/biz/ - Business & Finance

I feel for you anon.

But i cant emphasize this enough. BUY A FUCKING LEDGER.

>>8927692
the sad part is i got one a few days ago and just today realized this all happened 20 days ago

>>8927704
Yeah anon i cant even imagine what you are going through atm. Well thats the + and - of crypto. Anonymous but you cant refund.

Ledger is just byfar the best technology atm. Dont be greedy and buy a security.

My advice would be to start thinking about some extra jobs to earn back that REQ (by doing wagecucking). Put things on hold in life and focus on 2 jobs at the same time until you get your stuff back.

I dont know if you will get some help from exchanges but you can try.

I know this sounds depressing but if you work back your money then you will get some kind of peace.

Blame the Ethereum developers for making Mist so fucking terrible that people gleefully manage their coins on some shitty 3rd-party website.

next time just use Mist in light mode and wait 500 years for the client to connect to an actual working node

>>8927681
Fuk i wish i could murder that cunt. I'm sorry mate.

>>8927681
>i got a MEW paperwallet
how did this happen then? did you leave on your computer?

>>8927753
>MEW

That's his problem.

>>8927753
no i didnt even log into it as i said i just used ethscan for checking if everything is ok with my wallet

>>8927759
an addendum

some browser add-ons inject code into MEW and log your wallet information so if MEW didn't rob him some chink add-on dev probably did

seriously if you use an online-based wallet you should neck yourself this is basic security

>>8927681
Fuck that sucks.
>>8927759
I have my funfair coins on my exodus wallet. How fucked am I?

Thats why you should keep your funds on binance idiots. When has binance ever pulled an exit scam, huh? Thats fucking right. Idiots.

>>8927789
>seriously if you use an online-based wallet you should neck yourself this is basic security
DESU i never have, i bought a trezor a while back, have both a trezor + ledger.
I did wonder how this happened, thanks for explanation.
so he did not use a fresh (Linux) installation as they say to create a paper wallet.
>>8927850
just wait till the admins families get kidnapped, don't fuckin trust anyone else.

everyone in this thread

get used to the ethereum mist wallet if you're still using MEW

download it off the official website over https and verify the file's hash

then start up the wallet and enable light mode and wait patiently for it to work

make new wallets in mist (it also makes you encrypt with password) and transfer all your junk over to your new addresses

then back up all the wallet files in your keystore folder. the files are small enough that you can print them on paper or QR code them, they're encrypted

once you verify that you've backed everything up multiple times (flash drives, CD/DVDs, paper) you may clear the keystore folder

disclaimer: not responsible if you mess any of this up

>>8927681

>$200,000+ in wallet

Am I missing something?

>>8927910
He robbed other people with a similar trick. Read the comments.

https://etherscan.io/address/0x1ae4df1b75513179f383bc9845450fd76fcf640f#comments

>>8927681
your printer has its own cache, and is potentially a security threat that son of a bitch used

‘It won’t happen to me’, yes it will.

>>8927918
That's why you should only print encrypted QR codes. I'm the guy that keeps shilling running your data through AES before you print them if the wallet doesn't already do that.

That gives an additional layer of security to the paper wallet but burdens you with remembering passwords.

>>8927918
Just fucking write shit down and lock it in a safe and fuck that QR shit

>>8927759
does that mean you shouldn't use MEW even with a trezor?

this is why i use a mac

>>8927965
This. It's really not that hard

>>8927681
Sorry to hear but at least it’s not that much money in the long run.

>>8927789
>browser add-ons
Using a browser addon on your crypto computer.

>>8927992
i bought those req at 4 cents and it will take me at the very least 10 months to get those req back and thats assuming it stays under 20 cents
by the time i have it back i could have already sold tax free
i was trying to hold for a year and then start selling my first few reqs

>>8927681
How did it happen

>>8928015
Well you could use those 33000 in a way. Say you buy in now and it balloons to $1 you could say you sold those 33k for a long term gain

anyone care to explain what kind of exploit was used here?

>>8928015
Maybe but unfortunately for you you're an absolute moron like most people in crypto.

thats what you get for holding a memecoin

>>8927681
The good news is that REQ is a shitcoin and wouldn't have ended up making you any real money anyway

>>8928036
It's larp, the link in the OP shows no such thing.

>>8927681

How exactly can this happen?!

Also, an idea I just thought for inheritance issues.

Instead of encrypting your paper wallets with AES, use PGP. Encrypt your wallet information using your own public key and your spouse's public key
>implying women can into PGP

Then specify in your will that when you die, your spouse gets access to a bank deposit box the paper wallet is in.

