Silk Road forums
Discussion => Security => Topic started by: mongol2 on March 16, 2012, 02:45 am
-
So my account at SR got hacked and the hacker managed to reset the pin and withdraw the money from the account.
What's the purpose of withdraw pin if it can be reset so quickly and easily? And how do I protect myself from this in the future?
Any ideas?
-
Keep your coins in your wallet. Don't send them til you're ready to order. Change your passwords frequently.
-
Are you sure you were hacked?
What is the address you are using to access SR? Don't assume that because you end up on the silroad site that the address you are following is not false.
silkroadvb5piz3r.onion
Look at it close. Make sure that is exactly the address you are going to. The hidden wikki is filled with false address links for SR
If you didn't use a fake SR address, what is your best guess as to just how your account got hacked. Keylogger? Roomate?
Was your password sufficient?
-
sorry to hear that
you should not use easy passwords like
topsecrete
mongol2onSR
or in reverse
2lognom2012
get yourself password generator and generate password at least 16 digits long with all possible characters
then never use Windows, use Linux or MAC
-
SuperDimitri, thanks for advice!
klaaat21, yes, I'm using the correct url. I don't know, maybe my password wasn't that strong. It was 7 letters + 3 consecutive numbers. Possibly brute force? It was just really unexpected since I only signed up a week ago and got hacked so fast.
Thanks everyone!
-
SuperDimitri, thanks for advice!
klaaat21, yes, I'm using the correct url. I don't know, maybe my password wasn't that strong. It was 7 letters + 3 consecutive numbers. Possibly brute force? It was just really unexpected since I only signed up a week ago and got hacked so fast.
Thanks everyone!
Yes, that's a very weak password. I wrote a thread on password security that you might find useful. http://dkn255hz262ypmii.onion/index.php?topic=15363.0
-
you account not hacked you log in here 7ibcuoqkz7hi2oim.onion
-
you account not hacked you log in here 7ibcuoqkz7hi2oim.onion
that's not the correct SR address. i'm also guessing that's where your coins have ended up
-
Go to portableapps.com and get keepass portable which is a password manager. Generate a super insane PW. Use different passwords for everything. With Keepass you will not need to keep track of anything but the master password for the program then once logged into keepass you will have all of your PW's organized and saved.
There are many useful programs you can get from portableapps.com look the site over and I'm sure you will be able to find other shit you would very likely use. I use it to run off my trucrypt flash drive that way no matter where I am I have access to all of my shit no matter what.
peace
Bupebuddy
-
you account not hacked you log in here 7ibcuoqkz7hi2oim.onion
Well, that solves that.
-
Wow quite the balls that dick has posting in the SR forum a false SR link.
This is the SR link, go here and only here !!!!!
http://silkroadvb5piz3r.onion/
http://silkroadvb5piz3r.onion/
http://silkroadvb5piz3r.onion/
-
Wow quite the balls that dick has posting in the SR forum a false SR link.
This is the SR link, go here and only here !!!!!
http://silkroadvb5piz3r.onion/
http://silkroadvb5piz3r.onion/
http://silkroadvb5piz3r.onion/
I doubt mongol was trying to trick anyone new. He was just showing the OP where his/her money went.