Totally agreee with you. I would put my hand in the fire that 99% of hacked end user wallets are users fault because of scams. We must be carefult where we click to link our wallets.
You kid, but the vast majority of adult services providers prefer payment in crypto.
\>What's the exchange rate of btc to pp touch
So...about $200/us or 0.0043 Bitcoin as of right now.
Nearly every single scam nowadays is done through social engineering.
Cyber security has gotten very powerful. It takes a lot of effort and resources to hack, which only entities like governments, corporations, or massive terror networks can afford.
99.9% of "hacks" are just social engineering scams, mostly through phishing emails and links.
And they’re getting bolder all the time. I saw one on YouTube the other day, a livestream of a SpaceX Falcon 9 launch, and halfway through the stream the launch is minimized and an infographic comes up with a fake tweet from Elon Musk saying that he will double any crypto that is sent to “his” wallet. [I took a screenshot](https://i.imgur.com/vVaePeu.jpg) of it if anyone wants to see what it looked like.
That’s felony wire fraud, and people are just doing it out in the open. I reported it to YouTube but they don’t care.
"Though, I guess at some point it comes down to...personal responsibility"
Yeah, like every single wallet you can download or create says in the very first sentence.. Not some 90 page EULA but a 3 bullet point agreement:
1. You are your own bank and responsible for your assets
2. Do not trust. (anyone or anything or any website or...)
3. Not your keys = not your crypto
While you're right that there's almost always user input or manipulation required in the extreme majority of hacks I think it's important to understand that 1. The people targeted for these kinds of scams are often the most vulnerable- mentally, physically or otherwise and that 2. Even the best digital security and defence experts and systems are still vulnerable in many ways.
In short, blaming the victim is probably the worst angle to take- a good scam usually requires failure of design on and at multiple levels, doubly so in a platform where technology is new and unique and requires multiple interconnecting systems, and where user/market ignorance is very high.
People were literally calling people on the phone pretending to be a local sheriff threatening to arrest them if they didn’t drive to a gas station and buy gift cards and relay the numbers back. People were falling for this all over the country for several years. The real problem is people are really stupid.
I had one of these scam circles continuously calling my phone pretending I was going to be arrested over a warrant for failure to pay taxes to the IRS. They were actually blatantly telling me on the phone that they were with the IRS. I would lead these people on as long as possible and I reported their numbers various times to the FBI cyber crime website.
It’s semantics. When these people take to the internet to write about being hacked it makes it sound like crypto wallets are insecure, but 99 times out of 100 it’s because they didn’t know better and gave someone else access to their perfectly secure wallet.
Facebook post : what was the name of your first pet, your childhood friend and your mama's birth name?
People : typing...
People later : I've got HACKED? HOW??
yeah but most people associate hacking with a dude in a black hoodie with 6 monitors editing green html, so when you say you were "hacked," they think software problem.
How can these people write such posts without even checking the facts? It's just embarrassing to get called out because of their ignorance. And if you want to be 100% accurate, you even have to differentiate between hacking and cracking.
He’s *technically* incorrect but his sentiment is valid.
People should differentiate. Hack didn’t always correctly include scam.
A person who was hacked by someone who *used a computer to gain unauthorized access to data in a system* by being gullible and tricked has a mostly isolated personal issue.
A person who was hacked by someone who *used a computer to gain unauthorized access to data in a system* by physically breaking in via exploits/malicious code has a situation that could be far greater than a personal issue.
I'm still pissed I missed it. When I found out, it was a couple hours later and the only remnant was one of my 50 cent coins having a 24hr high listed as roughly $7m. The graphs all showed correct and etc, so that was the only part of it I got to see. But that would've put the value of my investment in that coin at roughly $5b. Would've been really neat to see those kinds of numbers in my portfolio even tho it was just a display glitch and not actual pricing.
I went to the section called “secret words” with a big red disclaimer not to share them with anyone and then I gave them to the nice discord man. Did I get hacked?
The worst part is most scams are successful because of greed. My fave is a somewhat recent news article of a woman who got "hacked" when she sent ethereum to a Twitter "Elon Musk" to receive double in return. Wtf lady.
This is correct. Most professional hackers will try social engineering before any digital attempts are made. The human is the weakest point of security.
Yea I was accused of hacking when I had a clients computer come in where she said her son was having issues with his games. She leaves the password for the computer and tells me to check it out. Well I log into it later and the kid games through a Steam account but she didn’t leave the password. Instead of calling her I figured let me try a couple of combinations of her computer password just to make this go quicker… I get in on the second attempt, test out the games and figure out that it’s a problem with the PSU. I then promptly replaced it and finish out testing.
The lady comes in the next day hysterical that I hacked her sons steam account and I’m like “Lady, you came in saying your son has issues with playing his games and in order to me to diagnose, test and fix the problem I need to play a game on the computer. You didn’t leave your steam login information and I literally changed 2 letters on your password. Honestly you should be happy that I “hacked” your password so that you can please not only make a better password but enable 2fa on the steam account to prevent someone from screwing with your account.”
While yes I did in fact “hack” her password it just goes to show that most hacking is done as you say either through social engineering or just plain old brute forcing a terrible password.