I don't have anyone to give an inheritance so maybe in the future I guess.

>>8928073
malware changed the bookmarked legit MEW site to a phishing MEW site

high tech stuff

>>8927819
Why would you care about bags

>>8927681
because you've been on too many weird porn sites and a lot of them are phishing sites.

tldr; always google search MEW, then go to the 1st link.

>>8928115
i rarely use xvideos or pornhub but honestly rarely and no other websites
>>8928103
i didnt even log into MEW

>>8928122
What if I get cat pictures instead?

>>8928132
then you go allin on cryptokitties. it's a sign.

>>8928126
maybe you have a RAT on your PC and they cracked your keystore with hashcat

how complex was the password?

>>8928161
Did tron release crypto kitties or dogs? Justin Sun could of be telling us something....

>>8927681
Don't forget to pay your taxes :)

>>8928126
maybe your favorite shitting street is compromised?

>>8928126
>i didnt even log into MEW
Do you store your private key on any electronical data?

>>8928126
Alternatively, where is your written private key? Who has access to it? How many men does your wife see per week?

What OS did you use? How much proprietary cracked software from the darknet did you install lately?

>>8928185
You mean write it off as a loss?

Did you accidently enter your private key anywhere ever by copying and pasting?

i just looked at the compromised accounts
most look like they were generated in august of last year

I'm guessing they all signed up on a cloned MEW site then the perp waited for them to accumulate before stealing everything

case closed

2FA identification you cunts. Sending a confirmation text to your phone makes it virtually IMPOSSIBLE for hackers.

>>8928285
Sounds good. Wonder why he didn't steal OP's other $27 though.

Ive got about 5k worth of coins on Binance and the rest of my portfolio on my Ledger.

Please buy one guys.

The only way you get hacked in the year 2018 is by visiting phishing sites. This thread sounds like a RuneScape thread where they complain they got hacked and it turns out they we're sharing their account or some shit.

>>8928172
password was randomly generated 16 letters
>>8928193
im german i use toilets
>>8928217
no got it on a piece of paper in my closet
>>8928228
on a piece of paper in my closet nobody has access to it i live alone and use windows 10
>windows 10
yes i fucking know
>>8928228
none i use my ps4 to play videogames

what’s wrong with metamask?

>>8928393
Shouldn't 2FA prevent you from losing your info to phishing sites anyway?

>>8928465
Sophisticated sites can serve as a malicious proxy between you and the real website.

>>8928308
Your google 2FA can be easily compromised, the mobilephone is big weak spot

>>8928432
>password was randomly generated 16 letters
We got a weak point here already, you should have changed the generated password. The dude offering the tool could have made a copy.

But most likely you used a phising site as the other guy said.

>>8928563

Authy my dude

yo is metamask safe or not?

>>8928567
yea possible
man i feel so incomprehensibly retarded you guys cant imagine it
i hope my thread at least warns a few people on here

>>8928563
how?

>>8928563
>>8928568

You can do TOTP with a Yubikey NEO. I'm still trying to research how well it works before I buy one.

>private key storage is write-only
>generate TOTP keys by tapping yubikey on phone and using NFC app
>private keys never exposed

Should be reasonably secure.

>>8928432
>>windows 10
>yes i fucking know
I guess the implication is that you also used your pc to do other things. A windows pc, especially one that's also used for other tasks, simply can't be considered clean. It's too late for you but people should really invest into a small Linux box... just get a raspberry pi for 50€ if you don't have spare equipment laying around.

>>8928588
And now the only problem with this is, now someone can steal your Yubikey NEO to get access to your TOTP keys. Now it becomes an issue of physical security.

Your phone can be encrypted if it's relatively recent. So you usually have to enter a passphrase before you can even get to the 2FA app.

>>8928580
>man i feel so incomprehensibly retarded you guys cant imagine it
Oh I can, I recently threw the paper with my seed away and the only way I could get it back was to use file recovery on a usb stick and being really incredibly lucky. You must be living in hell now. It sounds like you have a job so at least you're not totally fucked. :l

This thread is making me so paranoid idk what to do

Honestly, I’ve left my funds on the exchanges (binance, GDAX) bc I just figured it’s more secure than the ledger I bought (and they usually post about protecting users funds when they are hacked)

Now idk wtf to do

if you just write down the 2fa backups on paper can you really get hacked?

>>8928621
>This thread is making me so paranoid idk what to do
A linux computer that's not used for anything else will protect you from most attack vectors. There's also the Ledger but I don't trust their factories desu.

