Hello IOTA Forum

To everyone posting with stolen balances:

https://forum.helloiota.com/Topic9100.aspx

By Winston - 19 Jan 2018

To everyone posting with stolen balances:

You have all likely used malicious online seed generators when generating your seed. It looks like the owner of that website(s) decided to steal all of the victims' funds today, so we're seeing a bunch of panicked posts about stolen funds. 

Here's a great initial postmortem of the situation (written by Ralf) 

Instructions:


1. If the stolen transaction is still pending (it'll say "Pending" underneath the transaction in your wallet history), URGENTLY send your entire balance to an address in a different seed. You might need to use the CLI wallet in order to make this new transaction so that you can bypass the double spending prevention mechanism that's built into the GUI wallet. You need to get your new transaction confirmed before the stolen transaction is confirmed.
CLI Wallet -
https://github.com/MichaelSchwab/iota-commandline-wallet
https://github.com/TimSamshuijzen/iotaproxy
CLI Wallet Instructions: 
https://www.reddit.com/r/Iota/comments/7rlvx5/how_to_how_to_maybe_rescue_your_funds_before_the/ 
-- or --
https://forum.helloiota.com/post/8584

For those who need urgent real-time assistance, join the IOTA Discord channel and ask for help immediately: 
https://discord.gg/fNGZXvh

2. If the stolen transaction is confirmed (it'll say "Confirmed" underneath the transaction in your wallet history), unfortunately that IOTA is now gone forever. This is a terrible situation, but hopefully we can use this experience to inculcate safe seed generation practices. Please see the "Legal Action" addendum below for details on legal recourse.
Please consider pursuing legal action. Someone from the community needs to step up and initiate the legal process: https://forum.helloiota.com/9284/Call-to-action-lets-catch-the-thief

The golden rule is to change 10 characters from whatever string of characters the seed generator gives you. Preferably, avoid online seed generators altogether. Here are the currently recognized best practices of seed generation by the IOTA community:
https://helloiota.com/generate-seed.html 
------------------------------------
Legal Action: Since IOTA is an open-source software project, there's no central entity that has control over balances or permissions. However, this doesn't mean that there's no legal recourse if you were one of the unfortunate victims of this crime! I've already informally encouraged some victims to link up and explore taking legal action against the perpetrators of this theft. Even if you can just find one other victim who lives in your country, it would be smart to team up with them and attempt to navigate the legal process together.

The more people who decide to take action, the better. Nobody is going to act on your behalf, and nothing will happen if everyone sits around waiting for something to happen. Please let me know if I can be of any help during this process by either posting here on the forum or messaging me in discord.
By iotastuff - 20 Jan 2018

This is a terrible situation and we can't believe that user bad practices are entirely at fault here.  It is very bad practice that a wallet would not generate its own secure seed instead of requiring an external program to do this.  Furthermore, to make users log in with their seed puts them at constant risk of key loggers and mistakenly pasting the seed into websites and chat windows.  These things definitely need to be solved ASAP.  
Please stop pointing fingers at users as this is preventing critical modifications being added to the wallet and improving security and user experience.
By CTG720204 - 20 Jan 2018

Winston - 19 Jan 2018
To everyone posting with stolen balances:

You have all likely used malicious online seed generators when generating your seed. It looks like the owner of that website(s) decided to steal all of the victims' funds today, so we're seeing a bunch of panicked posts about stolen funds. Instructions:

1. If the stolen transaction is still pending (it'll say "Pending" underneath the transaction in your wallet history), URGENTLY send your entire balance to an address in a different seed. You might need to use the CLI wallet in order to make this new transaction so that you can bypass the double spending prevention mechanism that's built into the GUI wallet. You need to get your new transaction confirmed before the stolen transaction is confirmed.
CLI Wallet -
https://github.com/MichaelSchwab/iota-commandline-wallet
https://github.com/TimSamshuijzen/iotaproxy
CLI Wallet Instructions: https://forum.helloiota.com/post/8584

2. If the stolen transaction is confirmed (it'll say "Confirmed" underneath the transaction in your wallet history), unfortunately that IOTA is now gone forever. This is a terrible situation, but hopefully we can use this experience to inculcate safe seed generation practices.


The golden rule is to change 10 characters from whatever string of characters the seed generator gives you. Preferably, avoid online seed generators altogether. Here are the currently recognized best practices of seed generation by the IOTA community:
https://helloiota.com/generate-seed.html

Please help with number 5.  I can't get this to work and had 11.3 Gi stolen.  I will tip.  Please
??
By fvantom - 20 Jan 2018

CTG720204 - 20 Jan 2018
Winston - 19 Jan 2018
To everyone posting with stolen balances:

You have all likely used malicious online seed generators when generating your seed. It looks like the owner of that website(s) decided to steal all of the victims' funds today, so we're seeing a bunch of panicked posts about stolen funds. Instructions:

1. If the stolen transaction is still pending (it'll say "Pending" underneath the transaction in your wallet history), URGENTLY send your entire balance to an address in a different seed. You might need to use the CLI wallet in order to make this new transaction so that you can bypass the double spending prevention mechanism that's built into the GUI wallet. You need to get your new transaction confirmed before the stolen transaction is confirmed.
CLI Wallet -
https://github.com/MichaelSchwab/iota-commandline-wallet
https://github.com/TimSamshuijzen/iotaproxy
CLI Wallet Instructions: https://forum.helloiota.com/post/8584

2. If the stolen transaction is confirmed (it'll say "Confirmed" underneath the transaction in your wallet history), unfortunately that IOTA is now gone forever. This is a terrible situation, but hopefully we can use this experience to inculcate safe seed generation practices.


