Just lost everything biz

Just lost 70k link, 50k req, and 18k amb. I was using a ledger nano s with MEW. Hadn't logged in for three months but decided to check today and it was all gone. I thought I did everything by the book and was as safe as possible. I still have no idea how someone was able to take it. Worst part is that I can still see it sitting in someone else's wallet. I'm basically fucked, right?

Attached: proxy.duckduckgo.jpg (474x461, 22K)

Other urls found in this thread:

ethplorer.io/address/0x96bc378d121aa6fca97a279be8e593e7b0c6c419
ledger.fr/2018/01/12/scam-second-hand-ledger-device/
ethplorer.io/address/0x94d7a351bda4eb2ff89eae89d05e68c326e954da
arstechnica.com/information-technology/2018/03/a-tamper-proof-currency-wallet-just-got-trivially-backdoored-by-a-15-year-old/?amp=1
kb.myetherwallet.com/offline/making-offline-transaction-on-myetherwallet.html
support.ledgerwallet.com/hc/en-us/articles/360002731113-How-to-update-the-Ledger-Nano-S-firmware
metamask.io/
twitter.com/AnonBabble

how..?

holy shit, how the fk, can u post the wallet?

Attached: 1525361027403.png (500x357, 209K)

You might have used the compromised MEW. There were two hacks if I remember correctly.

probably fill for a phishing scam at some point. check your internet history for fake mew sites.

That shit doesn't just happen. You must've fucked up

>Just lost 70k link, 50k req, and 18k amb

larper, even if it is true. you are holding shitcoins. think that they still in your ledger, check prices eoy. all three would be zero or exit scam. techinically you didnt lost anything. just pretend that you still have in ledger. be happy.

Fuck that liar. Ledger Nano S require manual intervention for every transaction.

Tfw always been comfy on exchanges since 2012

ledger.fr/2018/01/12/scam-second-hand-ledger-device/

Tell me you didn’t fall for this user.

Of course not, you larpy fuck. That would eliminate the purpose of the ledger.

No, if someone found a ledger vulnerability they'd be going after bigger fish than you. Did you confirm a transaction around that time without checking the token, amount and address? Possibly a compromised MEW changed the transaction to send everything out, and you didn't check before confirming. You wouldn't see it in your history, MEWs DNS servers were compromised a couple of weeks ago, anyone who used it in a three hour window got their keys stolen. A ledger should keep you safe though, and there's been no other reports of altered ledger transactions.

reminder that you could just leave your funds on binance and not have this problem

What are the exact dates you've accessed MEW? You probably check mew when DNS poisening occurred.

>MEWs DNS servers were compromised a couple of weeks ago, anyone who used it in a three hour window got their keys stolen
Only some servers were compromised. Anyway, you should always double check displayed address on the Ledger.

Oh, it can't be the MEW dns thing because this happened in february. Your seed words must have been compromised. Have you ever typed your seed words into a computer for any reason? Is there anyone who could have read that notebook?

funds are safe

Why would you need to "log in" to check your coins?
All you need is your wallet address

>buying erc20 shitcoins
You deserve it.

Anyway, OP says he didn't transfer anything from his Ledger, so MEW hack is ruled out. The only possibility left is that someone got a hold of his seed or OP is larping, in which case 7/10. Not bad.

Post the wallet addresses, otherwise you're a liar.

And if this did happen, where did you buy your Nano from?

>Post the wallet addresses, otherwise you're a liar.
How would him posting his wallet addresses prove he's not a liar, you fucking brainlet?

I typed them into a word doc on my computer when I was setting up accounts probably 6 months ago. Transferred the word doc to a USB. Then deleted the documents. No one read the notebook as I kept that secure. My USB was secure as well.

He says he hasn't logged in for three months. Pretty straightforward you literal retard.

Not possible unless someone physically had your ledger.

>secure
That's not how you spell compromised.

Attached: smugdoka.jpg (250x250, 6K)

Are you unironically retarded? What does it matter what he says about when he logged the last time?

I think this is where you fucked up.

Key logger could of easily gotten that.
Why store it on the computer where it's not safe....

My link address - ethplorer.io/address/0x94d7a351bda4eb2ff89eae89d05e68c326e954da
Bought my Ledger off Amazon from the Ledger vendor.

Or the seed phrase. Which is why you write it down and keep it safe, not store it digitally.

Next time look into shit like veracrypt if you’re going to do stuff like this

Perhaps that was the fatal error but regardless, they would still need access to my ledger in order to steal the funds wouldn't they?

There’s your problem

Doesn’t matter. When it’s typed into a computer it’s already compromised.

Not if they have the seed phrase, obviously.

Did you buy it from the producer? If not, see

No. Only need the seed that’s why you’re supposed to write it down instead of entering it in a computer which defects its purpose.

>Not buying direct from Ledger website

Sorry user this is where you fucked up

Well obviously but it’s better than nothing

Not even OP is dumb enough to use a Ledger with already generated seed. Probably.
No, he didn't you brainlet. Ledger's hardware cannot be tampered with. And if someone is retarded enough to use a pre-generated seed then good riddance. Hopefully they won't procreate.
Not really.

On a non airgapped computer you are right

are you the guy that bought a ledger nano used from ebay?

Bought mine second hand, reset it twice and it's all been good. They're tamperproof.

Don't worry your coins just got burnt as part REQ's token burn. So what you lost your coin if it was for the good of the network.

