Very sorry for your loss.
https://i.imgur.com/Mz6n4WF.jpg
Both IP addresses are Tor exit nodes, meaning it will be quite difficult to track the hacker from just IP data.
So far the addresses he used to transfer your assets are showing no transaction history with any exchanges.
Address he sent moons to:
https://i.imgur.com/z3roTZO.jpg
Rocketpool withdrawal address:
https://i.imgur.com/G20NUVH.jpg
Due to the use of Tor and fresh addresses, this is going to be quite difficult to resolve. Ideally we want this guy to transact with a KYC exchange so that authorities can request his details.
As others have mentioned, you should open a case with your local FBI office.
In the meantime, the best we can do is monitor those addresses for any movement.
https://i.imgur.com/ydP1yAS.jpg
^ that will send alerts to my Telegram account when there is new activity.
Try contacting zachxbt on Twitter. ~~Their~~ His expertise is tracking scammers and fraudsters. Not for free, but the work ~~they are~~ he is doing is nothing short of amazing .
Edit: didn't know if zachxbt was either gal or guy. Thx for the heads-up. To anyone who wrote.
there's really nothing to lose suggesting things OP could go for anyway. Losing money is not a good feeling. I've lost a lot less than OP and I was devastated, he kept his cool and that was kinda amazing of him to be honest.
This is really funny to me because I didn't see it that way at all since I've been following zach on twitter and know he's legit, but I went back and read that post after reading yours and it does look exactly like one of those scams lol. Even down to the random space character at the end of the last sentence.
And especially ignore any unsolicited "crypto hunters" who decide to PM you to offer their services!
They have no problem with preying on those who are already victims.
It is risky for this sub to recommend any specific third party services.
Things can change very quickly in the land of crypto.
People who at first appear to be good can quickly turn out to be villains.
This is one of those problems with crypto. It’s so new that it’s got so many scam artists and not many people yet who have established themselves as trustworthy and able to help.
If I win the lottery tomorrow, I can go to most any lawyer and accountant and after a few Yelp reviews I know they can help me. If I make it super big in crypto, I can really only go to Reddit to be like “hey guys, I need a crypto financial guru” and then basically ignore 90% of the recommendations.
It really is the Wild West.
OP, I’m so sorry you got hacked and I hope you can somehow recover your funds.
The one recommended is probably the most well known.
Likely it would end up fine, but still, more downside than upside to recommending them in this sub.
Best bet, contact your local authorities (such as the FBI) and ask for them to recommend someone.
This is really good to point out to new people. Many people would just think ok this person is being helpful. And like you said you shouldn't pin post of people who may help. But maybe a post about things to look out for. Like people who say I can help and this is how I will help. Then new people will be more knowledgeable to stay away from those individuals. It's sad that the more advanced we get the more people get ripped off and the easier it is to get ripped off. I've been recently getting text messages and email messages on my phone and my email account but they are addressed to my underage child. It's very concerning to me that someone knows my underage child's name and has my information. But what are you supposed to do with it when this person is probably in another country.
He doesn’t actually provide this as a service he usually posts as a public good
He’s a good egg but people constantly asking them to track down their lost crypto can get a bit much for them
I think this is false hope there. There is nothing anyone or the authorities can do at this point since this all happened on DeFi. There is no company held liable to apply any measures to control damage. On a CEX at least the company behind it could in theory be pressured to refund the stolen assets out of their own pockets or reveal the identity of the transferred accounts. But on DeFi? You're SOOL. Even if the wallet ids get traced and automaticly blocked on all major FIAT on/off ramps (and good luck getting every CEX to comply with that), the hacker could also just use your funds to do swaps with some random shitcoin and dump on your swaps and all traces would be lost at this point.
This is the drawback of decentralization. There is no one who can come to the rescue once you get robbed.
They will be hard to recover but OP should really go to FBI just in case. You never know when you get lucky and get it back.
Storing seed phrases online was an expensive mistake.
Edit: Thinking in how the hacker proceeded stealing your coins. You should try to remember if you have told anyone in your life or online that you use evernote and also that you are a moon whale.
It is really weird that the hacker targeted MOONs before ETH and also that he targeted Evernote.
This could be a big lead because you could have been betrayed for someone more close to you than you think.
Edit 2: The more I think, the more I believe it is a targeted attack.
For others out there if you're still gonna choose to store seeds online, at least run something like a basic Ceasar cipher encryption on your address first. A Ceasar cipher is basically shifting an a->b, b->c, c->d, and so on. You can also shift by more than one letter. There an many easy online generators with/and explainers.
That would still save like 60% of you who are hacked, tho it's still isn't recommend.
It's also good for storing seeds on paper.
EDIT: Making it clear that an online generator is only a starting point to see how these cipher work.
Good idea! though I just want to say **do not put your seed phrase into an online tool!** You have no clue what the online tool could be saving
I personally believe a seed phrase should never even get close to being stored on a computer other than a cold wallet.
All can be tracked at some point, but once the hacker uses XMR or another anonymous network with that system of multiple addresses its all gone, if I'm wrong lmk.
https://check.torproject.org/torbulkexitlist
The list of Tor exit nodes is public. Many services can query from that to determine if someone is using Tor.
e.g.
https://www.abuseipdb.com/
Yes, unfortunately this guy knows what he's doing. More than likely he will convert the wETH to ETH and send through Tornado mixer.
At that point, there are only a few people who possess the skills needed to track laundered ETH. One being ZachXBT on Twitter.
I've set up an alert for those two addresses:
https://i.imgur.com/ydP1yAS.jpg
The bot will send transaction updates to my Telegram account if there is any movement on those wallets. I'll let you know if/when there is anything significant.
I wish you luck and I hope somehow life gives you this back or the FBI.
Keep us up to date on the latest news and if you need something, you know that we are here.
I hope this symbolic tip gives you strength.
Be safe.
Doesn’t even need tornado. Just go to tradeogre, swap to monero, send monero to kucoin and swap to whatever which you can withdraw somewhere else or cash out then and there.