The golden rule is to change 10 characters from whatever string of characters the seed generator gives you. Preferably, avoid online seed generators altogether. Here are the currently recognized best practices of seed generation by the IOTA community:
https://helloiota.com/generate-seed.html

Please help with number 5.  I can't get this to work and had 11.3 Gi stolen.  I will tip.  Please

I've send you a private message. Reply as soon as possible
By fvantom - 20 Jan 2018

fvantom - 20 Jan 2018
CTG720204 - 20 Jan 2018
Winston - 19 Jan 2018
To everyone posting with stolen balances:

You have all likely used malicious online seed generators when generating your seed. It looks like the owner of that website(s) decided to steal all of the victims' funds today, so we're seeing a bunch of panicked posts about stolen funds. Instructions:

1. If the stolen transaction is still pending (it'll say "Pending" underneath the transaction in your wallet history), URGENTLY send your entire balance to an address in a different seed. You might need to use the CLI wallet in order to make this new transaction so that you can bypass the double spending prevention mechanism that's built into the GUI wallet. You need to get your new transaction confirmed before the stolen transaction is confirmed.
CLI Wallet -
https://github.com/MichaelSchwab/iota-commandline-wallet
https://github.com/TimSamshuijzen/iotaproxy
CLI Wallet Instructions: https://forum.helloiota.com/post/8584

2. If the stolen transaction is confirmed (it'll say "Confirmed" underneath the transaction in your wallet history), unfortunately that IOTA is now gone forever. This is a terrible situation, but hopefully we can use this experience to inculcate safe seed generation practices.


The golden rule is to change 10 characters from whatever string of characters the seed generator gives you. Preferably, avoid online seed generators altogether. Here are the currently recognized best practices of seed generation by the IOTA community:
https://helloiota.com/generate-seed.html

Please help with number 5.  I can't get this to work and had 11.3 Gi stolen.  I will tip.  Please

I've send you a private message. Reply as soon as possible

I was not able to recover your @CTG720204 s funds because the transaction had already been confirmed.
If the outgoing theft transaction is still pending, take a look at
https://www.reddit.com/r/Iota/comments/7rlvx5/how_to_how_to_maybe_rescue_your_funds_before_the/

Or send me a private message as soon as possible.
By Sascha440 - 20 Jan 2018

Hello,

my IOTA were stolen too Sad
The Transaction is "pending".
@fvantom I have send you a message with all informations I have.

Please help me.

Thank you.
By t4ndu - 20 Jan 2018

My account is empty!! why? i was last time in dezember on my wallet?

Iota - i create my account with your seed generator!! 2-3 month ago!
what is going on? this is your DOWNFALL.
Make Snapshot back.. 5 Day. Restart the Tangel!

Fix your security problems.!!!
By t4ndu - 20 Jan 2018

can you stop it?

NOPCSAWITXWBZRWHUUHDPOSDEPBBIZEBSRVOSRXNHNAAXEC9IEHV9QDTYCLSCYRCCWANIEJZYXUN99999 : transaction Hash

+200.1 Miota HURWQIBSAEVZSBCK9LSYCVR9ZGOCSHHQIENAZURGCVCKXEMYIGHTYQQDRHJNUNPEIKIDKQTABQNFOWUMADSCRBWLXW

-200.1 Miota QUXXGSUOMLKDBA9PLXFXWYPLSCPABZKWRGBAJFO9ONPHWNUES9ULRGUEOHGURYLGBWTRDEMGYJAIBNDG9LLNQTBTNA

it is pending.
By fvantom - 20 Jan 2018

t4ndu - 20 Jan 2018
can you stop it?

NOPCSAWITXWBZRWHUUHDPOSDEPBBIZEBSRVOSRXNHNAAXEC9IEHV9QDTYCLSCYRCCWANIEJZYXUN99999 : transaction Hash

+200.1 Miota HURWQIBSAEVZSBCK9LSYCVR9ZGOCSHHQIENAZURGCVCKXEMYIGHTYQQDRHJNUNPEIKIDKQTABQNFOWUMADSCRBWLXW

-200.1 Miota QUXXGSUOMLKDBA9PLXFXWYPLSCPABZKWRGBAJFO9ONPHWNUES9ULRGUEOHGURYLGBWTRDEMGYJAIBNDG9LLNQTBTNA

it is pending.

I'm sorry to say that the funds are lost.
The transaction seems to be confirmed
https://thetangle.org/address/QUXXGSUOMLKDBA9PLXFXWYPLSCPABZKWRGBAJFO9ONPHWNUES9ULRGUEOHGURYLGBWTRDEMGYJAIBNDG9

I think you generated your seed via an online seed generator? What happend is that the owners or hackers of those sites logged all  the generated keys, they waited a few weeks until most of them had funds on them and then became a campaign logging in with each seed and stealing the funds.

When people ask me how to create a seed and wallet address I give them the following advice:
1. Generate a new seed and store it securely in a password manager and
print it on paper
I used the info on this page to generate mine:
https://iota.guide/seed/how-to-generate-iota-wallet-seed/
If you want to make it extra secure, generate a couple and use parts
of each to create a new one.