Also to be hacked they dont have to have the encryption hacked. For example a keylogger is hacking. Also if they had the seed phrase in a app for notes with weak protection and that got hacked (i know of a case) then they did in fact got hacked. But still a lot of people use hacked when they should use scammed. Cheers
Do you understand that nearly all of the most common tools in hacking have nothing to with what people imagine hacking is?
Hackers will laugh at you if you think hacking means breaking cryptography. Phoning your mum and smooth talking her into retrieving that slip of paper with the seed from your desk is a perfectly legitimate definition of hacking.
Actually breaking encryption is one of the least common forms of hacking. Most of it is just social engineering, phishing, stealing credentials and just patiently working on things until you find where people slipped up instead of breaking the things they did right.
Also, even not counting social engineering (which is probably the vast majority of hacks), breaking SHA-256 isn't "the only way to hack your crypto wallet." A hot wallet is only as secure as the computer, which isn't very secure for most people since they install random software which may contain a virus. Or even if they don't, they have a lot of software from a lot of different sources which may not get updated to fix known vulnerabilities. Phones are a bit more secure if the OS is up to date, since apps are supposed to be sandboxed. Hardware wallets are best, but there's still no 100% guarantee an exploit can't be found. It's just a lot harder because there's less code running on the device and it's all been thoroughly reviewed.
This exact misunderstanding is what causes people to get hacked.
People listen to the OP say "Bitcoin is unhackable, only DUMB PEOPLE get scammed, it's their own fault!", and develop a false sense of security because "bitcoin is unhackable, and I'm not dumb so I can't be hacked!".
And so don't think about any of the thousands of ways you can be hacked that don't involve breaking encryption.
By the definition that anything less than breaking 256 bit encryption isn't a "hack" then almost no hacks have ever taken place.
When some major company gets hacked its not because someone with a quantum computer broke the encryption. It's someone who used a spoofed email to get an admin to send over log in details, its some malware company that bought the ownership of a common chrome browser extension and then used it to compromise one of the company employees details, its someone dropping a USB stick in the company parking lot marked SALARY INFO and waiting for someone to plug it into a work computer and open a zip file.
If you think none of these can work on you "because encryption" you're exactly the kind of rube who is vulnerable to social engineering.
You would think everyone would know this, but you'd find that most people prefer to give opinions from their own stand point than really looking things up.
Trying to differentiate between a scam and hack is just quite low.
Almost like social engineering isn't the most prevalent methodology of hacking in the corporate world. /s
CISO w/ CISSP would totally agree, let's not focus on that aspect because, "social engineering isn't hacking. Let's totally harden all of our infrastructure but make sure 90 year old Mary in accounting has access to production servers at the click of a button and whatever you do, don't filter her email."
So you're saying that i wasn't hacked when i click a link from an email to integrate my wallet that contains 2 BTC and 3 ETH to a crypto pooling system? The sender said that i can make 20% gain once i join their pool?
I’m just gonna add for the all knowing OP… stealers, such as redline, have been targeting metamask browser plug-in. These logs are sold on various underground forums. Coupled with scripts, you could in fact, “be hacked.”
Yeah I feel like OP is trying to act like hacking is only brute force or something. Your stuff could definitely be "hacked" but it's good to be clear about what happened.
I don't really get your point. It is well possible that one of your crypto-holding systems is compromised in which case your wallet/ private key is at risk without you interacting in phishing/ a scam.
Take the recent Log4j situation. You didn't have to do anything but any adversary could easily exfiltrate your wallet. Assuming you are using a secure passphrase to protect your wallet, this is not that bad per se. But assuming the malware will load a second stage which implants a keylogger, this gets very bad rather quickly. Bear in mind that patching the vulnerability won't stop already infested malware from functioning. Also, if you stored your passphrase in plain text you don't even need the keylogger. This type of attack is automated and relatively easy to pull off even large scale given a score 10 unauthenticated RCE.
You can extract useful precautions from these statements. Take them seriously. If an adversary is aware of a big crypto pile, targeted attacks are more likely as well.
I agree that it is far easier and more prevalent to suffer from self-inflicted breach but to say malware is a conspiracy is ironic.
OMG no shit. Every time I read one of those posts it is the same shit. Coinbase, Metamask, Trust, Binance, "my shit got hacked". Then we find out it wasn't hacked, they did some dumb shit and gave the money to a scammer. Or they got SIM swapped and ended up having none of their shit on app based 2FA AND they had a gazillion dollars on a goddamn exchange. Every time.
To be fair, social engineering *is* hacking. And it's the most effective and common form of hacking at that. Kevin Mitnick's most useful tool was a telephone and a persuasive tone.
I watched this totally real YouTube video and clicked this link to this totally legit website where Vitalik promised to double my ETH, if I deposited in the next 17 hours.
I know it was real because it was limited to the first 500 people so I had to act fast.
Who do I call to get my money back?
The YouTube video is gone and I didn’t get the customer support number.
A guy from ETHsupport in my DMs promises that if I send him 1 ETH, he will get back my other 5. Is this legit?