Well, thanks all for helping me realize how much of a fucking brainlet I am. Fucking wrecked.

Was the computer connected to the internet at the time or any time after? When you deleted the document, did you use a secure delete tool or just select delete? Modern operating systems don't actually delete the file, they just delete the pointer to the file. The actual data remains on disk unless deliberately overwritten.
>>Everyone saying don't buy second hand ledgers
Ledgers are cryptographically attested, they can't be tampered with unless you have a budget of tens of millions and an electron microscope.

Whats the total USD loss?

Wait you didn't seriously get one with a seed and use it did you? Please tell me you didn't do this.

This Binance is all you need
Even though op is larping anyone that spends 200 on a stupid usb Stick that actually stops you from making trades is a brainlet

Leave it on Binance, comfy as fuck. Funds are confirmed safe
And on top of that , whenever I see one of my 5 coins pump I sell and put a low buy order in. Within days my buy in is 90 percent of the time hit.

Get on my fucking level ledger plebs, grow some balls. This is a market of risk after all, if the .001 percent chance that my exchange gets hacked. So be it

No they are not

this is why I only use binance

ledger and mew are too creepy and weird for me

No. Bad security that you don't know of is worse than no security when you're aware of it.

Because of risk compensation, when you think you are secure you automatically take more risks (e.g. caring less about the firewall/antivirus etc.).

They aren't immune to malicious maid attacks. The pre 1.41 security model was "no one could possibly use so few kilobytes to execute an attack". Restricting wallets to a range of ~ 1000 key/address possibilities was doable. It'd be extremely difficult to detect.

Ledgers should be bought from official sellers.

arstechnica.com/information-technology/2018/03/a-tamper-proof-currency-wallet-just-got-trivially-backdoored-by-a-15-year-old/?amp=1

>This decentralised trustless tech is great!
>Now, to use it in a centralised and trusted manner!
Try not to be too mad when they exit scam.

this is amazing
how are they still being sold with no fix?

Sure, but how do you securely send the transaction from the airgapped computer? USB? You'd have to throw it away after every transaction (yes, viruses can in theory survive reformatting). Not to mention the USB can be compromised out of the store. The only safe way I can think of is using a floppy disk and erasing it with a strong magnet after every transaction.

This. If I had the IQ of a toaster like many in crypto do, I'd trust my funds are safe to a big headed chink

Attached: cz.jpg (960x540, 44K)

So even an airgapped computer with veracrypt?

So, what did you realise you did? Used a pre-genned seed?

They fixed it immediately after. Dyor before making conclusions like a typical Jow Forumstard.

I'm pretty sure the patched it out now. Still fucking spooky

kb.myetherwallet.com/offline/making-offline-transaction-on-myetherwallet.html

look at that cranial capacity
that's who you want protecting your funds

OP tell us what you did you brainlet

Yea they really are gonna exit scam
Even tho the CEO puts him self everywhere
Goes to all types of conferences, was on the news etc

Someone planning an exit scam would be wayy off the grid. They know there would be a hit put on them in a second. Especially with the mega whales on Binance. Kys for baiting me

That should be fine, if it's set up correctly. Fairly inconvenient though.

Nothing is secure dummy
Just cause you paid some fuck money for a bunch of plastic doesn’t mean diddly

This is just sad, sorry bro.

QR code

I agree but I’m a hodl meme 90% lol. The rest is in a ledger. If it’s inconvenient for me who knows how to all the necessary passwords and such, I think it would be a little too much for someone who doesn’t. But if you have any other recommendations I’m all ears

>Several billion dollars could not possibly buy a new life, new identity, and escape from all the butthurt Jow Forumsraelis

What about my post do you not understand? You have to get the transaction into your online computer somehow. Are you going to manually type it down?

Did you buy your LNS straight from manufacturer?

Hmm, let's just hope the guy I bought from on eBay wasn't clever enough to do such a thing. Anyway to check?

QR codes aren't 100% reliable.

did he ever confirm what he did wrong?

No, because he's larping. Fun thread nonetheless.

How common are key loggers and how would one get installed on your computer?

you werent gonna make it anyways with that shitty ass portfolio. you didn't lose anything dude

For hodling a paper wallet is best (and easier to secure than a whole PC). You only need all this crap for transactions.

Damn that sucks.. Hope you're ok.

I mean there’s always a way around every security measure. I just use usb’s But I get them for free and only use the air gapped stuff long holds. Another user said something about a qs code but have never done that as I’m ok with my set up.

Update to the patched firmware
support.ledgerwallet.com/hc/en-us/articles/360002731113-How-to-update-the-Ledger-Nano-S-firmware
If the update works, the old firmware was verified and you were never affected. Also it patches the bug.
If it doesn't update, that doesn't mean you were compromised! It's probably just being awkward. Reset and try again.
He typed his seed into a computer brainlets, read the thread.
Sometimes they don't scan, but they're not going to give corrupted data. And if they do, just try again, there's nothing sensitive about a signed transaction.
Alarmingly common, he probably got a virus.

True but it’s entertaining setting up all these different schemes

Your USBs are potentially compromised and should be treated as such.

What do you mean? That private key data could somehow leak out through them? Or that they sometimes fail to scan?

Neither is a problem in this scenario, where you control both the display and reader device. Because you can check the data, and the checksum would ensure that it either works right or not at all.

Just use MetaMask.

metamask.io/

Attached: metamask.png (400x400, 37K)

I keep all my passwords in an excel file.
How fucked am I?