2. Log in with the seed and write down the 3 letter checksum that
appears during login

3. Attach the first address to the tangle and copy past it somewhere

4. Log out of the wallet and log back in. During login the 3 letter
checksum should be the same

5. Check if the first attached address in the wallet is still the same
via the history tab
By t4ndu - 20 Jan 2018

Winston - 19 Jan 2018
To everyone posting with stolen balances:

You have all likely used malicious online seed generators when generating your seed. It looks like the owner of that website(s) decided to steal all of the victims' funds today, so we're seeing a bunch of panicked posts about stolen funds. Instructions:

1. If the stolen transaction is still pending (it'll say "Pending" underneath the transaction in your wallet history), URGENTLY send your entire balance to an address in a different seed. You might need to use the CLI wallet in order to make this new transaction so that you can bypass the double spending prevention mechanism that's built into the GUI wallet. You need to get your new transaction confirmed before the stolen transaction is confirmed.
CLI Wallet -
https://github.com/MichaelSchwab/iota-commandline-wallet
https://github.com/TimSamshuijzen/iotaproxy
CLI Wallet Instructions: https://forum.helloiota.com/post/8584

2. If the stolen transaction is confirmed (it'll say "Confirmed" underneath the transaction in your wallet history), unfortunately that IOTA is now gone forever. This is a terrible situation, but hopefully we can use this experience to inculcate safe seed generation practices.


The golden rule is to change 10 characters from whatever string of characters the seed generator gives you. Preferably, avoid online seed generators altogether. Here are the currently recognized best practices of seed generation by the IOTA community:
https://helloiota.com/generate-seed.html

i have am mac  i can not install the CLI wallet?
what can i do?
i generate a new seed! but how i can start new transaction to new seed? in mac???
By t4ndu - 20 Jan 2018

fvantom - 20 Jan 2018
t4ndu - 20 Jan 2018
can you stop it?

NOPCSAWITXWBZRWHUUHDPOSDEPBBIZEBSRVOSRXNHNAAXEC9IEHV9QDTYCLSCYRCCWANIEJZYXUN99999 : transaction Hash

+200.1 Miota HURWQIBSAEVZSBCK9LSYCVR9ZGOCSHHQIENAZURGCVCKXEMYIGHTYQQDRHJNUNPEIKIDKQTABQNFOWUMADSCRBWLXW

-200.1 Miota QUXXGSUOMLKDBA9PLXFXWYPLSCPABZKWRGBAJFO9ONPHWNUES9ULRGUEOHGURYLGBWTRDEMGYJAIBNDG9LLNQTBTNA

it is pending.

I'm sorry to say that the funds are lost.
The transaction seems to be confirmed
https://thetangle.org/address/QUXXGSUOMLKDBA9PLXFXWYPLSCPABZKWRGBAJFO9ONPHWNUES9ULRGUEOHGURYLGBWTRDEMGYJAIBNDG9

I think you generated your seed via an online seed generator? What happend is that the owners or hackers of those sites logged all  the generated keys, they waited a few weeks until most of them had funds on them and then became a campaign logging in with each seed and stealing the funds.

When people ask me how to create a seed and wallet address I give them the following advice:
1. Generate a new seed and store it securely in a password manager and
print it on paper
I used the info on this page to generate mine:
https://iota.guide/seed/how-to-generate-iota-wallet-seed/
If you want to make it extra secure, generate a couple and use parts
of each to create a new one.

2. Log in with the seed and write down the 3 letter checksum that
appears during login

3. Attach the first address to the tangle and copy past it somewhere

4. Log out of the wallet and log back in. During login the 3 letter
checksum should be the same

5. Check if the first attached address in the wallet is still the same
via the history tab

Okay thank you! iota is dead!!!! normal wallets generate a seed! - IOTA is one of the bigest Fails in CryptoCommunity.. do a snapshot .. back... ? ist not possible?
By t4ndu - 20 Jan 2018

t4ndu - 20 Jan 2018
fvantom - 20 Jan 2018
t4ndu - 20 Jan 2018
can you stop it?

NOPCSAWITXWBZRWHUUHDPOSDEPBBIZEBSRVOSRXNHNAAXEC9IEHV9QDTYCLSCYRCCWANIEJZYXUN99999 : transaction Hash

+200.1 Miota HURWQIBSAEVZSBCK9LSYCVR9ZGOCSHHQIENAZURGCVCKXEMYIGHTYQQDRHJNUNPEIKIDKQTABQNFOWUMADSCRBWLXW

-200.1 Miota QUXXGSUOMLKDBA9PLXFXWYPLSCPABZKWRGBAJFO9ONPHWNUES9ULRGUEOHGURYLGBWTRDEMGYJAIBNDG9LLNQTBTNA

it is pending.

I'm sorry to say that the funds are lost.
The transaction seems to be confirmed
https://thetangle.org/address/QUXXGSUOMLKDBA9PLXFXWYPLSCPABZKWRGBAJFO9ONPHWNUES9ULRGUEOHGURYLGBWTRDEMGYJAIBNDG9

I think you generated your seed via an online seed generator? What happend is that the owners or hackers of those sites logged all  the generated keys, they waited a few weeks until most of them had funds on them and then became a campaign logging in with each seed and stealing the funds.

When people ask me how to create a seed and wallet address I give them the following advice:
1. Generate a new seed and store it securely in a password manager and
print it on paper
I used the info on this page to generate mine:
https://iota.guide/seed/how-to-generate-iota-wallet-seed/
If you want to make it extra secure, generate a couple and use parts
of each to create a new one.

2. Log in with the seed and write down the 3 letter checksum that
appears during login

3. Attach the first address to the tangle and copy past it somewhere

4. Log out of the wallet and log back in. During login the 3 letter
checksum should be the same

5. Check if the first attached address in the wallet is still the same
via the history tab

Okay thank you! iota is dead!!!! normal wallets generate a seed! - IOTA is one of the bigest Fails in CryptoCommunity.. do a snapshot .. back... ? ist not possible?

i generate it on iotaseed.io... i think. the site is allready up! you can find your enemies. kill them please.
By t4ndu - 20 Jan 2018

fvantom - 20 Jan 2018
t4ndu - 20 Jan 2018
can you stop it?