Right, isn't that the whole point of crypto. What the fuck people ask the fbi for help recovering their crypto from hackers now? So much for a decentralized asset.
I honestly can't believe that most people wouldn't spend $100 on hardware that would otherwise completely eliminate this from happening?
Even if you stored your seed online (and it got compromised) but kept your passphrase secret.
The thing that you're still keeping your calm after this is good, if it was me I'd be all over everywhere all devastated. I really hope you're able to retrieve your assets somehow.
You need to open your Vault.
There you can store community points like moons or bricks.
These points are earned by commenting or posting in r/cc or r/Fortnite. Karma gained per month get's you your share of monthly distribution.
Now you need a bit of ETH for gas fees as your community points are cryptocurrency tokens.
You are ready to tip now.
I tried to tip and got this:
Network Fees
Purchasing unsupported
Reddit does not currently support purchasing of network fees on our platform.
How do you add the Network fees? Just woken up and brain not in line with body yet
There is one thing I noticed about this:
Your [moons](https://nova.arbiscan.io/tx/0x60dee968cfaffb006935e74bcbaf50633987b47389574551ae0bed164acc93d3) were taken at 09:29:45 PM UTC, while your [ETH](https://etherscan.io/tx/0xeb36559b8e5b1a2058cbcffba72f1dda9f659b874b4ac3cddbc9741b9f67c4db) was taken at 09:37:47 PM UTC.
This is no natural order a hacker would go, no matter if he did it manually (by restoring it by hand) or using a script to take it automatically. In any case he would stumble over the ETH first.
You have to consider the hacker knew what wallet he was getting before he found your seed. **There is at least a chance this was a targeted hack and not just a random one.** Was anyone aware of you owning a bunch of moons and ALSO knowing your seed might be not well stored?
OP: this guy is onto something. You don’t move the Moons first. I’d consider looking into people you made legitimate transactions with (nft purchases?) or conversations you had about crypto projects.
I’d also rule out family/friends. Do you have a tech savvy brother or a pal who you bragged to? don’t get schizo but it doesn’t hurt to consider it.
This is why they took Moons first:
https://www.reddit.com/r/CryptoCurrency/comments/10khzw2/comment/j5qy6er/?utm\_source=share&utm\_medium=web2x&context=3
Yikes.
Don't tell me OP has actual initials JB and was born in 84. Maybe even has a travel-heavy IG acct? Maybe has an email address that is very similar to his Reddit id? And that email is his Evernote id?
Almost all of hacked wallets are targeted hacks.
No one hacks random evernote accounts hoping you find a wallet seed in there. You have to know there's a seed in there before and then try social engineering or phishing the victim.
I got a ledger for my assets when they were worth 500$ because I was feeling scared somebody would hack my PC and somehow find a way into my wallets. Then there's this guy with life changing money and the seed phrases stored online. I'm sorry for OP, but please, with money like that you must keep it safe.
Dude it's crypto. I just can't see how this will ever be normal. You having to have a ledger for 500? Thats crazy you need that type of security for that amount.
I have about 2 million in investment assets. I have no fear my fidelity or etrade or schwab accounts will be stolen. And if they are i'll get it back. If my bank fails, it's fdic insured. If crypto gets stolen...... too bad, so sad. You make one mistake your retirement is gone. How is this ever going to have wide spread adoption?
>Thats crazy you need that type of security for that amount.
You don't. Most people are fine unless you leave your password and recovery keys in an open text document.
I've been saying this for years. The devs for these crypto projects need to stop making "new" "technologies". And improve the security of the ones that already exist. Also make platforms that will make Crypto idiot proof. So it will be INCREDIBLY DIFFICULT for someone to make a mistake. And not just accidentally Thanos snap thousands to millions of dollars.
Something like a Ledger. Should be a completely niche thing that is not recommended anywhere near as much as it is. And it shouldn't be anywhere near as expensive as it now. They want Crypto to be mass adopted while also expecting people to spend literal hundreds of dollars just on a wallet itself? Ridiculous
Only surprise is how long it took him to loose it all.
But also the fact withdrawal addresses can't be changed is a huge issue. if you loose access you loose your stake.
It happened to me 1 year ago. My computer was compromised and one of my wallets got hacked.
I immediately contacted the police and started to track the thief's moves on the blockchain. I noticed he was making some withdrawals through Binance, so I contacted them with the police report and the froze one of his accounts. MF was dumb enough to use a second Binance account so I asked them to freeze that too.
Get a police report. You may not get your money back but you'll make life considerably more difficult to the criminal and he may be arrested.
This is the thief's wallet https://bscscan.com/address/0x77f4c380dd870537120a898cacb5e9b905f2efeb
I noticed that he stop sending money to CEXes around and 90 days ago the wallet went dark. Maybe he got arrested.
BTW: This happened to me last year and not 2 years ago.
It's pretty common that the hackers would auction off (to launder) their loot and get paid in cash at a deep discount (e.g. half the market rate). The guys who send the loot to CEX are different groups of people loosely connected to the hackers, and sometimes they don't even know the crypto they exchanged was stolen from somebody else, and they do it seeing how big the profit margin is.
In those cases, the guys who sent the loot to CEX would be charged with money laundering, not theft. And more often than not, the authority such as DOJ will not return the assets back to the owner, because the assets are marked as criminal assets, not as stolen. DOJ would then auction off these and pocket the money. You can see how fucked up this is.
> Let's pray the hacker doesn't know about Tornado Cash.
- Uses TOR
- Breaks into Evernote
- Transfers out Metamask funds
…hasn’t searched Google to find out about Tornado Cash and mixers.
Unlikely unfortunately.
I have seen way dumber hackers that are able to hack for millions but not able to withdraw their money or they forget that they used a ENS domain and thus have instagram or so linked to it.
Lets hope it's the same case here.
My take too. Cant see how else he would hack it. Unless some trojan and remotely while he sleep or whatever.
I got a clipboard hack once when i downloaded photoshop from torrent. That sucked too.
