Cashing out involves significant risks at all time. There is a security risk of compromising your keys, a counterparty risk, a fat finger risk. Let it be done by professionals. It is worth every single penny.
Most importantly, there is a major difference between trading on an exchange and trading OTC. Even though it’s not publicly disclosed some exchange like Kraken do have OTC desks. Trading on an exchange for a large amount will weight on the prices. Bitcoin is a thin market. In my opinion over 30% of the coins are lost in translation forever. Selling $10m on an exchange in a day can weight on the prices more than you’d think. And if you trade on a exchange, everything is shown on record, and you might wipe out the prices because on exchanges like bitstamp or kraken ultimately your counterparties are retail investors and the market depth is not huge. It is a bit better on Bitfinex. It is way better to trade OTC. Accessing the institutional OTC market is not easy, and that is also the reason why you should ask a regulated financial intermediary if we are talking about huge amounts.
Last point, always chose EUR as opposed to USD. EU correspondent banks won’t generally block institutional amounts. However we had the cases of USD funds frozen or delayed by weeks.
Most well-known OTC desks are Cumberlandmining (ask for Lucas), Genesis (ask for Martin), Bitcoin Suisse AG (ask for Niklas), circletrade, B2C2, or Altcoinomy (ask for Olivier)
Very very large whales can also set up escrow accounts for massive block trades. This world, where blocks over 30k BTC are exchanged between 2 parties would deserve a reddit thread of its own. Crazyness all around.
Your options: DIY or going through a regulated financial intermediary.
Execution trading is a job in itself. You have to be patient, be careful not to wipe out the order book and place limit orders, monitor the market intraday for spikes or opportunities. At big levels, for a large cash out that may take weeks, these kind of details will save you hundred thousands of dollars. I understand crypto holders are suspicious and may prefer to do it by themselves, but there are regulated entities who now offer the services. Besides, being a crypto millionaire is not a guarantee you will get institutional daily withdrawal limits at exchange. You might, but it will take you another round of KYC with them, and surprisingly this round might be even more aggressive that the ones at Private banks since exchange have gone under intense scrutiny by regulators lately.
The fees for cashing out through a regulated financial intermediary to help you with your cash out should be around 1-2% flat on the nominal, not more. And for this price you should get the full package: execution/monitoring of the trades AND onboarding in a private bank. If you are asked more, you are being abused.
Of course, you also have the option to do it yourself. It is a way more tedious and risky process. Compliance with the exchange, compliance with the private bank, trading BTC/fiat, monitoring the transfers…You will save some money but it will take you some time and stress. Further, if you approach a private bank directly, it will trigger a series of red flag to the banks. As I said in my previous post, they call a direct approach a “walk-in”. They will be more suspicious than if you were introduced by someone and won’t hesitate to show you high fees and load your portfolio with in-house products that earn more money to the banks than to you. Remember also most banks still do not understand crypto so you will have a lot of explanations to provide and you will have to start form scratch with them!
The paradox of crypto millionaires Most of my clients who made their wealth through crypto all took massive amount of risks to end up where they are. However, most of them want their bank account to be managed with a low volatility fixed income capital preservation risk profile. This is a paradox I have a hard time to explain and I think it is mainly due to the fact that most are distrustful towards banks and financial markets in general. Many clients who have sold their crypto also have a cash-out blues in the first few months. This is a classic situation. The emotions involved in hodling for so long, the relief that everything has eventually gone well, the life-changing dynamics, the difficulties to find a new motivation in life…All these elements may trigger a post cash-out depression. It is another paradox of the crypto rich who has every card in his hand to be happy, but often feel a bit sad and lonely. Sometimes, even though it’s not my job, I had to do some psychological support. A lot of clients have also become my friends, because we have the same age and went through the same “ordeal”. First world problem I know… Remember, cashing out is not the end. It’s actually the beginning. Don’t look back, don’t regret. Cash out partially, because it does not make sense to cash out in full, regret it and want back in. relax.
The race to cash out crypto billionaire and the concept of late exiter. The Winklevoss brothers are obviously the first of a series. There will be crypto billionaires. Many of them. At a certain level you can have a whole family office working for you to manage your assets and take care of your needs . However, let me tell you it’s is not because you made it so big that you should think you are a genius and know everything better than anyone. You should hire professionals to help you. Managing assets require some education around the investment vehicles and risk management strategies. Sorry guys but with all the respect I have for wallstreebet, AMD and YOLO stock picking, some discipline is necessary. The investors who have made money through crypto are generally early adopters. However I have started to see another profile popping up. They are not early adopters. They are late exiters. It is another way but just as efficient. Last week I met the first crypto millionaire I know who first bough bitcoin over 1000$. 55k invested at the beginning of this year. Late adopter & late exiter is a route that can lead to the million.
Last remarks. I know banks, bankers, and FIAT currencies are so last century. I know some of you despise them and would like to have them burn to the ground. With compliance officers taking over the business, I would like to start the fire myself sometimes. I hope this extensive guide has helped some of you. I am around if you need more details. I love my job despite all my frustration towards the banking industry because it makes me meet interesting people on a daily basis. I am a crypto enthusiast myself, and I do think this tech is here to stay and will change the world. Banks will have to adapt big time. Things have started to change already; they understand the threat is real. I can feel the generational gap in Geneva, with all these old bankers who don’t get what’s going on. They glaze at the bitcoin chart on CNBC in disbelief and they start to get it. This bitcoin thing is not a joke. Deep inside, as an early adopter who also intends to be a late exiter, as a libertarian myself, it makes me smile with satisfaction.
Cheers. @swisspb on telegram
submitted by Swissprivatebanker to Bitcoin [link] [comments]