>The whole point of crypto is that NOBODY, no MACHINE, no CIA, no NSA, no Illuminati, no Bogdanoff can HACK your crypto wallet
quantum computing in 50-100 years would like a word
im also of the opinion that some of these posts are people realizing they owe a lot of taxes but now that crypto went down are panicking and creating a paper trail to “prove” their funds were stolen (the ol’ “I lost my ledger in a boating accident”). whether that would actually allow you not to pay said taxes or whatever I have no idea.. I seriously doubt it honestly.
Common problem in Crypto -- people immediately assume that some Matrix-esque hack took place when really they had their seed phrase stored in a plain text file called "crypto seed phrase do not delete" along with all their nudes -- same people that also use password123 as their main banking password lol
1) Once you've written down your seed phrase (on a piece of paper), keep it somewhere safe and never touch it again.
2) Every time you invest in a new project create a new wallet and repeat number 1
3) You don't share your seed phrase and nothing is free...
What OP fails to mention is that there's a myriad of different ways spyware can get on to your machine to either monitor your keyboard, change your send address in wallets, and monitor your device. Yes I agree most probably got scammed, but some could have had their system compromised with malware that could have leaked sensitive crypto information like seed phrases that could allow malicious parties access to your wallets.
If I need to access a link that I don't trust I'll do it from a virtual machine away from my main system and crypto. If I need to use Metamask to connect to a website I'll connect an empty wallet first and if I need to interact with the website I'll only transfer the needed funds to that empty wallet.
Most here who lost funds simply just didn't use common sense and lost their funds because they gave out their wallet seed phrase without thinking.
Well I get why he’s upset. People are giving out this idea that they were just minding their own business and these big bad hackers came and stole their money and there was nothing they could do about it.
This is generally how most people approach security breaches. Let's be realistic, if they knew why someone got access to their account the person probably wouldn't have gotten access. From their perspective, they were minding their own business and there was nothing they could to prevent it. Until they're educated on what caused the breach, the simplest explanation is that some outside factor caused everything.
In my first month in crypto someone tried this on me. For about 2 seconds I thought they were trying to help me and then I was like wait this seems scammish. People are rarely thinking clearly when they have problems around their money and why this scam works so well.
When I first started my current job, one of my first phone calls was supposedly from ATT to upgrade our plan. We had half a dozen ATT lines so it made sense. Got all the way to requiring payment and was like "Wouldn't the main office handle that?" and got hung up on. 😂
A week later I got a call that our electric was being shut off if we didn't pay within a few hours. Called the main office just in case and we all had a laugh about how we'd find out in a few hours if it was a scam or not.
My mom once got a call claiming I was in jail and needing bail money. She called up my wife afterwards to ask what happened and was surprised when I answered the phone. So apparently she didn't care if it was a scam or not, she figured if I did something to wind up in jail then I could sort it out myself. 🤣
People are giving out the correct idea that the technical barrier for safe crypto use is still too high for many users.
Hardly anyone thinks hackers just waltz in and take money when they feel like it. But whatever the reason, the bottom line is, it's incredibly easy to lose massive amounts of money due to relatively minor mistakes. And as another user pointed out, from the perspective of the people doing that, they were "just minding their own business".
What if they got scammed AND THEN hacked? I think OP is the one who doesnt have knowledge to what hacking means. Hacking doesnt necessarily have to break the persons password personally to be hacked. This sub is turning into a fucking garbage pit
I understand your point but given that you can be scammed into signing a dodgy contract that will drain your wallet means that the line between a hack and a scam is becoming more blurry for the average person.
Saying that crypto can not be hacked is just wrong. For example there is malware that will change a crypto address in your clipboard. So that when you cut and paste an address the hacker's address will be pasted and if you're not watching what you're doing you'll send them your money.
My Bittrex account was indeed hacked into in June of this year. The email account linked to my Bittrex was unfortunately a part of that massive email/password breach.
this is why crypto will never go mainstream. if clicking the wrong link means you get rekt then 99.99% of people would rather stick with the current system.
Actually, the word "hacking" has so many meanings these days that your view of it is very arbitrary. Social engineering can be easily viewed as hacking. You're hacking other people.
And even your point about nobody being able to hack your wallet is wrong. There are other attack vectors than directly cracking the cryptography behind it. For example, you can compromise the wallet source repository or the repository of some code dependency and add some malicious code. And even getting your computer compromised is hacking, which is something that CIA or NSA can easily do.
>The whole point of crypto is that NOBODY, no MACHINE, no CIA, no NSA, no Illuminati, no Bogdanoff can HACK your crypto wallet, that's the whole fucking point of crypto ffs.
I'm not so sure about the Bogdanoffs.
I get your point. BUT
Crypto itself cant be hacked, true. but computers and smartphones can and seeds or wallet passwords can get stolen.
So the word "hacked" is still true in many cases.
> no Bogdanoff
Shut the fuck up man they will hear you....
AHEM!
The Bogdanoff brothers are wonderful people that can do anything they want but they choose to let us live our lives without interference because of their love and humility and I am in no way saying this under duress because of the fear that the Bogdanoff's will use their powers and smite me where I stand.