NOPCSAWITXWBZRWHUUHDPOSDEPBBIZEBSRVOSRXNHNAAXEC9IEHV9QDTYCLSCYRCCWANIEJZYXUN99999 : transaction Hash

+200.1 Miota HURWQIBSAEVZSBCK9LSYCVR9ZGOCSHHQIENAZURGCVCKXEMYIGHTYQQDRHJNUNPEIKIDKQTABQNFOWUMADSCRBWLXW

-200.1 Miota QUXXGSUOMLKDBA9PLXFXWYPLSCPABZKWRGBAJFO9ONPHWNUES9ULRGUEOHGURYLGBWTRDEMGYJAIBNDG9LLNQTBTNA

it is pending.

I'm sorry to say that the funds are lost.
The transaction seems to be confirmed
https://thetangle.org/address/QUXXGSUOMLKDBA9PLXFXWYPLSCPABZKWRGBAJFO9ONPHWNUES9ULRGUEOHGURYLGBWTRDEMGYJAIBNDG9

I think you generated your seed via an online seed generator? What happend is that the owners or hackers of those sites logged all  the generated keys, they waited a few weeks until most of them had funds on them and then became a campaign logging in with each seed and stealing the funds.

When people ask me how to create a seed and wallet address I give them the following advice:
1. Generate a new seed and store it securely in a password manager and
print it on paper
I used the info on this page to generate mine:
https://iota.guide/seed/how-to-generate-iota-wallet-seed/
If you want to make it extra secure, generate a couple and use parts
of each to create a new one.

2. Log in with the seed and write down the 3 letter checksum that
appears during login

3. Attach the first address to the tangle and copy past it somewhere

4. Log out of the wallet and log back in. During login the 3 letter
checksum should be the same

5. Check if the first attached address in the wallet is still the same
via the history tab

the Admin write go to https://helloiota.com/generate-seed.html ... how i can see that this site are okay? and the iotaseed.io are not okay? it was an experiment.. it is failed. when it goes public... iota will break down.
By paulpoison - 20 Jan 2018

9NVYWFBV9HGFQWCNROMZIAOPGIHRUVPAURUKUGPWGBN9TQJFYJZJWBRHBG9YXTNTAESKHZFNOQAFIYRSXOSKWAIDRW



Above u see the adress that my iotas was sendrd to.
By paulpoison - 20 Jan 2018

VNSFPJAHYZONYUKZUXMHLHMKRJEV9BSWZGCBDNJIXPBHPAXFAZIJCGVQUG9KE9XXCMLSXALDK9GESQFRXIPEMCBBJY


Thats another adress that my 509 Iotas was send.This time it is confirmed.Have i lost my Iotas?
By Paul-Berlin - 20 Jan 2018

Hello Guys,
hope you are doing well. Please help me. My Iota is stuck since over 4 months.
Please take a look: https://iotasear.ch/address/YNBLXZ9FNWHMQAFEQRUXQR9LBPMGTOLZAAVKHBLQATKB9NDCFZR9QRHOBS9ABQGMMOCSPLWSEFMGSGWTAITRLOZLAX
You can see that I received iota but without any registered withdraw the amount is still zero.
What happened four months ago is that I just have withdrawn iota from bitfinex to the wallet. Then when I wanted to send it back to the exchange Ive pressed on send twice. After that the amount was gone. Always when I seek for help I get told that I just have to wait a little bit longer and everything will work out with the recovery tool. But its still not working. My address was in the list saying:
{"address":"YNBLXZ9FNWHMQAFEQRUXQR9LBPMGTOLZAAVKHBLQATKB9NDCFZR9QRHOBS9ABQGMMOCSPLWSEFMGSGWTA","balance":706823996,"category":"KEY_REUSE","bundles":

I did the recovery tool but the balance on the new seed is still zero. Can anyone see if I did a mistake with the recovery tool? Any help is very appreciated. THANKS!!
By sun_in_the_city - 20 Jan 2018

[Zitat]
[b]Winston - 19. Januar 2018[/ b]
Für alle, die mit gestolenen Guthaben buchen:

Sie haben wahrscheinlich alle bösen Online-Saatgut-Generatoren verwendet, als Sie haben Seed generierten haben. Es sieht so aus, als ob die Besitzer dieser Webseite (n) heute geschlossen sind, alle Geldern des Opfers zu stehen, auch wenn eine Reihe panische Beiträge über gestützte Geldern. Hinweise:

1. Wenn die gestohlene Transaktion auch ausgibt, wird die Transaktion in Ihrem Fall automatisch gestartet. Sie können die CLI-Brieftasche verwenden, um diese neue Transaktion durchführen zu können, die Sie in der GUI-Brieftasche integriert haben. Sie müssen Ihre neue Transaktion bestätigen, bevor die Transaktion erfolgreich durchgeführt wird.
CLI Brieftasche -
https://github.com/MichaelSchwab/iota-commandline-wallet
https://github.com/TimSamshuijzen/iotaproxy
CLI Wallet Hinweise: https://forum.helloiota.com/post/8584

2. Wenn die gestohlene Transaktion ist bestätigt (es wird unter die Transaktion in Ihrem Brieftaschenverlauf "Bestätigt" angezeigt), leider ist IOTA jetzt für immer verschwunden. Dies ist eine erschreckende Situation, aber hoffentlich können wir diese Erfahrung, um sicher zu stellen, Methoden zur Saatgutgenerierung zu entwickeln.


