Home / Blockchain / The immutability of Blockchain is useless when it comes to easy theft and encryption

The immutability of Blockchain is useless when it comes to easy theft and encryption

<div _ngcontent-c14 = "" innerhtml = "

[Disclosure: I used to have a small amount of Ethereum (Ether), but now I have absolutely zero Ether]

Your eyes are not deceiving you, the disclosure above is usually printed at the end of any & nbsp; any & nbsp;Forbes & nbsp;writer & nbsp; when the topic is about cryptocurrencies.

In this case, I'm confirming that now I do not have Ether, but I've had a little bit of it. & # 39; & nbsp; until my cryptographic portfolio was hacked about six weeks ago.

In the meantime, I now know more than most of the lack of cryptographic security and how it is virtually impossible to recover funds after they have been stolen. It's an interesting story, it's very annoying that it happened to me.

Starting from the beginning. Like many others, I was in the last phases of the crypto-wave and I started to be interested only a couple of years ago.

Blockchain seemed revolutionary, Ether looked like it could more than emulate Bitcoin because of Smart Contracts, so why not invest quietly in a future nest egg? I had time in my hands, so this has always been a long game … and not a big one.

I learned quickly, I felt that encryption exchanges were being violated regularly, so it would be advisable to keep my Ether in a wallet using a public and a private key. I could load funds using my public key (open to the world), but only I knew the private key.

So far, so encrypted. Both keys were 40 characters long and I decided to use them Myetherwallet to conserve my Ether; industry friends assured me it was the best.

As indicated, I printed my private key, I kept it firmly in my desk (whoops, I laughed again) and then I thought of what I thought was a master stroke.

A few years ago, when I was living in Goa, I met some very interesting people, one of whom was a well-known drug dealer (and a bit of a charlatan).

He told me for some beers that every time he wanted to convey a secret message, he would give his log-in and his password to an associate and that & nbsp; individual could have accessed the appropriate message in Gmail drafts.

Nothing would have been sent on the internet, so no one would know, so it was as safe as the proverbial houses. Good enough for a paranoid drug dealer, good enough for me; that's where I stored my private key.

Also, I split the key into ten different four-character sets and I encrypted it my way. Every time I have access to the wallet, I scrunched the characters together, cut and paste, I log in to my wallet, then I clear the browser history, then reorganize them in a different way. Smart old me.

Smart, no. This, apparently, was the way hackers found my private key. So, if you're thinking about storing your private key (or talking to other drug dealers), then Gmail drafts are a bad idea. Of course, I discovered it too late; You have no excuses.

Portfolios and cryptographic exchanges are mutually exclusive and do not provide security.Quoteinspector (via Creative Commons Flickr

What happened next was crazy and intense. When I logged in, I quickly discovered that I had been cleaned up a week ago. The crypt was empty.

Like any other theft, this was an intensely stressful experience, so I activated my network of fantastic people. Black hats, white hats, blockchain axes, encrypted genes, individuals with high networks with access to the top, to all those I could think of.

The information has arrived quickly. The Ether had been moved to a new public key address, but had not moved for seven days. This meant that it could have been the malware that had scraped the private key (but did not know how to move it in an exchange) or the thieves were waiting for their time.

Unfortunately, they waited their time for another six days, but I was told not to worry. This was blockchain and if the funds had been transferred to an exchange I would have been warned, the thieves & nbsp; they would have been easy to track down.

Then they moved and six days later I was advised that they were transferring my funds (along with others) to the Binance exchange. That transaction had to be stopped because no transaction blockchain & nbsp; it can be reversed. Simply, the exchange could simply block that transaction.

The next six hours were crazy, it was if the whole world was trying to give me a hand. In the course of that evening, the odds that I would block the transaction turned between 5% and 40, up to 20, up to 70, up to 30 and finally a large, zero fat.

Myetherwallet was sympathetic, but said that there was nothing they could do, they did not have the ability to stop the movements, even if they were suspicious. I spoke to Kosala Hemachandra's CEO of Myetherwallet in a panic while the robbery continued its all-merry way.