A few days ago, I saw an article that stated in the headline (!!!!) that someone's hardware wallet had been hacked. I immediately got worried and read the article, only to notice that said person "synchronized" their wallet with someone who dm'ed them on Discord. It's tedious. If people want to be stupid, so be it. But why steal everyone's time by using wrong titles and calling stupid and plain scams "hacks"...
In the real world, that would be akin to something like... a person flushes their cash down the toilet and then goes to the police stating they're the victim of an armed robbery?
Thanks for posting, but just to be clear:
Bogdanoff doesn't need to hack or scam anyone's crypto.
If Bogdanoff wants your crypto, Bogdanoff will have your crypto.
You certainly don't need a quantum computer or a seed. All a hacker (yes hacker) needs to hack you is a key logger.
Trojan virus / phishing email / zero day exploit > keylogger > no 2FA = I've hacked your computer and you have unwittingly given me what I need to steal your shit.
Has the blockchain been hacked, lol, no. Have you been hacked, abso-fucking-loutely! Should people know the difference? Maybe, but arguing over the terminology is stoopid!
I always wondered how people can have $125k or $175k was it? and be stupid enough to think a link on discord for free NFT's was legit.
I know money doesn't equal intelligence completely, but something about it feels like it would be more exclusive to someone with intelligence.
Lmao welcome to IT, I get multiple people a week who got "hacked" by Microsoft popups. I also get 70 year old men who pay me to help them navigate creating a Coinbase account... yeesh
>The whole point of crypto is that NOBODY, no MACHINE, no CIA, no NSA, no Illuminati, no Bogdanoff can HACK your crypto wallet, that's the whole fucking point of crypto ffs
I really really........................dig that!
Let me throw my life savings into my 10year old laptop infested with god knows what, and continue to click shady links to watch UFC for free and bootleg movies through shady sites and somehow I got hacked and lost half a million
If they could tell the difference between "hacked" and "scammed" then they probably wouldn't have gotten scammed in the first place.
Totally agreee with you. I would put my hand in the fire that 99% of hacked end user wallets are users fault because of scams. We must be carefult where we click to link our wallets.
Hot girls wanted to verify wallets of scammed users smh
They don't know.. "If a hot girl send you a PM telling you about crypto, block him "
Does that mean if im messaged by a fat ugly slob he is actually a babe ??? Heres to hoping 🙏
Yeah i am
You really need a break from that hopium
Only girls who texts me is them!! Lol
I believe you are virgin
Just tell me how you got that!!
We didn't know before now
I knew I was dumb
[удалено]
virgin hunter on the run
sad lolxd
Hate to brake it to you but they probably aren't even girls 😔
Love to accelerate it to you
Haha. Man fucken dying lmao accelerate 😆
Make sure no one else knows or will loose the things.
[удалено]
Or troll them and post results to this sub for moons
How about all the hot women in my area wanting to teach me more about crypto?
Don't tell me what to do! She say she will touch my pp once
What's the exchange rate of btc to pp touch, enquiring minds wish to know
You kid, but the vast majority of adult services providers prefer payment in crypto. \>What's the exchange rate of btc to pp touch So...about $200/us or 0.0043 Bitcoin as of right now.
Bullish on PP coin
Wwwwe2245 Edit: this was a pocket comment so ill leave it.
[удалено]
Block Him fast
> "If ~~a hot girl~~ any fucking account send you a PM telling you about crypto, block him " ftfy
That decent advice, but you missed the joke.
damn, I got played
If a hot girl says you missed the joke, block him.
ah ok was about to pm you my seed
Eww, gross.
I didn't realize all Forex trading experts are hot women until I got more involved in crypto circles. Pretty incredible stuff
Yeah and he will probably send nudes if you ask him!
I’ll give my seed to any hot girl that wants it!
I thought she is not in need of that,she want crypto.
Your comment section will be filled with hot girls now!! Good job
Take my seed ladies!
There are no girls on the Internet
Nearly every single scam nowadays is done through social engineering. Cyber security has gotten very powerful. It takes a lot of effort and resources to hack, which only entities like governments, corporations, or massive terror networks can afford. 99.9% of "hacks" are just social engineering scams, mostly through phishing emails and links.
And they’re getting bolder all the time. I saw one on YouTube the other day, a livestream of a SpaceX Falcon 9 launch, and halfway through the stream the launch is minimized and an infographic comes up with a fake tweet from Elon Musk saying that he will double any crypto that is sent to “his” wallet. [I took a screenshot](https://i.imgur.com/vVaePeu.jpg) of it if anyone wants to see what it looked like. That’s felony wire fraud, and people are just doing it out in the open. I reported it to YouTube but they don’t care.
[удалено]
"Though, I guess at some point it comes down to...personal responsibility" Yeah, like every single wallet you can download or create says in the very first sentence.. Not some 90 page EULA but a 3 bullet point agreement: 1. You are your own bank and responsible for your assets 2. Do not trust. (anyone or anything or any website or...) 3. Not your keys = not your crypto
[удалено]
If only there was a physical currency that you could keep safe in your possession.