Die goldene Regel besteht, 10 Zeichen aus der Zeichenfolge, die der Seed-Generator hat, zu ändern. Sie sind vor allem Online-Saatgut-Generatoren. Hier sind die aktuellsten Tipps für die Generierung von Saatgut durch die IOTA-Gemeinschaft:
https://helloiota.com/generate-seed.html
[/ Zitat]

Hallo, meine IOTA sind gestohlen worden, aber noch nicht ganz weg. Ich verstehe die Rettungsaktion leider nicht. Hab 'überhaupt keine Programmierkenntnisse.
Kann mir jemand helfen?
By Winston - 20 Jan 2018

t4ndu - 20 Jan 2018
fvantom - 20 Jan 2018
t4ndu - 20 Jan 2018
can you stop it?

NOPCSAWITXWBZRWHUUHDPOSDEPBBIZEBSRVOSRXNHNAAXEC9IEHV9QDTYCLSCYRCCWANIEJZYXUN99999 : transaction Hash

+200.1 Miota HURWQIBSAEVZSBCK9LSYCVR9ZGOCSHHQIENAZURGCVCKXEMYIGHTYQQDRHJNUNPEIKIDKQTABQNFOWUMADSCRBWLXW

-200.1 Miota QUXXGSUOMLKDBA9PLXFXWYPLSCPABZKWRGBAJFO9ONPHWNUES9ULRGUEOHGURYLGBWTRDEMGYJAIBNDG9LLNQTBTNA

it is pending.

I'm sorry to say that the funds are lost.
The transaction seems to be confirmed
https://thetangle.org/address/QUXXGSUOMLKDBA9PLXFXWYPLSCPABZKWRGBAJFO9ONPHWNUES9ULRGUEOHGURYLGBWTRDEMGYJAIBNDG9

I think you generated your seed via an online seed generator? What happend is that the owners or hackers of those sites logged all  the generated keys, they waited a few weeks until most of them had funds on them and then became a campaign logging in with each seed and stealing the funds.

When people ask me how to create a seed and wallet address I give them the following advice:
1. Generate a new seed and store it securely in a password manager and
print it on paper
I used the info on this page to generate mine:
https://iota.guide/seed/how-to-generate-iota-wallet-seed/
If you want to make it extra secure, generate a couple and use parts
of each to create a new one.

2. Log in with the seed and write down the 3 letter checksum that
appears during login

3. Attach the first address to the tangle and copy past it somewhere

4. Log out of the wallet and log back in. During login the 3 letter
checksum should be the same

5. Check if the first attached address in the wallet is still the same
via the history tab

the Admin write go to https://helloiota.com/generate-seed.html ... how i can see that this site are okay? and the iotaseed.io are not okay? it was an experiment.. it is failed. when it goes public... iota will break down.

@t4ndu
Yes, https://helloiota.com/generate-seed.html contains all of the currently accepted best practices by the IOTA community. Do not trust any method - the instructions on that webpage urge you to change a few characters in the seed that any program generates for you.

This is the golden rule! Change 10 or more characters of any seed that's generated, and simply avoid online seed generators altogether if you can.
By Winston - 20 Jan 2018

paulpoison - 20 Jan 2018
VNSFPJAHYZONYUKZUXMHLHMKRJEV9BSWZGCBDNJIXPBHPAXFAZIJCGVQUG9KE9XXCMLSXALDK9GESQFRXIPEMCBBJY


Thats another adress that my 509 Iotas was send.This time it is confirmed.Have i lost my Iotas?

@paulpoison
Unfortunately if the transaction is confirmed, and your seed doesn't generate the address that now holds your balance, then yes those IOTA have been stolen. Really sorry to see this.
By Winston - 20 Jan 2018

Paul-Berlin - 20 Jan 2018
Hello Guys,
hope you are doing well. Please help me. My Iota is stuck since over 4 months.
Please take a look: https://iotasear.ch/address/YNBLXZ9FNWHMQAFEQRUXQR9LBPMGTOLZAAVKHBLQATKB9NDCFZR9QRHOBS9ABQGMMOCSPLWSEFMGSGWTAITRLOZLAX
You can see that I received iota but without any registered withdraw the amount is still zero.
What happened four months ago is that I just have withdrawn iota from bitfinex to the wallet. Then when I wanted to send it back to the exchange Ive pressed on send twice. After that the amount was gone. Always when I seek for help I get told that I just have to wait a little bit longer and everything will work out with the recovery tool. But its still not working. My address was in the list saying:
{"address":"YNBLXZ9FNWHMQAFEQRUXQR9LBPMGTOLZAAVKHBLQATKB9NDCFZR9QRHOBS9ABQGMMOCSPLWSEFMGSGWTA","balance":706823996,"category":"KEY_REUSE","bundles":

I did the recovery tool but the balance on the new seed is still zero. Can anyone see if I did a mistake with the recovery tool? Any help is very appreciated. THANKS!!

