My BTC wallet hacked

[namja]

Still trying to figure out what happened. Moved about 0.2 BTC to my blockchain.com wallet, and within 30 minute, it was gone.

• Whenever I try to log in to my blockchain.com account, I get an email verification (2FA). This was working properly, at least whenever I log in. I never got an email about someone else trying to log in.
• Whenever I receive/send BTC at this wallet, I get a text notification. I did not get a text when BTC was received. I did not get a text when the BTC was sent.
• My recovery phrase is kept offline.

So it seems like it was either some sort of an inside job, or somehow the recovery phrase was compromised. Something just doesn't seem right.

I've moved on to using a hardware wallet now.

 

[MadJack]

Still trying to figure out what happened. Moved about 0.2 BTC to my blockchain.com wallet, and within 30 minute, it was gone.

• Whenever I try to log in to my blockchain.com account, I get an email verification (2FA). This was working properly, at least whenever I log in. I never got an email about someone else trying to log in.
• Whenever I receive/send BTC at this wallet, I get a text notification. I did not get a text when BTC was received. I did not get a text when the BTC was sent.
• My recovery phrase is kept offline.

So it seems like it was either some sort of an inside job, or somehow the recovery phrase was compromised. Something just doesn't seem right.

I've moved on to using a hardware wallet now.

That's scary but it will probably work out. Some kind of glitch maybe?

 

[namja]

That's scary but it will probably work out. Some kind of glitch maybe?

Nope. I've emailed with blockchain.com back and forth several times. They say that once BTC is gone, it's gone.

 

[tulah]

Nope. I've emailed with blockchain.com back and forth several times. They say that once BTC is gone, it's gone.

That sucks bro.
Be careful. Always beware of phishing attempts.

If you go through the transaction number you can view the wallet that it was deposited to.

 

[namja]

That sucks bro.
Be careful. Always beware of phishing attempts.

If you go through the transaction number you can view the wallet that it was deposited to.

Yeah, I see that. And I see that it has been receiving a bunch of BTCs from various sources in the past several days.

I?ve already reformatted both my computers and changed all my important passwords just in case.

 

[MadJack]

Yeah, I see that. And I see that it has been receiving a bunch of BTCs from various sources in the past several days.

I?ve already reformatted both my computers and changed all my important passwords just in case.

Not sure how they would get past your 2FA unless they have access to your phone. My phone only requires logging in with a PIN. When I login online I get sent a text to enter a code.

One thing that has never worked with my account is getting a text or email when I send and receive and I have it setup for that too.

I'm moving most of mine to my Ledger since seeing your thread. I've been lazy about that.

 

[MadJack]

Hopefully you got a new backup phrase. Pretty sure when you backup you get a whole new set of 12 words. I'm not positive though. I backed up last night and the new words don't match anything I already had saved but I have several accounts. Now I'm getting myself and my accounts much more organized. Like I said, I've been slack on that.

 

[namja]

Not sure how they would get past your 2FA unless they have access to your phone. My phone only requires logging in with a PIN. When I login online I get sent a text to enter a code.

One thing that has never worked with my account is getting a text or email when I send and receive and I have it setup for that too.

I'm moving most of mine to my Ledger since seeing your thread. I've been lazy about that.

If someone gets a hold of your private keys, then 2FA is moot since they can access the BTC from somewhere else. I?m trying to see if I (stupidly) put that on the cloud (dropbox, gdrive, evernote, etc.). Ugh.

Anyway, I?m over it. Will use hardware wallet from here on.

 

[alb]

Excuse my ignorance but I don't understand most of this stuff. But I wouldn't want to be hacked. I have crypto in coinbase. Are you saying I can move it which would make it safer? I have heard of the hard wallet but don't have a clue how to set it up or use it. I watched a couple tutorials and here are some of the concerning reviews I read. Lengthy delays, losing it all in the transfer, needing specific apps, needing a computer (instead of phone/tablet), can't sell from a stick, paying fees to transfer.

 

[namja]

Excuse my ignorance but I don't understand most of this stuff. But I wouldn't want to be hacked. I have crypto in coinbase.

If reading about hardware wallets confuses you, then I'd say leave it in Coinbase. Also:

(1) Don't ever save your password anywhere. Not on your browser. Not using a password app. Not anywhere online. If you must, write it down on a piece of paper and keep it in your safe at home (and don't write "coinbase" on the paper). Coinbase has some protection through insurance.

(2) I'm sure this goes without saying but don't ever log into Coinbase using a link that "they" sent you. No matter how legit it looks, it could be a phishing email. Either use the app on your smartphone or log in by typing coinbase.com on your browser.

(3) Turn on 2FA. Maybe use an Authenticator. https://help.coinbase.com/en/coinba...n/what-two-step-authentication-apps-can-i-use

 

[Diego Gravas]

Hi, Namja :0008
Did you find out what the reason was that you lost your BTC? I mean was it phishing, wallet's malfunction or what?

 

[namja]

Hi, Namja :0008
Did you find out what the reason was that you lost your BTC? I mean was it phishing, wallet's malfunction or what?

I still don't know. Blockchain.com says that its website was not breached and that no one else logged into my account. I had stored my private key in a dropbox folder temporarily, and maybe my dropbox was hacked in the past? That's all I can think of.

Anyway, I now use a hardware wallet and the key is not online anywhere.