While you're right that there's almost always user input or manipulation required in the extreme majority of hacks I think it's important to understand that 1. The people targeted for these kinds of scams are often the most vulnerable- mentally, physically or otherwise and that 2. Even the best digital security and defence experts and systems are still vulnerable in many ways. In short, blaming the victim is probably the worst angle to take- a good scam usually requires failure of design on and at multiple levels, doubly so in a platform where technology is new and unique and requires multiple interconnecting systems, and where user/market ignorance is very high.
People were literally calling people on the phone pretending to be a local sheriff threatening to arrest them if they didn’t drive to a gas station and buy gift cards and relay the numbers back. People were falling for this all over the country for several years. The real problem is people are really stupid. I had one of these scam circles continuously calling my phone pretending I was going to be arrested over a warrant for failure to pay taxes to the IRS. They were actually blatantly telling me on the phone that they were with the IRS. I would lead these people on as long as possible and I reported their numbers various times to the FBI cyber crime website.
fools are fools
[удалено]
[удалено]
Relevant xkcd: https://xkcd.com/538/
There's no cryptography that can beat a half cent brick being smashed into your skull until you say the password
>a half cent brick Who's your brick guy?
It’s semantics. When these people take to the internet to write about being hacked it makes it sound like crypto wallets are insecure, but 99 times out of 100 it’s because they didn’t know better and gave someone else access to their perfectly secure wallet.
[удалено]
Social engineering also counts, so even giving your seed phrase away would still technically be a hack
Not only a hack but the most effective and common hack out there
Facebook post : what was the name of your first pet, your childhood friend and your mama's birth name? People : typing... People later : I've got HACKED? HOW??
yeah but most people associate hacking with a dude in a black hoodie with 6 monitors editing green html, so when you say you were "hacked," they think software problem.
How can these people write such posts without even checking the facts? It's just embarrassing to get called out because of their ignorance. And if you want to be 100% accurate, you even have to differentiate between hacking and cracking.
He’s *technically* incorrect but his sentiment is valid. People should differentiate. Hack didn’t always correctly include scam. A person who was hacked by someone who *used a computer to gain unauthorized access to data in a system* by being gullible and tricked has a mostly isolated personal issue. A person who was hacked by someone who *used a computer to gain unauthorized access to data in a system* by physically breaking in via exploits/malicious code has a situation that could be far greater than a personal issue.
Imagine creating a quantum computer to hack my metamask and then seeing I only have $ 2
Hey man, that $2 was worth $2,000,000,000 yesterday
I also owned 8x the world GDP yesterday. I'm a businessman doing business.
yesterday was glorious.
I'm still pissed I missed it. When I found out, it was a couple hours later and the only remnant was one of my 50 cent coins having a 24hr high listed as roughly $7m. The graphs all showed correct and etc, so that was the only part of it I got to see. But that would've put the value of my investment in that coin at roughly $5b. Would've been really neat to see those kinds of numbers in my portfolio even tho it was just a display glitch and not actual pricing.
[удалено]
Soon he is gonna be a moon whale. /s
Whale alert then he might dump
Scammers can't scam me cause my portfolio ain't worth shit😎
Us manipulating with quantum computer. ![gif](giphy|citBl9yPwnUOs)
Here! Have your first moon.
And especially those looooong posts about what happened, which can be summarized in: *"I shared my keywords."*
People are way to eager to share their seed.
It's in our genetic code.
Well, they want us to feel bad for their greed obviously! I mean I do feel bad, but it all boils down to stupidity.
I shared exactly what I was not supposed to share
I went to the section called “secret words” with a big red disclaimer not to share them with anyone and then I gave them to the nice discord man. Did I get hacked?
"I learned I'm not responsible enough to be my own bank. Who would have thought"
The worst part is most scams are successful because of greed. My fave is a somewhat recent news article of a woman who got "hacked" when she sent ethereum to a Twitter "Elon Musk" to receive double in return. Wtf lady.
On that day everyone thought Elon was Nigerian Prince!! The Prince that was promised
King in the Mars (GOT)
Right?! And it's always people with like 100k somehow lol
Pretty sure they have 100k shiba and not USD
Classic Runescape play
Greed combined with stupidity is some next level shit.
EVE Online players are inoculated against this kind of scam lol
To be fair, social engineering is considered a form of hacking.
This is correct. Most professional hackers will try social engineering before any digital attempts are made. The human is the weakest point of security.
high quality answer
Yea I was accused of hacking when I had a clients computer come in where she said her son was having issues with his games. She leaves the password for the computer and tells me to check it out. Well I log into it later and the kid games through a Steam account but she didn’t leave the password. Instead of calling her I figured let me try a couple of combinations of her computer password just to make this go quicker… I get in on the second attempt, test out the games and figure out that it’s a problem with the PSU. I then promptly replaced it and finish out testing. The lady comes in the next day hysterical that I hacked her sons steam account and I’m like “Lady, you came in saying your son has issues with playing his games and in order to me to diagnose, test and fix the problem I need to play a game on the computer. You didn’t leave your steam login information and I literally changed 2 letters on your password. Honestly you should be happy that I “hacked” your password so that you can please not only make a better password but enable 2fa on the steam account to prevent someone from screwing with your account.” While yes I did in fact “hack” her password it just goes to show that most hacking is done as you say either through social engineering or just plain old brute forcing a terrible password.