@Paul-Berlin
Hey Paul, I'll answer your post in the appropriate thread (the other thread that you posted in). Thanks for reaching out.
By Winston - 20 Jan 2018

sun_in_the_city - 20 Jan 2018
[Zitat]
[b]Winston - 19. Januar 2018[/ b]
Für alle, die mit gestolenen Guthaben buchen:

Sie haben wahrscheinlich alle bösen Online-Saatgut-Generatoren verwendet, als Sie haben Seed generierten haben. Es sieht so aus, als ob die Besitzer dieser Webseite (n) heute geschlossen sind, alle Geldern des Opfers zu stehen, auch wenn eine Reihe panische Beiträge über gestützte Geldern. Hinweise:

1. Wenn die gestohlene Transaktion auch ausgibt, wird die Transaktion in Ihrem Fall automatisch gestartet. Sie können die CLI-Brieftasche verwenden, um diese neue Transaktion durchführen zu können, die Sie in der GUI-Brieftasche integriert haben. Sie müssen Ihre neue Transaktion bestätigen, bevor die Transaktion erfolgreich durchgeführt wird.
CLI Brieftasche -
https://github.com/MichaelSchwab/iota-commandline-wallet
https://github.com/TimSamshuijzen/iotaproxy
CLI Wallet Hinweise: https://forum.helloiota.com/post/8584

2. Wenn die gestohlene Transaktion ist bestätigt (es wird unter die Transaktion in Ihrem Brieftaschenverlauf "Bestätigt" angezeigt), leider ist IOTA jetzt für immer verschwunden. Dies ist eine erschreckende Situation, aber hoffentlich können wir diese Erfahrung, um sicher zu stellen, Methoden zur Saatgutgenerierung zu entwickeln.


Die goldene Regel besteht, 10 Zeichen aus der Zeichenfolge, die der Seed-Generator hat, zu ändern. Sie sind vor allem Online-Saatgut-Generatoren. Hier sind die aktuellsten Tipps für die Generierung von Saatgut durch die IOTA-Gemeinschaft:
https://helloiota.com/generate-seed.html
[/ Zitat]

Hallo, meine IOTA sind gestohlen worden, aber noch nicht ganz weg. Ich verstehe die Rettungsaktion leider nicht. Hab 'überhaupt keine Programmierkenntnisse.
Kann mir jemand helfen?

@sun_in_the_city
If you're having trouble with specific steps in that process, I'd recommend immediately going to the IOTA discord and asking for help. It might be easier to get real-time assistance for a time sensitive issue like trying to beat out a pending stolen transaction.
https://discord.gg/fNGZXvh

By Mallacka - 20 Jan 2018

My Balance of 2.778356741 Gi has been stolen. It has been transferred to this adress:

NBYYOUKS9HSYUWYLMOFWMF9ZRCABNDTNLJAXTTXIWFEXW9EEBZDDWLIWWJJTBROYDDO9GZIUFKGBLVTUBSLTJEKTUB

The transaction has been "confirmed". Is there any chance to get my IOTA back? Pleas help me!
By sun_in_the_city - 20 Jan 2018

Winston - 20 Jan 2018
sun_in_the_city - 20 Jan 2018
[Zitat]
[b]Winston - 19. Januar 2018[/ b]
Für alle, die mit gestolenen Guthaben buchen:

Sie haben wahrscheinlich alle bösen Online-Saatgut-Generatoren verwendet, als Sie haben Seed generierten haben. Es sieht so aus, als ob die Besitzer dieser Webseite (n) heute geschlossen sind, alle Geldern des Opfers zu stehen, auch wenn eine Reihe panische Beiträge über gestützte Geldern. Hinweise:

1. Wenn die gestohlene Transaktion auch ausgibt, wird die Transaktion in Ihrem Fall automatisch gestartet. Sie können die CLI-Brieftasche verwenden, um diese neue Transaktion durchführen zu können, die Sie in der GUI-Brieftasche integriert haben. Sie müssen Ihre neue Transaktion bestätigen, bevor die Transaktion erfolgreich durchgeführt wird.
CLI Brieftasche -
https://github.com/MichaelSchwab/iota-commandline-wallet
https://github.com/TimSamshuijzen/iotaproxy
CLI Wallet Hinweise: https://forum.helloiota.com/post/8584

2. Wenn die gestohlene Transaktion ist bestätigt (es wird unter die Transaktion in Ihrem Brieftaschenverlauf "Bestätigt" angezeigt), leider ist IOTA jetzt für immer verschwunden. Dies ist eine erschreckende Situation, aber hoffentlich können wir diese Erfahrung, um sicher zu stellen, Methoden zur Saatgutgenerierung zu entwickeln.


Die goldene Regel besteht, 10 Zeichen aus der Zeichenfolge, die der Seed-Generator hat, zu ändern. Sie sind vor allem Online-Saatgut-Generatoren. Hier sind die aktuellsten Tipps für die Generierung von Saatgut durch die IOTA-Gemeinschaft:
https://helloiota.com/generate-seed.html
[/ Zitat]

Hallo, meine IOTA sind gestohlen worden, aber noch nicht ganz weg. Ich verstehe die Rettungsaktion leider nicht. Hab 'überhaupt keine Programmierkenntnisse.
Kann mir jemand helfen?

@sun_in_the_city
If you're having trouble with specific steps in that process, I'd recommend immediately going to the IOTA discord and asking for help. It might be easier to get real-time assistance for a time sensitive issue like trying to beat out a pending stolen transaction.
https://discord.gg/fNGZXvh


Thank you!
By Winston - 20 Jan 2018

Mallacka - 20 Jan 2018
My Balance of 2.778356741 Gi has been stolen. It has been transferred to this adress:

NBYYOUKS9HSYUWYLMOFWMF9ZRCABNDTNLJAXTTXIWFEXW9EEBZDDWLIWWJJTBROYDDO9GZIUFKGBLVTUBSLTJEKTUB

The transaction has been "confirmed". Is there any chance to get my IOTA back? Pleas help me!