>>8927704
>>8927722
Get your kneepads

>>8928599
partition the drive? use Qubes

>>8928621
Nobody can definitely tell you what to do. Shitcoins have been a thing for years and people still get their shit jacked for some reason.

I've never gotten my shit jacked before but I try to prevent it.

>>8928621

You probably need to get a digital wallet for a majority of your portfolio. about 25% of mine is on a "reputable" exchange and the rest on Jaxx.

>>8928614
yea it was money i could "afford" to lose
it was literally everything i had but i wont lose my flat or anything like that

soooooooo is metamask safe or not?

>>8928651
>partition
I'd use another one and only have that one plugged in. Why be less paranoid than the absolute maximum? This is the sector of life where it's the most useful.

>>8928621
Same
I just generated a MEW address to participate in the linkpool crowdsale, this is the address they’ll send my profits to, apparently. I keep all my linkies on Binance. Now I’m worried about MEW.

>>8928674
Use Mist wallet. It's the only wallet the Ethereum foundation kind of endorses. Don't bother using full node mode, it will never sync. Go to the options and enable light node mode.

>>8927681
Stop feeling sorry for yourself and buy some more crypto.

Honestly, for the average joe with less than desirable IQ, JUST...

>keep windows updated
>do a malware scan once in a while with malwarebytes and maybe an online av tool
>use Ublock Origin in whatever fucking browser you use
>if your browser doesn't support Ublock Origin, stop being a retard and move to one who does
>use the offline version of myetherwallet https://github.com/kvhnuke/etherwallet/releases (download the zip and run index.html on your browser)
>optional, switch DNS to OpenDNS which usually blocks reported phishing websites
>also optional, install metamask

All of this doesn't guarantee anything of course, but you have better chances to be safe.

>>8928697
>windows
MEEEEEEEEEEEP

>>8928697
>malware scan
MEEEEEEEEEEP

>using a browser
MEEEEEEEEEEP

Holy shit you're retarded.

I'm so poor that if I got hacked I wouldn't even care about it

>windows
lol
you must be a baby gamerfag because that's literally the only reason to use that garbage os
windows in 2018, lol
no wonder you got your shit stolen, op

guys im a little paranoid right now, because i store my tokens on a paperwallet too

I created it offline on a virtual machine with linux installed. My private key is safed with keepass.

Am i safe?

>>8929372
nobody is safe the best you can do is hope you dont get hacked. its as simple as that. if you paint a target on your back you will get hacked sooner or later

>>8929372
Your storage is safe.
However most people are not getting rekted from their storage, they seem to be getting hit with phishing attacks or some kind of malware browser add-on that steals your privkey when you use MEW.

Using MEW with a Linux vm would be much more secure. I still recommend getting a hardware wallet though

>>8927875
>use mist
>have all your money frozen because a random teenager initiated the kill() contract command on accident

>>8929640
Dumb faggot
You fundamentally don't understand ethereum.
>What is a faulty multisig smart contract
>What is parity

>>8927681
Sorry man. I didn't even think about malware being able to change my bookmarked pages. I guess I need to start being more careful as well with all of my login security information.

Hope you recover.

>>8929660
You must be fun at parties.

>>8929707
Not as fun as your mom

>>8927681

>>8929714

I manually type in huobi.pro and binance.com

will this prevent phishing?

I either keep my shitcoins on binance or ledger. this seems optimal?

>>8927681
>some people filed a police report and said they contacted binance and kraken
>kraken already launched an investigation apparently
?????????????????????? what

>>8929884
Yes as long as you type it correctly.
Just bookmark it bro, the bookmark FUD is speculative and as long as you have 2fa, phishing isn't the end of the world.

>>8929640
Mist wasn't even the wallet that had the multisig shit.

>>8930000

>>8927681
33000 REQ? what's REQ?

>>8927681
you should keep half on the exchange (yes fuck 4chan they literally don't know shit, btw if you had it on an exchange and they were hacked you could get a fucking re-imbursement like I did numbnuts) and use 2fa SMS. not fucking google authenticator lol i had fun breaking that in first week my friend showed it to me.

2fa SMS.

and buy a a fucking desktop that has nothing on it but the client for your wallet/exhcange.

yes exchanges CAN get hacked, but then there is fucking liability, especially if you're not on a shifty one.

I got 3000 Litecoin taken, got them all back now.

>>8930018
what a fucking waste.

>>8930154
So why does every exchange “strongly recommend” instead to use the separate authentication? What’s so bad about Google and are Authy/Duo better?

>>8930154
What exchange anon

>>8927916
Who robbed the people and how did they do it?