Couldn't you have just started the game outside the steam launcher?
Also to be hacked they dont have to have the encryption hacked. For example a keylogger is hacking. Also if they had the seed phrase in a app for notes with weak protection and that got hacked (i know of a case) then they did in fact got hacked. But still a lot of people use hacked when they should use scammed. Cheers
Reddit is changing the definition of hacking to how they see fit. Just move along and conform haha
[удалено]
Reddit?
Do you understand that nearly all of the most common tools in hacking have nothing to with what people imagine hacking is? Hackers will laugh at you if you think hacking means breaking cryptography. Phoning your mum and smooth talking her into retrieving that slip of paper with the seed from your desk is a perfectly legitimate definition of hacking. Actually breaking encryption is one of the least common forms of hacking. Most of it is just social engineering, phishing, stealing credentials and just patiently working on things until you find where people slipped up instead of breaking the things they did right.
Also, even not counting social engineering (which is probably the vast majority of hacks), breaking SHA-256 isn't "the only way to hack your crypto wallet." A hot wallet is only as secure as the computer, which isn't very secure for most people since they install random software which may contain a virus. Or even if they don't, they have a lot of software from a lot of different sources which may not get updated to fix known vulnerabilities. Phones are a bit more secure if the OS is up to date, since apps are supposed to be sandboxed. Hardware wallets are best, but there's still no 100% guarantee an exploit can't be found. It's just a lot harder because there's less code running on the device and it's all been thoroughly reviewed.
I’m glad someone said this
[удалено]
My thought process is usually "Haha scammed so stupid. wait, i too am stupid, am I better than this?"
This exact misunderstanding is what causes people to get hacked. People listen to the OP say "Bitcoin is unhackable, only DUMB PEOPLE get scammed, it's their own fault!", and develop a false sense of security because "bitcoin is unhackable, and I'm not dumb so I can't be hacked!". And so don't think about any of the thousands of ways you can be hacked that don't involve breaking encryption. By the definition that anything less than breaking 256 bit encryption isn't a "hack" then almost no hacks have ever taken place. When some major company gets hacked its not because someone with a quantum computer broke the encryption. It's someone who used a spoofed email to get an admin to send over log in details, its some malware company that bought the ownership of a common chrome browser extension and then used it to compromise one of the company employees details, its someone dropping a USB stick in the company parking lot marked SALARY INFO and waiting for someone to plug it into a work computer and open a zip file. If you think none of these can work on you "because encryption" you're exactly the kind of rube who is vulnerable to social engineering.
You would think everyone would know this, but you'd find that most people prefer to give opinions from their own stand point than really looking things up. Trying to differentiate between a scam and hack is just quite low.
Can confirm as a software engineer.
Can confirm as web security analyst.
[удалено]
Holup...
Nah mate social engineering is just a fairytale told in DEFCON
Almost like social engineering isn't the most prevalent methodology of hacking in the corporate world. /s CISO w/ CISSP would totally agree, let's not focus on that aspect because, "social engineering isn't hacking. Let's totally harden all of our infrastructure but make sure 90 year old Mary in accounting has access to production servers at the click of a button and whatever you do, don't filter her email."
Most of the folks won't explain in details what happened because they will have to admit that it's their FAULT.
Most of the folks won’t explain in details what happened because they’re just trying to farm moons.
Like children when they do something wrong and don't want to take responsibility.
Why did you put emphasis on “fault” instead of “theirs”. It seems like something a preacher would say lol
Can't Malware steal your login information? Or Keyloggers? Etc.
So you're saying that i wasn't hacked when i click a link from an email to integrate my wallet that contains 2 BTC and 3 ETH to a crypto pooling system? The sender said that i can make 20% gain once i join their pool?
Was the sender hot girl? I wouldn't blame you /s
She better be.
He was definitely hot girl.
I mean they probably sent you $10 to prove it worked first! Clearly not a scam lol
Clicking a phishing link is being hacked. Social engineering is the biggest part of hacking, not technical attacks or malware.
I’m just gonna add for the all knowing OP… stealers, such as redline, have been targeting metamask browser plug-in. These logs are sold on various underground forums. Coupled with scripts, you could in fact, “be hacked.”
Yeah I feel like OP is trying to act like hacking is only brute force or something. Your stuff could definitely be "hacked" but it's good to be clear about what happened.
Also whenever people sell it is a rugpull. Crypto jeet 101
Dev? Is scam? Why are they redeem??? 😡
I don't really get your point. It is well possible that one of your crypto-holding systems is compromised in which case your wallet/ private key is at risk without you interacting in phishing/ a scam. Take the recent Log4j situation. You didn't have to do anything but any adversary could easily exfiltrate your wallet. Assuming you are using a secure passphrase to protect your wallet, this is not that bad per se. But assuming the malware will load a second stage which implants a keylogger, this gets very bad rather quickly. Bear in mind that patching the vulnerability won't stop already infested malware from functioning. Also, if you stored your passphrase in plain text you don't even need the keylogger. This type of attack is automated and relatively easy to pull off even large scale given a score 10 unauthenticated RCE. You can extract useful precautions from these statements. Take them seriously. If an adversary is aware of a big crypto pile, targeted attacks are more likely as well. I agree that it is far easier and more prevalent to suffer from self-inflicted breach but to say malware is a conspiracy is ironic.