@Mallacka
It looks like this transaction has already been confirmed. Unfortunately there's nothing that can be done, and these funds are gone forever. Sorry to see this
By Mallacka - 20 Jan 2018

Winston - 20 Jan 2018
Mallacka - 20 Jan 2018
My Balance of 2.778356741 Gi has been stolen. It has been transferred to this adress:

NBYYOUKS9HSYUWYLMOFWMF9ZRCABNDTNLJAXTTXIWFEXW9EEBZDDWLIWWJJTBROYDDO9GZIUFKGBLVTUBSLTJEKTUB

The transaction has been "confirmed". Is there any chance to get my IOTA back? Pleas help me!

@Mallacka
It looks like this transaction has already been confirmed. Unfortunately there's nothing that can be done, and these funds are gone forever. Sorry to see this

Thank you for your support. There is so many users who lost their balance like me. Is there any chance to get at least some of the coins back - in the context of a compensation or something? I guess the IOTA foundation keeps currently millions of coins.
By Winston - 20 Jan 2018

Mallacka - 20 Jan 2018
Winston - 20 Jan 2018
Mallacka - 20 Jan 2018
My Balance of 2.778356741 Gi has been stolen. It has been transferred to this adress:

NBYYOUKS9HSYUWYLMOFWMF9ZRCABNDTNLJAXTTXIWFEXW9EEBZDDWLIWWJJTBROYDDO9GZIUFKGBLVTUBSLTJEKTUB

The transaction has been "confirmed". Is there any chance to get my IOTA back? Pleas help me!

@Mallacka
It looks like this transaction has already been confirmed. Unfortunately there's nothing that can be done, and these funds are gone forever. Sorry to see this

Thank you for your support. There is so many users who lost their balance like me. Is there any chance to get at least some of the coins back - in the context of a compensation or something? I guess the IOTA foundation keeps currently millions of coins.

@Mallacka
Unfortunately, balances that have been stolen are gone forever. The IOTA Foundation is simply in place to develop and spread adoption of the software protocol
By fvantom - 20 Jan 2018

Mallacka - 20 Jan 2018
Winston - 20 Jan 2018
Mallacka - 20 Jan 2018
My Balance of 2.778356741 Gi has been stolen. It has been transferred to this adress:

NBYYOUKS9HSYUWYLMOFWMF9ZRCABNDTNLJAXTTXIWFEXW9EEBZDDWLIWWJJTBROYDDO9GZIUFKGBLVTUBSLTJEKTUB

The transaction has been "confirmed". Is there any chance to get my IOTA back? Pleas help me!

@Mallacka
It looks like this transaction has already been confirmed. Unfortunately there's nothing that can be done, and these funds are gone forever. Sorry to see this

Thank you for your support. There is so many users who lost their balance like me. Is there any chance to get at least some of the coins back - in the context of a compensation or something? I guess the IOTA foundation keeps currently millions of coins.

No. If you think about it. Who would they give it to? They have no way to know who the seed actually belongs to. The people stealing the funds have the original seed too after all.
Plus what is happening now is because someone is scamming people by giving them compromised seeds. The iota technology isn't the problem here. It's human in nature. I'm not saying that makes it ok or not tragic. I really wish there was more I could do to help.
By didarossi - 20 Jan 2018

Hey 
I have also the same issue

could someone check/help if my iotas are still unconfirmed

WOQMPJPF9FYUPOWKHNEKPQXUCFV9HWGLRLNTCDPQOREX9LVLSMJLFN9JJNQYUPYNRSCLGQVOMSLHMWYWDQFE9FXBYD --> thats the Adresse where it was sent to (1,8+Gi)

Thank you
????????
By Winston - 20 Jan 2018

didarossi - 20 Jan 2018
Hey 
I have also the same issue

could someone check/help if my iotas are still unconfirmed

WOQMPJPF9FYUPOWKHNEKPQXUCFV9HWGLRLNTCDPQOREX9LVLSMJLFN9JJNQYUPYNRSCLGQVOMSLHMWYWDQFE9FXBYD --> thats the Adresse where it was sent to (1,8+Gi)

Thank you

@didarossi
I don't see a 1.8+ Gi transaction on that address:
https://thetangle.org/address/WOQMPJPF9FYUPOWKHNEKPQXUCFV9HWGLRLNTCDPQOREX9LVLSMJLFN9JJNQYUPYNRSCLGQVOMSLHMWYWD

Lots of 1.9 Gi transactions though.

If you're unsure if the transaction is pending or confirmed, I would urgently and aggressively pursue the steps in number 1 of the instructions of this thread. There's only a limited window in which you'll be able to save your funds, so you might as well get the ball rolling now just in case it's still pending.
By miota - 20 Jan 2018

I know it is not technically correct, but I seriously think HelloIOTA should use the word "master password" instead of "seed". I believe all people are familiar with password safety, because they already have password at banks, etc. However the term "seed" is used in bittorrent as as a synonym for sharing. Uneducated people would think this seed value can be shared with others, or can be generated online without fear of being stolen. On the other hand I think nobody would generate his/her bank account password online, as they already know that passwords are for private use and can be stolen.

The confusion might also come from the fact that publicly available IOTA addresses look very similar to address seeds, at least to human eyes: 81 characters vs 90 characters is hardly distinguishable, at least when the two are not directly after each other. While addresses are public, seeds are of course not. However one might pretty easily mix those up and post his/her seed (aka. master password) instead of the address. If one is not careful enough to immediately transfer the funds to another address generated with a new safely generated seed, and an attacker can somehow connect that user's identiy with his/her IOTA address, then the funds can be stolen.

A GUI wallet should at minimum be able to generate seed on its own and offer a way to securely store it encrypted by a user password. Also minimum 10 character long passwords should be enforced for encrypting seeds.

I believe replacing the term seed with master password, and freeing the user from the burden of generating safe seeds and instead use the more familiar password mechanism would greatly reduce stolen IOTAs.