Remember that we are an open source portfolio that does not contain user funds, so any compromise of funds like this could be the result of using a similar phishing site. We have & nbsp; the highest security measures available on the market so that our users are protected against malicious actors.

Well, it was nice to know, but it did not help me much, so I turned to Binance, but a website request was submitted for a "ticket number" and they would call me back within 72 hours.

Seventy-two hours? I wanted something done within 72 seconds. I was told to expect an answer, which arrived 24 hours later, and a request for a number of order forces to which I had to report the crime.

I live in the United Kingdom, not in North America. The forces of order mean the police and while I appreciate the work of the police, I believe that no police force in this country can even understand what happened to me.

This for them would be just another burglary and if they done I know enough about crypto, being aware that & nbsp; I had left my private key in my drafts of Gmail it was as good as leaving an open window in my house. I probably deserved it.

Later I joined Wei Zhou, the Binance CFO this month Blockchain Summit in Malta and said that in the last two months there has been an increase in thefts like mine describing it as a "last attempt"; the hackers knew that the crypto community was strengthening security.

We work very hard to ensure the security and security of funds on Binance and Trust Wallet. Our hope is that all users are informed about best practices to ensure the security of their archives and accounts. We work closely with the forces of order around the world to help users recover funds, so in the case of stolen funds, we encourage users to immediately report with the forces of the order.

It will be interesting to find out how many times Binance has cooperated to get back their users' funds, but Zhou assured me that Binance wanted this relationship with the order forces to be more efficient and they were working on it.

I've seen Ether's price plummet over the past six weeks since I was hacked, so the pain has eased over this period of time, but while I've been an idiot, I'm not exactly without ideas on how it all works.

For the average and traditional investor, however, the volatility of cryptocurrencies and its current (and brutal) fall are sufficient to make most of them invest in crypts.

Add stories like mine & nbsp; and the possible regulation creep, the encrypted world right now seems to be a very dangerous place to play.

On the other hand, I'm still a believer and while I've been burned once, I can still come back. Meanwhile, the thieves got away and if it's a 'last try', that I'm a total loser or that more security is coming, the warning is clear.

Never, at any time, store your private key anywhere on your computer or mobile phone; you are not safe. Also, forget to use Gmail drafts for anything other than drug trafficking … it's a mug game.

Use leaving the window open analogy when it comes to cops

& Nbsp;

">

[Disclosure: I used to have a small amount of Ethereum (Ether), but now I have absolutely zero Ether]

Your eyes are not deceiving you, the disclosure above is usually printed at the end of any article by someone Forbes writer when the topic concerns cryptocurrencies.

In this case, I'm confirming that I do not have Ether now, but I've had it until my cryptographic portfolio was hacked about six weeks ago.

In the meantime, I now know more than most of the lack of cryptographic security and how it is virtually impossible to recover funds after they have been stolen. It's an interesting story, it's very annoying that it happened to me.

Starting from the beginning. Like many others, I was in the last phases of the crypto-wave and I started to be interested only a couple of years ago.

Blockchain seemed revolutionary, Ether looked like it could more than emulate Bitcoin because of Smart Contracts, so why not invest quietly in a future nest egg? I had time in my hands, so this has always been a long game … and not a big one.

I learned quickly, I felt that encryption exchanges were being violated regularly, so it would be advisable to keep my Ether in a wallet using a public and a private key. I could load funds using my public key (open to the world), but only I knew the private key.

So far, so encrypted. Both keys were 40 characters long and I decided to use Myetherwallet to store my Ether; industry friends assured me it was the best.

As indicated, I printed my private key, I kept it firmly in my desk (whoops, I laughed again) and then I thought of what I thought was a master stroke.

A few years ago, when I was living in Goa, I met some very interesting people, one of whom was a well-known drug dealer (and a bit of a charlatan).

He told me for some beers that every time he wanted to convey a secret message, he would give his log-in and his password to an associate and that individual would have access to the appropriate message in Gmail drafts.

Nothing would have been sent on the internet, so no one would know, so it was as safe as the proverbial houses. Good enough for a paranoid drug dealer, good enough for me; that's where I stored my private key.