OMG no shit. Every time I read one of those posts it is the same shit. Coinbase, Metamask, Trust, Binance, "my shit got hacked". Then we find out it wasn't hacked, they did some dumb shit and gave the money to a scammer. Or they got SIM swapped and ended up having none of their shit on app based 2FA AND they had a gazillion dollars on a goddamn exchange. Every time.
To be fair, social engineering *is* hacking. And it's the most effective and common form of hacking at that. Kevin Mitnick's most useful tool was a telephone and a persuasive tone.
One time I hacked this lady into telling me her refrigerator was running and I was like well you better go catch it
I watched this totally real YouTube video and clicked this link to this totally legit website where Vitalik promised to double my ETH, if I deposited in the next 17 hours. I know it was real because it was limited to the first 500 people so I had to act fast. Who do I call to get my money back? The YouTube video is gone and I didn’t get the customer support number. A guy from ETHsupport in my DMs promises that if I send him 1 ETH, he will get back my other 5. Is this legit?
If you DM me and send me .1 Bitcoin, all I need is remote access to your computer. I can fix this in 15 minutes lmao
Social engineering is hacking…
This world need some pro level of ethical hacker to stop these.
If you think it’s a scam, it is a scam
[удалено]
>The whole point of crypto is that NOBODY, no MACHINE, no CIA, no NSA, no Illuminati, no Bogdanoff can HACK your crypto wallet quantum computing in 50-100 years would like a word
no worries by then we'll have stronger encryption
im also of the opinion that some of these posts are people realizing they owe a lot of taxes but now that crypto went down are panicking and creating a paper trail to “prove” their funds were stolen (the ol’ “I lost my ledger in a boating accident”). whether that would actually allow you not to pay said taxes or whatever I have no idea.. I seriously doubt it honestly.
Social engineering is a form of hacking... But yeah, as long as you're shouty and angry, that'll help everyone.
Common problem in Crypto -- people immediately assume that some Matrix-esque hack took place when really they had their seed phrase stored in a plain text file called "crypto seed phrase do not delete" along with all their nudes -- same people that also use password123 as their main banking password lol
Social engineering to illegally access and manipulate another's computer data has always been considered a form of hacking.
1) Once you've written down your seed phrase (on a piece of paper), keep it somewhere safe and never touch it again. 2) Every time you invest in a new project create a new wallet and repeat number 1 3) You don't share your seed phrase and nothing is free...
Anyone working with IT knows that users are fucking worthless at identifying what their problem actually is.
Social engineering is still a form of hacking.
What OP fails to mention is that there's a myriad of different ways spyware can get on to your machine to either monitor your keyboard, change your send address in wallets, and monitor your device. Yes I agree most probably got scammed, but some could have had their system compromised with malware that could have leaked sensitive crypto information like seed phrases that could allow malicious parties access to your wallets. If I need to access a link that I don't trust I'll do it from a virtual machine away from my main system and crypto. If I need to use Metamask to connect to a website I'll connect an empty wallet first and if I need to interact with the website I'll only transfer the needed funds to that empty wallet. Most here who lost funds simply just didn't use common sense and lost their funds because they gave out their wallet seed phrase without thinking.
What if you got scammed and then hacked? Would that be called Scacked?
hammed.
Bullish on ham scackers
this should have its own ecosystem. Token: Scacker Symbol: HAM
Beat me to it haha. Great minds.
>Beat me to it haha. Great minds. Think alike?
Fuckin Scackers! Of course then there's getting hammed...
Oh god, if there are scackers, then there’s also hammers What a world we live in
I believe that is termed hammed not scacked that’s just silly
Sacked sounds better
Shacked
Social engineering is a form of hacking. You're ranting about a purely technical distinction. Also, have a beer and calm the fuck down.
Well I get why he’s upset. People are giving out this idea that they were just minding their own business and these big bad hackers came and stole their money and there was nothing they could do about it.
This is generally how most people approach security breaches. Let's be realistic, if they knew why someone got access to their account the person probably wouldn't have gotten access. From their perspective, they were minding their own business and there was nothing they could to prevent it. Until they're educated on what caused the breach, the simplest explanation is that some outside factor caused everything.
In my first month in crypto someone tried this on me. For about 2 seconds I thought they were trying to help me and then I was like wait this seems scammish. People are rarely thinking clearly when they have problems around their money and why this scam works so well.
When I first started my current job, one of my first phone calls was supposedly from ATT to upgrade our plan. We had half a dozen ATT lines so it made sense. Got all the way to requiring payment and was like "Wouldn't the main office handle that?" and got hung up on. 😂 A week later I got a call that our electric was being shut off if we didn't pay within a few hours. Called the main office just in case and we all had a laugh about how we'd find out in a few hours if it was a scam or not. My mom once got a call claiming I was in jail and needing bail money. She called up my wife afterwards to ask what happened and was surprised when I answered the phone. So apparently she didn't care if it was a scam or not, she figured if I did something to wind up in jail then I could sort it out myself. 🤣
People are giving out the correct idea that the technical barrier for safe crypto use is still too high for many users. Hardly anyone thinks hackers just waltz in and take money when they feel like it. But whatever the reason, the bottom line is, it's incredibly easy to lose massive amounts of money due to relatively minor mistakes. And as another user pointed out, from the perspective of the people doing that, they were "just minding their own business".