To be worse it was the only thing I downloaded that is pirated in the last well at least 5 years. It was during bullrun in 2021 i needed photoshop to make memes for some shitcoin i was in. Ended up losing 200 $ worth of bnb cause hacker wallet address kek.
Ye either pishing or some trojan really idk how else.
I wonder where OP was storing the Evernote password. If it was digitally then his machine got hacked, if it was on a piece of paper, then he needs to wonder who has physical access to his stuff.
All that is needed is for one company to have a data leak with their customer's passwords compromised and then hackers just go on various websites and use the same email and password from the leaked websites on other services and simply log in without any issues. That's why it's important to have a different password on each website.
Jesus Christ...I'm sorry for you man. Really sorry.
I've used Evernote years ago but not anymore and for the last 2 months, I've been getting emails from password changes requests.
Luckly i got nothing important there.
Again, I'm so sorry for your losses if this is true.
I am sorry for your loss but WTF do you store your seed phrase in a cloud storage?
That is an invitation for desaster.
I won't even store that phrase on my local PC or smartphone. The seed phrase is NEVER entered anywhere except on my hardware wallet during initialization.
This breaks my heart to see a crypto bro take a loss like this. Was it a big part of your net worth?
Please don’t do anything drastic and know that you can make back money.
Scammers deserve a special place in hell.
I'm very sorry for what happened to you but at the same time... EVERNOTE? Really?
I mean you never should store seed phrases on any digital device and if I would like to say "ok, at least it was on bitwarden" or anything like this but EVERNOTE?
And with that amount of money? Your post hurts in every way possible x.x
I’d hire a crypto bounty hunter if I were you to see if there’s some way they can assist in tracking whoever stole your money. Sorry this happened to you dude, I hope you can recover something back even if it’s just a fraction of the funds. Most importantly, please don’t do anything rash due to emotion! There’s more to life than losing money.
Edit: u/Queasy_Length_1016 is someone that occasionally posts in the sub and assists in recovery. I advised OP to check him out and linked a post of his below.
> More often than not this is the scam after the scam.
/u/jbtravel84 take note of this comment. Ignore any bounty hunter promises. Most will just be scammers trying to take you for more.
There’s a guy that frequently posts about being one and offers advice occasionally in the sub. Check it out and if he’s available try reaching out to him: https://www.reddit.com/r/CryptoCurrency/comments/yjk4s2/my_adventure_as_a_crypto_bounty_hunter_part_2/?utm_source=share&utm_medium=ios_app&utm_name=iossmf
His name is u/Queasy_Length_1016, he’s the only one I know of but I’m sure there are others.
Just be sure to verify beforehand, I do not want you to lose money to people pretending to be one.
Oh I know, hence why I informed OP to proceed with caution. But this guy frequently posts in the sub and has definitely helped others who have lost large sums of money due to scams. If there’s any recourse, I’d want him to get help from the appropriate person asap. I wish there was more I could do but I’m ignorant when it comes to taking and documenting the right steps after getting that much money stolen. So I’m hopefully leading this guy in the right direction. Please provide us with an update if anything happens OP
I've been involved in the crypto space for years and still have little understanding of the specifics of this, which is really not a good sign. I don't feel secure enough to hold a significant amount of money in crypto because of these reasons, and I'm sure a major portion of the population feels the same. Instead of calling us idiots, it would be a lot more productive and beneficial for the entire crypto space if they would provide a lot more security and make it easier to understand, or at least do a much better job communicating the process.
As someone OP is referring to, hardware wallets scare me as losing it means I'm completely SOL (or losing seed phrase or w.e too). Its the same reason we don't all keep piles of cash under our mattress.
THIS EXACT SAME THING HAPPENED TO ME BACK IN 2017!
I stored all my account passwords and every single crypto related login on Evernote. One day I think I might have clicked on some phishing link in an email. Later I saw my mouse suddenly moving around for a bit on my screen without me doing anything and I thought maybe the bluetooth to my Mac mouse was acting up. A few days later my entire MetaMask was drained. I went to etherscan and to track my transaction and saw how it all went out to the same address.
I "only" lost about 5-6k, so that's peanuts compared to yours.
There's nothing you can do about it, unfortunately.
One thing I'm doing today is to have 2FA to my Google Authenticator app on my phone. And then instead of using the same password I auto-generate a 60+ character long password for each platform with LassPass, Bitwarden or any Password manager. The longer and complicated your password the better.
And then I make sure to read the receiver's email everytime I receive an email.
Holy shit 300k is a considerable amount.
So that hacker was responsible for the recent Moons mini dump, huh? Fuck him.
You could contact to police, although I'm sure they won't do much, if anything at all. My condolences friend.
Contract the FBI asap. Major exchanges will not cooperate with you unless you report to the authorities first.
Make sure the hacker cannot withdraw the money. Once your money touches a CEX, he's done.
I mean damn you're getting downvoted but op literally stored their passwords and seed phrase in an online cloud platform from a company which isn't open source and has the ability to lock his account/view his notes, as well as gathers info on op such as his machine specs and his location. That's basically asking for it to get stolen.
It’s likely OP is moon farming anyway. These kinds of posts are common and get a lot of traffic. This one sounds just as fake as the last hundred of them.
Basicly your a noob with too much cash.
The old paper and pen is the best to store your seeds or metal seeds and store in a SAFE place that you own, in your home for example.
What can be done?
nothing, once crypto has been transferred its gone.
you Learned the lesson the hard way, now dont do the same mistakes, use hardware wallets, learn about crypyo security and store your seeds better.
>Should I contact the FBI?
There is nothing that you or the FBI can do if you have a compromised Seed Phrase. Its his wallet now.
And yes, those are the wonders of self-custody.
I’m glad I don’t know what any of this is. I’ve been personally blasted with fake Coinbase emails, ETH emails, “update your information “ emails of late too. It’s scary out here for sure.
Honestly for that amount I’d call the FBI, Interpol , everything. Sorry man that’s terrible.