Also, I split the key into ten different four-character sets and I encrypted it my way. Every time I have access to the wallet, I scrunched the characters together, cut and paste, I log in to my wallet, then I clear the browser history, then reorganize them in a different way. Smart old me.

Smart, no. This, apparently, was the way hackers found my private key. So, if you're thinking about storing your private key (or talking to other drug dealers), then Gmail drafts are a bad idea. Of course, I discovered it too late; You have no excuses.

Portfolios and cryptographic exchanges are mutually exclusive and do not provide security.Quoteinspector (via Creative Commons Flickr

What happened next was crazy and intense. When I logged in, I immediately found out that I had been cleaned up a week ago. The crypt was empty.

Like any other theft, this was an intensely stressful experience, so I activated my network of fantastic people. Black hats, white hats, blockchain axes, encrypted genes, individuals with high networks with access to the top, to all those I could think of.

The information has arrived quickly. The Ether had been moved to a new public key address, but had not moved for seven days. This meant that it could have been the malware that had scraped the private key (but did not know how to move it in an exchange) or the thieves were waiting for their time.

Unfortunately, they waited their time for another six days, but I was told not to worry. This was blockchain and if the funds were transferred in an exchange I would have been warned, the thieves would have been easy to track down.

Then they moved and six days later I was advised that they were transferring my funds (along with others) to the Binance exchange. That transaction had to be stopped because no blockchain transactions can be reversed. Simply, the exchange could simply block that transaction.

The next six hours were crazy, it was if the whole world was trying to give me a hand. In the course of that evening, the odds that I would block the transaction turned between 5% and 40, up to 20, up to 70, up to 30 and finally a large, zero fat.

Myetherwallet was sympathetic, but said that there was nothing they could do, they did not have the ability to stop the movements, even if they were suspicious. I talked to Myetherwallet CEO Kosala Hemachandra panicked while the robbery continued its all but joyous way.

Remember that we are an open source portfolio that does not contain user funds, so any compromise of funds like this could be the result of using a similar phishing site. We have the highest security measures available on the market so that our users are protected against malicious actors.

Well, it was nice to know, but it did not help much, so I turned to Binance, but I was presented with a website request for a & # 39; ticket number & # 39; and they would call me back in 72 hours.

Seventy-two hours? I wanted something done within 72 seconds. I was told to expect an answer, which arrived 24 hours later, and a request for a number of order forces to which I had to report the crime.

I live in the United Kingdom, not in North America. The forces of order are the forces of order and while I appreciate the work done by the police, I do not think any police force in this country can even understand what happened to me.

This for them would be just another burglary and if they done I know enough about crypto, being informed that I had left my private key in my Gmail drafts was as good as leaving an open window in my house. I probably deserved it.

I later met Wei Zhou, Binance CFO at this month's Blockchain Summit in Malta and said that in the last two months there has been an increase in thefts like mine that described him as a "last attempt". ; the hackers knew that the crypto community was strengthening security.

We work very hard to ensure the security and security of funds on Binance and Trust Wallet. Our hope is that all users are informed about best practices to ensure the security of their archives and accounts. We work closely with the forces of order around the world to help users recover funds, so in the case of stolen funds, we encourage users to immediately report with the forces of the order.

It will be interesting to find out how many times Binance has cooperated to get back their users' funds, but Zhou assured me that Binance wanted this relationship with the order forces to be more efficient and they were working on it.

I've seen Ether's price plummet over the past six weeks since I was hacked, so the pain has eased over this period of time, but while I've been an idiot, I'm not exactly without ideas on how it all works.

For the average and traditional investor, however, the volatility of cryptocurrencies and its current (and brutal) fall are sufficient to make most of them invest in crypts.

Add stories like mine and the eventual creep of regulation, the encrypted world right now seems to be a very dangerous place to play.

On the other hand, I'm still a believer and while I've been burned once, I can still come back. Meanwhile, the thieves got away and if it's a 'last try', that I'm a total loser or that more security is coming, the warning is clear.

Never, at any time, store your private key anywhere on your computer or mobile phone; you are not safe. Also, forget to use Gmail drafts for anything other than drug trafficking … it's a mug game.

Use leaving the window open analogy when it comes to cops

Source link