• IP addresses are NOT logged in this forum so there's no point asking. Please note that this forum is full of homophobes, racists, lunatics, schizophrenics & absolute nut jobs with a smattering of geniuses, Chinese chauvinists, Moderate Muslims and last but not least a couple of "know-it-alls" constantly sprouting their dubious wisdom. If you believe that content generated by unsavory characters might cause you offense PLEASE LEAVE NOW! Sammyboy Admin and Staff are not responsible for your hurt feelings should you choose to read any of the content here.

    The OTHER forum is HERE so please stop asking.

Hackers Target Bitcoin Talk via Vulnerability in AnonymousSpeech Registrar

N

NewWorldRecord

Alfrescian (Inf)
Asset
Joined
Sep 27, 2013
Messages
554
Points
0

December 2nd, 2013, 10:58 GMT · By Eduard Kovacs

Hackers Target Bitcoin Talk via Vulnerability in AnonymousSpeech Registrar

Hackers-Target-Bitcoin-Talk-via-Vulnerability-in-AnonymousSpeech-Registrar-405123-2.jpg


Bitcointalk.org targeted by cybercriminals

On Sunday, users of the popular Bitcoin discussion forum Bitcoin Talk (bitcointalk.org) noticed that the website was being served via CloudFlare. It turns out that the change is the work of cybercriminals.

According to Bitcoin Talk administrator Theymos, this appears to be a man-in-the-middle attack that leveraged a vulnerability in the systems of AnonymousSpeech.com, an anonymous domain registration service.

“8-14 hours ago, an attacker used a flaw in the forum's AnonymousSpeech registrar to change the forum's DNS to point to 108.162.197.161 (exact details unknown). Sirius noticed this 8 hours ago and immediately transferred bitcointalk.org to a different registrar,” Theymos stated a few hours ago.

However, he warns that it might take around 24 hours until the changes propagate.

It’s believed the attacker could have intercepted encrypted communications, including passwords, authentication cookies and private messages. However, only information submitted while the DNS was changed could have been compromised.

All security codes have been invalidated, but while this is sorted out, users are advised to add “109.201.133.195 bitcointalk.org” to their hosts file to make sure they’re communicating with the right server.

Interestingly, the man-in-the-middle attack coincided with a massive distributed denial-of-service (DDOS) attack launched against the website.

“These two events are probably related, though I'm not yet sure why an attacker would do both of these things at once,” Theymos said.

The incident is still being investigated. A discussion on this topic can be followed on Bitcoin Talk.

It’s worth noting that several Bitcoin-related services have been targeted by hackers over the past period, especially since the value of the digital currency skyrocketed. The list of targets includes Bitcash.cz, Inputs.io and BIPS.

Also, this isn’t the first time Bitcoin Talk suffers a data breach. A couple of months ago, the website was taken offline after hackers breached the forum.

 
You must log in or register to reply here.

Similar threads

nabeifuckpap
Tiongs using Shitgapore to launch DDoS attacks! - Cloudflare report
Replies
0
Views
633
nabeifuckpap
nabeifuckpap
destroyer
Origin Infinite Joe Biden
Replies
8
Views
6K
destroyer
destroyer
P
Chitchat Shortseller Report about Tiong Company Ping Duo Duo (Temu)
Replies
1
Views
2K
Yumiko
Yumiko
UltimaOnline
Srticle by Geert Vanden Bossche (DVM, PhD) on how vaccination is counterprouctive to achieving herd immunity
Replies
1
Views
2K
crimsondue
C
war is best form of peace
Serious UK's nuke sub Trident on antique tecnologies including Windows XP, NK must HACK!
Replies
2
Views
2K
war is best form of peace
war is best form of peace
Back
Top