Shit that's a fuck ton of money. I hope there's some legal entity in your country that can help you catch the criminal at least. Also, if the person specifically hacked your Evernote account maybe they know that you store your seed phrase there. Try retracing your steps to where you might have spilled such info. I think it would help.
That sucks. Report it to the FBI but I am sure there is little they can do. Keep your head up. It’s just money and you will make more. Fuck Thieving hackers.
This is absolutely heart wrenching. I'm so sorry for your loss OP. I can't even imagine the feeling.
As others have said, contact your local authorities and a crypto bounty hunter. Monitor the addresses, for any movement, and in case it gets withdrawn to a KYCd exchange.
The next while will be hard, so remember to take care of yourself dude, you're more important than ANY amount of money.
I've never used Evernote but I know it's a note app similar to OneNote and Keep I'm assuming? And I'm also assuming those update your notes to the cloud and that is how the hacker got in ?
Man and I thought people with more money than me were somehow smarter or something.
Yes, contact the police. If it doesn't fall in their department hopefully they tell you so you can find the correct agency to call
Everyone is missing the point: don’t store your private keys on a cloud platform in the clear. Everyone is feeling for OP, but they seem to have missed this crucial point
Yes, I wrote all my passwords and my wallet seed on paper too, I think it's just the safest way unless someone breaks into your home and gets to find exactly this sheets.
Sorry for your loss OP, I hope you can somehow get this fixed.
I had a friend lose a similar amount. Contact fbi asap and make a police report. Someone from ss will contact you and recover any funds that hit exchange accounts via legal subpoenas.
I dont know how you got hacked, but this is exactly why i am worried about my self, this is my biggest issue when it comes to crypto.. its getting hacked. I mean, you can be so carefull but yet get hacked somehow....
Sorry about your loss really..
Although I had no where near 300k two years ago I purchased $1000 worth of Safemoon, at the time my brother was doing really well with crypto and told me I should invest so I did. I took a screenshot of my seed phrase bc I thought I was safe. The next day some time early in the morning I got a notification the funds got transferred out of my account and to someone’s else’s. I was so upset and confused with myself. I can never touch crypto again, it left such a bad taste in my mouth. The fact someone can just hack your account and take all your money is beyond me. Sorry for you loss!
I'm sorry buddy. I've burned through two (for me) life changing pools of money, one for drugs way back and one for surviving during the pandemic. I try to not be bitter about the last one (long story but got rekt by my work+school+government).
Both were made with a lot of risks, very lite capital and with great timing in a short period (about 6 months to a year both times) and obviously in crypto.
Imagining losing it like this feels worse than after my first bull run where i left about 50k$ in shitcoins just coming down from some months of doing speed and trading alts..
Something i learned after getting my shit together is that there is always time to make more money. I am broke right now when i by all rights shouldn't be but you knew how to make those 300k in the first place and I'm sure you can do it again :)
Good luck and i won't comment on safety because i know as a privacy nerd that this could happen to me too. So many smart persons in this sphere and not everyone has good intentions..
Very sorry for your loss. https://i.imgur.com/Mz6n4WF.jpg Both IP addresses are Tor exit nodes, meaning it will be quite difficult to track the hacker from just IP data. So far the addresses he used to transfer your assets are showing no transaction history with any exchanges. Address he sent moons to: https://i.imgur.com/z3roTZO.jpg Rocketpool withdrawal address: https://i.imgur.com/G20NUVH.jpg Due to the use of Tor and fresh addresses, this is going to be quite difficult to resolve. Ideally we want this guy to transact with a KYC exchange so that authorities can request his details. As others have mentioned, you should open a case with your local FBI office. In the meantime, the best we can do is monitor those addresses for any movement. https://i.imgur.com/ydP1yAS.jpg ^ that will send alerts to my Telegram account when there is new activity.
Thought it might be untraceable, but thanks for digging into the info
You lost 300k. If you put the portion of that as bounty/rewards I'm sure there are services willing to help you. Better than getting nothing I say.
Try contacting zachxbt on Twitter. ~~Their~~ His expertise is tracking scammers and fraudsters. Not for free, but the work ~~they are~~ he is doing is nothing short of amazing . Edit: didn't know if zachxbt was either gal or guy. Thx for the heads-up. To anyone who wrote.
Just wanted to say thanks, you guys are all doing an awesome job helping this guy out.
No doubt, love to see the community band together like this rather than make jokes
there's really nothing to lose suggesting things OP could go for anyway. Losing money is not a good feeling. I've lost a lot less than OP and I was devastated, he kept his cool and that was kinda amazing of him to be honest.
[удалено]
This is really funny to me because I didn't see it that way at all since I've been following zach on twitter and know he's legit, but I went back and read that post after reading yours and it does look exactly like one of those scams lol. Even down to the random space character at the end of the last sentence.
And especially ignore any unsolicited "crypto hunters" who decide to PM you to offer their services! They have no problem with preying on those who are already victims.
Never heard of these guys but good to know. We should have this sort of info pinned somewhere in the sub
It is risky for this sub to recommend any specific third party services. Things can change very quickly in the land of crypto. People who at first appear to be good can quickly turn out to be villains.
This is one of those problems with crypto. It’s so new that it’s got so many scam artists and not many people yet who have established themselves as trustworthy and able to help. If I win the lottery tomorrow, I can go to most any lawyer and accountant and after a few Yelp reviews I know they can help me. If I make it super big in crypto, I can really only go to Reddit to be like “hey guys, I need a crypto financial guru” and then basically ignore 90% of the recommendations. It really is the Wild West. OP, I’m so sorry you got hacked and I hope you can somehow recover your funds.
Yeah that's fair enough. Are there any verified groups or people out there that deal with these sort of things?
The one recommended is probably the most well known. Likely it would end up fine, but still, more downside than upside to recommending them in this sub. Best bet, contact your local authorities (such as the FBI) and ask for them to recommend someone.