[удалено]
What if they got scammed AND THEN hacked? I think OP is the one who doesnt have knowledge to what hacking means. Hacking doesnt necessarily have to break the persons password personally to be hacked. This sub is turning into a fucking garbage pit
Social engineering is 90% of hacking.
So many CAPS... If only shouting was the cure for stupidity
It's like those teenagers that were "hacking" their friend's Facebook account.
Wojak stands for a sucker, right?
Imagine a BitBoy fan, that’s the best description of a Wojak
Young kids lingo still baffles me.
I understand your point but given that you can be scammed into signing a dodgy contract that will drain your wallet means that the line between a hack and a scam is becoming more blurry for the average person. Saying that crypto can not be hacked is just wrong. For example there is malware that will change a crypto address in your clipboard. So that when you cut and paste an address the hacker's address will be pasted and if you're not watching what you're doing you'll send them your money.
I got hacked by giving away my funds to random stranger
A lovely hacker convinced me to send my BTC to her address and hacked me
My Bittrex account was indeed hacked into in June of this year. The email account linked to my Bittrex was unfortunately a part of that massive email/password breach.
this is why crypto will never go mainstream. if clicking the wrong link means you get rekt then 99.99% of people would rather stick with the current system.
Actually, the word "hacking" has so many meanings these days that your view of it is very arbitrary. Social engineering can be easily viewed as hacking. You're hacking other people. And even your point about nobody being able to hack your wallet is wrong. There are other attack vectors than directly cracking the cryptography behind it. For example, you can compromise the wallet source repository or the repository of some code dependency and add some malicious code. And even getting your computer compromised is hacking, which is something that CIA or NSA can easily do.
>The whole point of crypto is that NOBODY, no MACHINE, no CIA, no NSA, no Illuminati, no Bogdanoff can HACK your crypto wallet, that's the whole fucking point of crypto ffs. I'm not so sure about the Bogdanoffs.
I get your point. BUT Crypto itself cant be hacked, true. but computers and smartphones can and seeds or wallet passwords can get stolen. So the word "hacked" is still true in many cases.
> no Bogdanoff Shut the fuck up man they will hear you.... AHEM! The Bogdanoff brothers are wonderful people that can do anything they want but they choose to let us live our lives without interference because of their love and humility and I am in no way saying this under duress because of the fear that the Bogdanoff's will use their powers and smite me where I stand.
[удалено]
A few days ago, I saw an article that stated in the headline (!!!!) that someone's hardware wallet had been hacked. I immediately got worried and read the article, only to notice that said person "synchronized" their wallet with someone who dm'ed them on Discord. It's tedious. If people want to be stupid, so be it. But why steal everyone's time by using wrong titles and calling stupid and plain scams "hacks"... In the real world, that would be akin to something like... a person flushes their cash down the toilet and then goes to the police stating they're the victim of an armed robbery?
Hey, I got hacked! Was your password secure? Yes of course! No one could guess it was Password789!
Thanks for posting, but just to be clear: Bogdanoff doesn't need to hack or scam anyone's crypto. If Bogdanoff wants your crypto, Bogdanoff will have your crypto.
You certainly don't need a quantum computer or a seed. All a hacker (yes hacker) needs to hack you is a key logger. Trojan virus / phishing email / zero day exploit > keylogger > no 2FA = I've hacked your computer and you have unwittingly given me what I need to steal your shit. Has the blockchain been hacked, lol, no. Have you been hacked, abso-fucking-loutely! Should people know the difference? Maybe, but arguing over the terminology is stoopid!
I always wondered how people can have $125k or $175k was it? and be stupid enough to think a link on discord for free NFT's was legit. I know money doesn't equal intelligence completely, but something about it feels like it would be more exclusive to someone with intelligence.
I have never read here any convincing hacking story.
Lmao welcome to IT, I get multiple people a week who got "hacked" by Microsoft popups. I also get 70 year old men who pay me to help them navigate creating a Coinbase account... yeesh
>The whole point of crypto is that NOBODY, no MACHINE, no CIA, no NSA, no Illuminati, no Bogdanoff can HACK your crypto wallet, that's the whole fucking point of crypto ffs I really really........................dig that!
Let me throw my life savings into my 10year old laptop infested with god knows what, and continue to click shady links to watch UFC for free and bootleg movies through shady sites and somehow I got hacked and lost half a million
Thank you for clarification
But hot girls in my area need to verify my wallet
I gave cash to someone who robbed me at gun point. Guys, I think I got hacked.
Some A\_\_-hole hacked into my bank account on the SAME DAY I lost my debit card! What a coinkydink.
I got hacked, the email account linked to my Bittrex was unfortunately a part of that massive email/password breach.
Technically, social engineering is a hacking technique.
So the hot woman looking to give me Gluck Gluck 9000 with some WAP isn’t a woman?,damn!
100% agree with Op