Bitcoin Wallet Hack How to get Bitcoins Brute force 2020 Hack Bitcoin Hack Wallet 2017 Bitcoin Hack - Bitcoin Cheats - How to get Free Bitcoins ... How to Brute Force a Bitcoin Wallet with Hashcat - YouTube Bitcoin Wallet Hack! A program that searches for the ...

More than easy, just select and upload your Bitcoin wallet file from Bitcoin Core client (extension is .dat) or Litecoin wallet. The hash will be computed in the "Output" part. The source code of main tools used in Bitcoin "non-malware-based" attacks. Tools list: Misc tools. Double Spender; Private Key Harvesters. Electrum cracker. Brainflayer. Bruteforce Wallet. Large Bitcoin Collider Pool Script # DISCLAIMER. Do not ask questions about how to configure or use the software. While the wallet has even managed to find its way to All Private Keys, the hack continues to prove difficult. It’s also caused some hackers to give up the search wholly and instead resort to trying to sell the wallet’s .dat file outright, noted Gal. "Wallets tend to be protected by strong passwords and in the event that a cybercriminal manages to obtain a wallet and cannot crack the ... I had about $8 USD worth of bitcoin in a wallet, and I backed up the wallet.dat to my dropbox. According to the modified date of the file this was in April 2013, so it was probaby from bitcoin qt version 0.8.1, or maybe a little earlier. I basically left it there and haven't done anything with bitcoin since then. Since it is worth probably at ... OK,. installing the bitcoin core and replacing the wallet.dat created by the new bitcoin core worked for me. at least i think it did. as i have 0 bitcoins. False alarm. go back to work folks. As you might have guessed from the title, i'm one of the people who abandoned bitcoin while back. june of 2011 to be exact. I even uninstalled the bitcoin wallet and everything. except the appdata folder ...

[index] [26752] [6907] [37121] [6836] [4573] [16896] [11461] [26710] [40475] [12216]

Bitcoin Wallet Hack How to get Bitcoins Brute force 2020

Bitcoin Hack - BTC Hack - Bitcoin Cheats - How to get Free Bitcoins 2020 Link : https://arthck.us/2019/10/27/bitcoins-hack-bitcoins-cheats-get-free-unlimited... Bitcoin Wallet Hack How to get Bitcoins Brute force 2020 http://bitcoin-hack.online/ How can I avoid being so gullible and easily deceived? New soft for hack... Hack Bitcoin Hack Wallet 2017 comment if understand. i help and send sofwe if you use. good luck. link fanpage :https://web.facebook.com/dat.nguyen.9699523 F... Bitcoin Wallet.dat with 2000 BTC Balance. Last Receive : 2020-09-21 08:35 Last Send : 2016-12-27 17:47 Final Balance : 2000.00007129 BTC Wallet in Blockchain... Hashcat: http://cur.lv/qkd2l Bitcoin_hash.py: http://cur.lv/qkd37 Wordlist: http://cur.lv/qkd5i

#