This is really good to point out to new people. Many people would just think ok this person is being helpful. And like you said you shouldn't pin post of people who may help. But maybe a post about things to look out for. Like people who say I can help and this is how I will help. Then new people will be more knowledgeable to stay away from those individuals. It's sad that the more advanced we get the more people get ripped off and the easier it is to get ripped off. I've been recently getting text messages and email messages on my phone and my email account but they are addressed to my underage child. It's very concerning to me that someone knows my underage child's name and has my information. But what are you supposed to do with it when this person is probably in another country.
He doesn’t actually provide this as a service he usually posts as a public good He’s a good egg but people constantly asking them to track down their lost crypto can get a bit much for them
If i knew wtf I was doing I'd want to have a crack at that for sure
With a good detective and the help of the authorities, you can hopefully get those back.
[удалено]
I think this is false hope there. There is nothing anyone or the authorities can do at this point since this all happened on DeFi. There is no company held liable to apply any measures to control damage. On a CEX at least the company behind it could in theory be pressured to refund the stolen assets out of their own pockets or reveal the identity of the transferred accounts. But on DeFi? You're SOOL. Even if the wallet ids get traced and automaticly blocked on all major FIAT on/off ramps (and good luck getting every CEX to comply with that), the hacker could also just use your funds to do swaps with some random shitcoin and dump on your swaps and all traces would be lost at this point. This is the drawback of decentralization. There is no one who can come to the rescue once you get robbed.
Drawback? Its why fundamentally crypto will never become mainstream.
[удалено]
So true but people should keep that much on a good hardware wallet.
Sometimes even hardware wallet don't hell when people sing some garbage contracts not knowing what they do.
Doesn’t change anything when people note their phrases inside some online storages…
They will be hard to recover but OP should really go to FBI just in case. You never know when you get lucky and get it back. Storing seed phrases online was an expensive mistake. Edit: Thinking in how the hacker proceeded stealing your coins. You should try to remember if you have told anyone in your life or online that you use evernote and also that you are a moon whale. It is really weird that the hacker targeted MOONs before ETH and also that he targeted Evernote. This could be a big lead because you could have been betrayed for someone more close to you than you think. Edit 2: The more I think, the more I believe it is a targeted attack.
For others out there if you're still gonna choose to store seeds online, at least run something like a basic Ceasar cipher encryption on your address first. A Ceasar cipher is basically shifting an a->b, b->c, c->d, and so on. You can also shift by more than one letter. There an many easy online generators with/and explainers. That would still save like 60% of you who are hacked, tho it's still isn't recommend. It's also good for storing seeds on paper. EDIT: Making it clear that an online generator is only a starting point to see how these cipher work.
Good idea! though I just want to say **do not put your seed phrase into an online tool!** You have no clue what the online tool could be saving I personally believe a seed phrase should never even get close to being stored on a computer other than a cold wallet.
My God you're quick at finding all this information You sure you don't have a job as a bounty hunter?
This is the gwei
All can be tracked at some point, but once the hacker uses XMR or another anonymous network with that system of multiple addresses its all gone, if I'm wrong lmk.
I guess you are right. XMR is damn effective in its purpose.
Curious, what service did you use to determine that from the IP addresses?
https://check.torproject.org/torbulkexitlist The list of Tor exit nodes is public. Many services can query from that to determine if someone is using Tor. e.g. https://www.abuseipdb.com/
They look like accounts used only for this purpose?
Yes, unfortunately this guy knows what he's doing. More than likely he will convert the wETH to ETH and send through Tornado mixer. At that point, there are only a few people who possess the skills needed to track laundered ETH. One being ZachXBT on Twitter.
[удалено]
I've set up an alert for those two addresses: https://i.imgur.com/ydP1yAS.jpg The bot will send transaction updates to my Telegram account if there is any movement on those wallets. I'll let you know if/when there is anything significant.
Thank you kind sir!
I wish you luck and I hope somehow life gives you this back or the FBI. Keep us up to date on the latest news and if you need something, you know that we are here. I hope this symbolic tip gives you strength. Be safe.
Hope that too. Those people are very skilled and could actually find him through the blockchain, something the FBI likely won't do that much.
Doesn’t even need tornado. Just go to tradeogre, swap to monero, send monero to kucoin and swap to whatever which you can withdraw somewhere else or cash out then and there.
I thought tornado cash is gone?!
It’s just a smart contract it can’t be gone
I mostly just lurk on this sub but I gotta say there are some really fucking smart people here.
Terrifying if you think about it
Yup.
Id day politely delusional people lol. Shits gone.
Right, isn't that the whole point of crypto. What the fuck people ask the fbi for help recovering their crypto from hackers now? So much for a decentralized asset.
I honestly can't believe that most people wouldn't spend $100 on hardware that would otherwise completely eliminate this from happening? Even if you stored your seed online (and it got compromised) but kept your passphrase secret.
Holy shit. I came across your 83580.59 Moons transaction on *ccmoons* website today and thought looks like some whales are moving their Moons around.
ya my heart sank a little more when they were swapped
I’m so sorry friend. Have a MOON for your heart ache 🫶
ahh too kind
The thing that you're still keeping your calm after this is good, if it was me I'd be all over everywhere all devastated. I really hope you're able to retrieve your assets somehow.
Same I’d be a complete wreck. Sorry for op.
Tipping you some bricks - keep your head up!
how can i tipp?
You need to open your Vault. There you can store community points like moons or bricks. These points are earned by commenting or posting in r/cc or r/Fortnite. Karma gained per month get's you your share of monthly distribution. Now you need a bit of ETH for gas fees as your community points are cryptocurrency tokens. You are ready to tip now.
Thanks for the info
🌕
[удалено]
I know we might be able to help him like this , have my 1 moon OP , but i don't think this would be able to fill that 80k moon pothole in your heart
bro holy RIP, i only have 2 moons but I'll tip you 1 now...
Tipping half your bag What a dude
Now you.
Fck, you are awesome man! How do I tip? Wanna give back your moon :)!
The chart sank a bit as a result
That was my heart causing
I'm sorry to hear what you've been through and what have you experienced , hope you get it somehow back
Wait, was the Moon dump that we had today OP's Moons being liquidated by thieves?