>>8930206
That guy is retarded.
SMS is weaker than Google auth.
An attacker just needs to port your number to get in, where as Google auth requires them to have physical access to your phone.

Authy is the same as Google auth but has a cloud backup feature. If you use it, make sure you set a decent password on the cloud backup. Google auth has no backup feature so you can't lose your phone.

>>8930279
i think they used a fake mew site to create their wallet. but thats just my assumption

>>8930296
>Google auth has no backup feature so you can't lose your phone.
yeah but all the 2fas you link on it have a backup key

only thing i use metamask for is ethercraft

>feeling sorry for a literal retard
MEW has warnings all over the place, if you got hacked it's your own fault, I hope you learned from that mistake faggot, no sympathy.

>Hi, you stole my Zilliqa and Ether. I do not know how you did this. I applaud your skills but want to let you know that you are harming real people's lives here. I am expecting my first kid to be born this week. You stole the money that is meant to support this baby. You are hurting my family and I cannot think of someone who enjoys that.

These comments kek

>>8930501
comments on scam addresses are the best part of etherscan

>>8928457
Nothing. I use MetaMask and am fine. Just don't visit dangerous websites and download random stuffs.

>>8930642
also noscript is a good add-on

OP you fuckin retard, tell me how you got hacked so I can protect myself!

It's over for you, but I still have a chance!

guys, wtf is "REQ" ?

>>8930668
>noscript is a good add-on
Care to explain to a brainlet?

D9nt worry OP , req was useless anyways not like you lost anything

>>8930683
check https://noscript.net/

, basically an addon that disables javascript... and makes most sites load wrong/not work correctly. VM>noscript tho

>>8930684
Just some Pajeet coin. OP should be happy.

>>8929941
im not really sure whats that about i just got it from the comments of the scammers adress

>>8930699
Alright thanks. I believe MetaMask is safe, but still threads like this scare me.

I think one is safe if he had downloaded the script to create his wallet and did this offline

OP created his wallet online in MEW, that was probably his mistake

Really fucking wish exodus would just add 2FA already

>>8930623
There is still so much dumb money to take. Really makes me feel better.

>>8928122

GET IT RIGHT ONE TIME AND BOOKMARK THE FUCKING MEW WEBSITE

is MEW unsafe?

I'm using Exodus

Is it a good idea to just buy a cheap laptop, install exodus on there, configure it for that, etc. and then just let the thing sit in a corner while I use another computer for vidya and browsing?

Or does this have some secruity problem I'm unaware about.

>>8931497
well, don't keep the computer running when it's not needed. that's a waste of electricity better spent mining.
what happens when Exodus becomes compromised/corrupt and bundles wallet-stealing malware in their distribution? and why is this shit apparently closed-source?

>>8930623
>invested money not considered 0 in value
Classic

>>8928008
metamask?

>Ethereum, MyEtherWallet.com & MyEtherWallet CX, and some of the underlying Javascript libraries we use are under active development. While we have thoroughly tested & tens of thousands of wallets have been successfully created by people all over the globe, there is always the remote possibility that something unexpected happens that causes your ETH to be lost.
>Please do not invest more than you are willing to lose, and please be careful. If something were to happen, we are sorry, but we are not responsible for the lost Ether.
kek why did anyone use this shit

this is why I unironically keep all my money on binance

IP verification + 2FA + 2BTC withdrawal limit (meaning I can only lose 10% of my stack before I find out)

Binance spends millions on security, uses deca layered cold wallets, and they would be able to bail everyone out in the event of a hack

cold storage fags BTFO. People have their personal wallets hacked every day. Binance has never been internally compromised

this shit have me worried now how is even possible to hack if they never stored private keys virtually

>>8931907
yeah unitl binance gets fucked mate. I have my bitcoin address safe in various drives, encripted over the encription it already has. That's the best way to keep it safe. Also, Bitcoin is the most secure chain. Etherum is full of bugs.

I got mewed too. And I know I didn't fall for the phishing meme. Mew is compromised

>>8927681
OP probably bought ATH too

>Having funds in Tokens
>running on a network in gamma stage
>with an unknown amount of attack vectors
why the hell are you in crypto. Vegas is less risky with a higher ROI

>>8931958
>>8931973
im pretty clueless but obviously i must have made some mistake
all i know is next time i just put that shit on a ledger and by my next paycheck i will have switched to a linux os

>>8927681
>it's another thread full of faggots who didn't ledger
it's sad how misunderstood ledger is.
probably 90% of biz doesn't even understand how it works and you think your paper wallets and airgapped usb are in any way equivalent.