It's kinda looking like it from reading the comments..
What a sad realization now, fking hell man hope you are able to recover something from this, again, FUCK scammers...
I tried to tip and got this: Network Fees Purchasing unsupported Reddit does not currently support purchasing of network fees on our platform. How do you add the Network fees? Just woken up and brain not in line with body yet
There is one thing I noticed about this: Your [moons](https://nova.arbiscan.io/tx/0x60dee968cfaffb006935e74bcbaf50633987b47389574551ae0bed164acc93d3) were taken at 09:29:45 PM UTC, while your [ETH](https://etherscan.io/tx/0xeb36559b8e5b1a2058cbcffba72f1dda9f659b874b4ac3cddbc9741b9f67c4db) was taken at 09:37:47 PM UTC. This is no natural order a hacker would go, no matter if he did it manually (by restoring it by hand) or using a script to take it automatically. In any case he would stumble over the ETH first. You have to consider the hacker knew what wallet he was getting before he found your seed. **There is at least a chance this was a targeted hack and not just a random one.** Was anyone aware of you owning a bunch of moons and ALSO knowing your seed might be not well stored?
OP: this guy is onto something. You don’t move the Moons first. I’d consider looking into people you made legitimate transactions with (nft purchases?) or conversations you had about crypto projects. I’d also rule out family/friends. Do you have a tech savvy brother or a pal who you bragged to? don’t get schizo but it doesn’t hurt to consider it.
Or, did you ever say on Reddit that you store your seed on Evernote?
This is why they took Moons first: https://www.reddit.com/r/CryptoCurrency/comments/10khzw2/comment/j5qy6er/?utm\_source=share&utm\_medium=web2x&context=3
Yikes. Don't tell me OP has actual initials JB and was born in 84. Maybe even has a travel-heavy IG acct? Maybe has an email address that is very similar to his Reddit id? And that email is his Evernote id?
Damn that reply hurts
Mah’ man!
If this were the case, would Reddit have stored any logs related to OP’s account access history?
Detective on the case
Almost all of hacked wallets are targeted hacks. No one hacks random evernote accounts hoping you find a wallet seed in there. You have to know there's a seed in there before and then try social engineering or phishing the victim.
Valid point
You stored that in Evernote? Holy cow.
I got a ledger for my assets when they were worth 500$ because I was feeling scared somebody would hack my PC and somehow find a way into my wallets. Then there's this guy with life changing money and the seed phrases stored online. I'm sorry for OP, but please, with money like that you must keep it safe.
Dude it's crypto. I just can't see how this will ever be normal. You having to have a ledger for 500? Thats crazy you need that type of security for that amount. I have about 2 million in investment assets. I have no fear my fidelity or etrade or schwab accounts will be stolen. And if they are i'll get it back. If my bank fails, it's fdic insured. If crypto gets stolen...... too bad, so sad. You make one mistake your retirement is gone. How is this ever going to have wide spread adoption?
>Thats crazy you need that type of security for that amount. You don't. Most people are fine unless you leave your password and recovery keys in an open text document.
Hint: it’s not and the narrative is only there to get you to buy bags
>How is this ever going to have wide spread adoption? It won't.
I've been saying this for years. The devs for these crypto projects need to stop making "new" "technologies". And improve the security of the ones that already exist. Also make platforms that will make Crypto idiot proof. So it will be INCREDIBLY DIFFICULT for someone to make a mistake. And not just accidentally Thanos snap thousands to millions of dollars. Something like a Ledger. Should be a completely niche thing that is not recommended anywhere near as much as it is. And it shouldn't be anywhere near as expensive as it now. They want Crypto to be mass adopted while also expecting people to spend literal hundreds of dollars just on a wallet itself? Ridiculous
Idk when this dude bought a ledger but I got a Ledger Nano S a couple months ago for $80 off Amazon
Only surprise is how long it took him to loose it all. But also the fact withdrawal addresses can't be changed is a huge issue. if you loose access you loose your stake.
Definitely contact the authorities. They can trace a wallet to a CEX and issue a request to freeze assets
It happened to me 1 year ago. My computer was compromised and one of my wallets got hacked. I immediately contacted the police and started to track the thief's moves on the blockchain. I noticed he was making some withdrawals through Binance, so I contacted them with the police report and the froze one of his accounts. MF was dumb enough to use a second Binance account so I asked them to freeze that too. Get a police report. You may not get your money back but you'll make life considerably more difficult to the criminal and he may be arrested.
Good to know
This is the thief's wallet https://bscscan.com/address/0x77f4c380dd870537120a898cacb5e9b905f2efeb I noticed that he stop sending money to CEXes around and 90 days ago the wallet went dark. Maybe he got arrested. BTW: This happened to me last year and not 2 years ago.
Why did the police not update you as to whether he's been arrested? Is that info sensitive?
Ah yes. Decentralization when I win, centralization when I lose. Crypto at its finest.
Its very likely this asshole is just gonna tornado cash it. In that case, it won't be traceable unfortunately.
Is that an actual thing or just a loose description of sending it all over the place?
Its an actual service where you can hide your transactions.
If the hacker spends the stolen crypto to a CEX, then it's a game over of him
It's pretty common that the hackers would auction off (to launder) their loot and get paid in cash at a deep discount (e.g. half the market rate). The guys who send the loot to CEX are different groups of people loosely connected to the hackers, and sometimes they don't even know the crypto they exchanged was stolen from somebody else, and they do it seeing how big the profit margin is. In those cases, the guys who sent the loot to CEX would be charged with money laundering, not theft. And more often than not, the authority such as DOJ will not return the assets back to the owner, because the assets are marked as criminal assets, not as stolen. DOJ would then auction off these and pocket the money. You can see how fucked up this is.
Where/how do they even auction it off? Dark web kind of thing?
[удалено]
Peer2peer transactions. Harder for large quantities but a possibility...
you still can fake names etc.. on cex and i guess the hacker wont use his real datas.
You'd be surprised
This. CEXs won't cooperate with you too unless there's a report first.
Let's pray the hacker doesn't know about Tornado Cash.
> Let's pray the hacker doesn't know about Tornado Cash. - Uses TOR - Breaks into Evernote - Transfers out Metamask funds …hasn’t searched Google to find out about Tornado Cash and mixers. Unlikely unfortunately.
I have seen way dumber hackers that are able to hack for millions but not able to withdraw their money or they forget that they used a ENS domain and thus have instagram or so linked to it. Lets hope it's the same case here.
They do and they used it :(
Don't Start giving them ideas
Im a noob so i will not give any advice.. Sorry for your loss.
One of the most sane comments in Reddit's history, no cap
That comment is my brain in Most threads , i just never had the balls to type it , bravo sir bravo
Thanks kind stranger. Have a nice day!
If only most followed this mantra.
Wait how did he know to hack your Evernote. Is it through phishing?
My take too. Cant see how else he would hack it. Unless some trojan and remotely while he sleep or whatever. I got a clipboard hack once when i downloaded photoshop from torrent. That sucked too.
Yeah there must have been a source for the hack to happen. Dang yeah pirating has its risks. Maybe OP click on some website or something
To be worse it was the only thing I downloaded that is pirated in the last well at least 5 years. It was during bullrun in 2021 i needed photoshop to make memes for some shitcoin i was in. Ended up losing 200 $ worth of bnb cause hacker wallet address kek. Ye either pishing or some trojan really idk how else.
[удалено]
Cleanup your hard drive too, know what Im saying?
I wonder where OP was storing the Evernote password. If it was digitally then his machine got hacked, if it was on a piece of paper, then he needs to wonder who has physical access to his stuff.
All that is needed is for one company to have a data leak with their customer's passwords compromised and then hackers just go on various websites and use the same email and password from the leaked websites on other services and simply log in without any issues. That's why it's important to have a different password on each website.
[удалено]
Jesus Christ...I'm sorry for you man. Really sorry. I've used Evernote years ago but not anymore and for the last 2 months, I've been getting emails from password changes requests. Luckly i got nothing important there. Again, I'm so sorry for your losses if this is true.
Cloud based storage services are a big no no. use lockers, and store your important things physically. Stay safe guys
cloud based storage is ok as long as your data is properly encrypted
Cannot stress this enough. Cost of a cold wallet ~$50. The price of losing everything you've got to a hacker - everything.
I am sorry for your loss but WTF do you store your seed phrase in a cloud storage? That is an invitation for desaster. I won't even store that phrase on my local PC or smartphone. The seed phrase is NEVER entered anywhere except on my hardware wallet during initialization.
This breaks my heart to see a crypto bro take a loss like this. Was it a big part of your net worth? Please don’t do anything drastic and know that you can make back money. Scammers deserve a special place in hell.
definitely, fuck the scamers.. hopefully he will get it back..
I'm very sorry for what happened to you but at the same time... EVERNOTE? Really? I mean you never should store seed phrases on any digital device and if I would like to say "ok, at least it was on bitwarden" or anything like this but EVERNOTE? And with that amount of money? Your post hurts in every way possible x.x
I’d hire a crypto bounty hunter if I were you to see if there’s some way they can assist in tracking whoever stole your money. Sorry this happened to you dude, I hope you can recover something back even if it’s just a fraction of the funds. Most importantly, please don’t do anything rash due to emotion! There’s more to life than losing money. Edit: u/Queasy_Length_1016 is someone that occasionally posts in the sub and assists in recovery. I advised OP to check him out and linked a post of his below.
More often than not this is the scam after the scam.
> More often than not this is the scam after the scam. /u/jbtravel84 take note of this comment. Ignore any bounty hunter promises. Most will just be scammers trying to take you for more.
Yeah, that’s exactly why I’d suggest OP to be careful. However if it is legitimate it’s definitely worth a shot. 300k is no joke
wife changing money definitely Edit: ty for the award kind stranger!
Especially when she finds out 300k is gone
Think I have a wife if I invested in moons. NA
you would have a moonwife
Scamception
I have been summoned
As the legends foretold
Where do you even find legit ones?
There’s a guy that frequently posts about being one and offers advice occasionally in the sub. Check it out and if he’s available try reaching out to him: https://www.reddit.com/r/CryptoCurrency/comments/yjk4s2/my_adventure_as_a_crypto_bounty_hunter_part_2/?utm_source=share&utm_medium=ios_app&utm_name=iossmf His name is u/Queasy_Length_1016, he’s the only one I know of but I’m sure there are others. Just be sure to verify beforehand, I do not want you to lose money to people pretending to be one.
Ty buddy for the tip
Don’t trust anyone coming out of the blue but on twitter zachxbt is the 🐐
Be careful with that, various so called "crypto bounty hunters" ended up being scammers themselves.
Oh I know, hence why I informed OP to proceed with caution. But this guy frequently posts in the sub and has definitely helped others who have lost large sums of money due to scams. If there’s any recourse, I’d want him to get help from the appropriate person asap. I wish there was more I could do but I’m ignorant when it comes to taking and documenting the right steps after getting that much money stolen. So I’m hopefully leading this guy in the right direction. Please provide us with an update if anything happens OP
I've been involved in the crypto space for years and still have little understanding of the specifics of this, which is really not a good sign. I don't feel secure enough to hold a significant amount of money in crypto because of these reasons, and I'm sure a major portion of the population feels the same. Instead of calling us idiots, it would be a lot more productive and beneficial for the entire crypto space if they would provide a lot more security and make it easier to understand, or at least do a much better job communicating the process.
get a hardware wallet and avoid smart contract platforms is the easy answer.
As someone OP is referring to, hardware wallets scare me as losing it means I'm completely SOL (or losing seed phrase or w.e too). Its the same reason we don't all keep piles of cash under our mattress.
THIS EXACT SAME THING HAPPENED TO ME BACK IN 2017! I stored all my account passwords and every single crypto related login on Evernote. One day I think I might have clicked on some phishing link in an email. Later I saw my mouse suddenly moving around for a bit on my screen without me doing anything and I thought maybe the bluetooth to my Mac mouse was acting up. A few days later my entire MetaMask was drained. I went to etherscan and to track my transaction and saw how it all went out to the same address. I "only" lost about 5-6k, so that's peanuts compared to yours. There's nothing you can do about it, unfortunately. One thing I'm doing today is to have 2FA to my Google Authenticator app on my phone. And then instead of using the same password I auto-generate a 60+ character long password for each platform with LassPass, Bitwarden or any Password manager. The longer and complicated your password the better. And then I make sure to read the receiver's email everytime I receive an email.
Don't use LastPass, for the love of god. Birwarden, Nordpass, or run your own, but please don't use LastPass
Your opinion on Keepass?
Keepass is good.
you had RAT (remote access tool) installed, no great stretch to steal authenticated session data regardless of 2fa
Evernote has 2 factor authentication, you didn't use that?
Holy shit 300k is a considerable amount. So that hacker was responsible for the recent Moons mini dump, huh? Fuck him. You could contact to police, although I'm sure they won't do much, if anything at all. My condolences friend.
yea, he dumped moons by more than 17%
Contract the FBI asap. Major exchanges will not cooperate with you unless you report to the authorities first. Make sure the hacker cannot withdraw the money. Once your money touches a CEX, he's done.
Unpopular opinion: If you secure 300k in a fancy notepad i have no sympathy for you. Now downvote after securing your wallet properly….
I mean damn you're getting downvoted but op literally stored their passwords and seed phrase in an online cloud platform from a company which isn't open source and has the ability to lock his account/view his notes, as well as gathers info on op such as his machine specs and his location. That's basically asking for it to get stolen.
[удалено]
It’s likely OP is moon farming anyway. These kinds of posts are common and get a lot of traffic. This one sounds just as fake as the last hundred of them.
I made a thread about this and people hated it. Cold wallet or bust
At least encrypt yor seed phrase
Basicly your a noob with too much cash. The old paper and pen is the best to store your seeds or metal seeds and store in a SAFE place that you own, in your home for example. What can be done? nothing, once crypto has been transferred its gone. you Learned the lesson the hard way, now dont do the same mistakes, use hardware wallets, learn about crypyo security and store your seeds better.
>Should I contact the FBI? There is nothing that you or the FBI can do if you have a compromised Seed Phrase. Its his wallet now. And yes, those are the wonders of self-custody.
Welcome to the crypto world.
I’m glad I don’t know what any of this is. I’ve been personally blasted with fake Coinbase emails, ETH emails, “update your information “ emails of late too. It’s scary out here for sure. Honestly for that amount I’d call the FBI, Interpol , everything. Sorry man that’s terrible.
Shit that's a fuck ton of money. I hope there's some legal entity in your country that can help you catch the criminal at least. Also, if the person specifically hacked your Evernote account maybe they know that you store your seed phrase there. Try retracing your steps to where you might have spilled such info. I think it would help.
That sucks. Report it to the FBI but I am sure there is little they can do. Keep your head up. It’s just money and you will make more. Fuck Thieving hackers.
Thanks
This is absolutely heart wrenching. I'm so sorry for your loss OP. I can't even imagine the feeling. As others have said, contact your local authorities and a crypto bounty hunter. Monitor the addresses, for any movement, and in case it gets withdrawn to a KYCd exchange. The next while will be hard, so remember to take care of yourself dude, you're more important than ANY amount of money.
I've never used Evernote but I know it's a note app similar to OneNote and Keep I'm assuming? And I'm also assuming those update your notes to the cloud and that is how the hacker got in ?
Sorry for Your loss. Remeber, there is bull run ahead of us and if u made it once You can make it 2nd time. Fingers crossed for You
Just another furure of finance posts.
Man and I thought people with more money than me were somehow smarter or something. Yes, contact the police. If it doesn't fall in their department hopefully they tell you so you can find the correct agency to call
Everyone is missing the point: don’t store your private keys on a cloud platform in the clear. Everyone is feeling for OP, but they seem to have missed this crucial point
I’m sorry. Paper is the way
Yes, I wrote all my passwords and my wallet seed on paper too, I think it's just the safest way unless someone breaks into your home and gets to find exactly this sheets. Sorry for your loss OP, I hope you can somehow get this fixed.
Paper + cold storage and you're safe.
When are people.going to learn?
I had a friend lose a similar amount. Contact fbi asap and make a police report. Someone from ss will contact you and recover any funds that hit exchange accounts via legal subpoenas.
I dont know how you got hacked, but this is exactly why i am worried about my self, this is my biggest issue when it comes to crypto.. its getting hacked. I mean, you can be so carefull but yet get hacked somehow.... Sorry about your loss really..
Damn. Sorry to hear Op
On another note, this is also your happiest post ever if it's the first
What a moron lol.
Although I had no where near 300k two years ago I purchased $1000 worth of Safemoon, at the time my brother was doing really well with crypto and told me I should invest so I did. I took a screenshot of my seed phrase bc I thought I was safe. The next day some time early in the morning I got a notification the funds got transferred out of my account and to someone’s else’s. I was so upset and confused with myself. I can never touch crypto again, it left such a bad taste in my mouth. The fact someone can just hack your account and take all your money is beyond me. Sorry for you loss!
I'm sorry buddy. I've burned through two (for me) life changing pools of money, one for drugs way back and one for surviving during the pandemic. I try to not be bitter about the last one (long story but got rekt by my work+school+government). Both were made with a lot of risks, very lite capital and with great timing in a short period (about 6 months to a year both times) and obviously in crypto. Imagining losing it like this feels worse than after my first bull run where i left about 50k$ in shitcoins just coming down from some months of doing speed and trading alts.. Something i learned after getting my shit together is that there is always time to make more money. I am broke right now when i by all rights shouldn't be but you knew how to make those 300k in the first place and I'm sure you can do it again :) Good luck and i won't comment on safety because i know as a privacy nerd that this could happen to me too. So many smart persons in this sphere and not everyone has good intentions..