I understand that IOTA was designed for machine-to-machine transactions, and machines are not prone to stupid errors like humans, but there is already a massive human user base and I think it will exponentially grow this year. So it's best protecting IOTA's reputation before it's too late.
By miota - 20 Jan 2018

miota - 20 Jan 2018
The confusion might also come from the fact that publicly available IOTA addresses look very similar to address seeds, at least to human eyes: 81 characters vs 90 characters is hardly distinguishable, at least when the two are not directly after each other. 

Sorry, addresses are also 81 character long, only 90 character long when checksum is also included. So they are practically indistinguishable from each other to the human eye. And also transaction hashes look very similar. So it is very easy to mix them up.
By ndi01 - 20 Jan 2018

I have >8000 gone and don't know what to do? Any Ideas

By iq34acal - 20 Jan 2018

Hey guys, 

also my IOTAs were stolen, 19.01.. The TX is confirmed and most probably I'll get a shitstorm for my following comment. But if there are so many hacked accounts and the adresses are public, what is the point in changing the "snapshot" to try at least getting some of these IOTAs back. It's obvious which adresses are used to receive stolen IOTAs.The tanglesearch shows that they have plenty of incoming transaction, some of them unconfirmed, a lot of them confirmed. The money is still on the adress!!!! I also know that's in the responsibility of the end-user to setup a safe account, but the situation shows it's not that obvious and easy as many of the programmers may assume. I bought for almost all of my coins a Hard Wallet and safer them securely. But for IOTA I didn't know what to do, so I checked the internet, ended up on Youtube and followed the advice from some different videos. They didn't say anything about changing 10 characters of the seed and they recommended to use seedgenerators. For sure, I watched more than one videoe and obviously it's kind of confusing for beginners to understand everything from the very beginning. Especially if you buy more than one coin it doesn't make it easier. Maybe I used wrong key words or wrong sources but I also tried to get some infos for all of my coins from google and and and. I found nothing about that issue, but still...my fault. It's an expensive lesson for my own (and obviously also for a lot of other folks out there), but the guys behind IOTA should overthink their security settings and policies. Maybe a simple pop-up window integrated in the wallet with the most important security tips would have protected my money...not that hard to implement, everybody who opens the wallet needs to check that and get the necessary infos...Although I don't expect that somebody decides to undo the hack and send my 314.69 MIOTAs back, I'll give the thiefes and IOTA the chance to do so Wink

New Adress:
BXZLVCQV9GZMMAMANHAZCNARDD9JNWCLORAYSADLHBZFDODGDBQRTZENMWFYZTVJT9YJFKXPGCRQTKAUXJZSZRHWKC

And for all these wonderful guys out there knowng more about coins, blockchain, cryptographie then I do, hack this adress, bc my IOTAs were transfered to :

 OQRJJB9MJFOLGALRYNAUNZCRQOZGRQPHTRNGNWLPPNGETIU9JVQNRSOEICJOGLQVPLCMHEBZSHNI9UJQWQXVFENLBB

Do what you can do Smile Have a good night and thx for your support!!!
By miota - 20 Jan 2018

I don't understand why the following post is not removed from the "official" iota forum: https://forum.iota.org/t/iotaseed-io-now-also-for-generating-paper-wallets/3915
Someone has posted iotaseed.io, one of the most dangerous SCAM sites 5 months ago, and no one has removed that post, or at least followed up by a THIS IS A SCAM, DO NOT EVER USE IT post.
Unfortunately registration to forum.iota.org has been closed for some time now, mostly because of scams and spams like this. Otherwise I would have already posted there, as I see already some few hundred people reached that scam site via "official" iota forum.
By Winston - 20 Jan 2018

miota - 20 Jan 2018
I know it is not technically correct, but I seriously think HelloIOTA should use the word "master password" instead of "seed". I believe all people are familiar with password safety, because they already have password at banks, etc. However the term "seed" is used in bittorrent as as a synonym for sharing. Uneducated people would think this seed value can be shared with others, or can be generated online without fear of being stolen. On the other hand I think nobody would generate his/her bank account password online, as they already know that passwords are for private use and can be stolen.

The confusion might also come from the fact that publicly available IOTA addresses look very similar to address seeds, at least to human eyes: 81 characters vs 90 characters is hardly distinguishable, at least when the two are not directly after each other. While addresses are public, seeds are of course not. However one might pretty easily mix those up and post his/her seed (aka. master password) instead of the address. If one is not careful enough to immediately transfer the funds to another address generated with a new safely generated seed, and an attacker can somehow connect that user's identiy with his/her IOTA address, then the funds can be stolen.

A GUI wallet should at minimum be able to generate seed on its own and offer a way to securely store it encrypted by a user password. Also minimum 10 character long passwords should be enforced for encrypting seeds.

I believe replacing the term seed with master password, and freeing the user from the burden of generating safe seeds and instead use the more familiar password mechanism would greatly reduce stolen IOTAs.

I understand that IOTA was designed for machine-to-machine transactions, and machines are not prone to stupid errors like humans, but there is already a massive human user base and I think it will exponentially grow this year. So it's best protecting IOTA's reputation before it's too late.

@miota
Re: "master password" - this is a very interesting take on the situation. There'd definitely a ton of education that constantly needs to be done, and a change in terminology could indeed be a great move. This is an important discussion to have
By Winston - 20 Jan 2018

ndi01 - 20 Jan 2018
I have >8000 gone and don't know what to do? Any Ideas


@ndi01
Follow the instructions in the original post. All of the information and contacts (discord) that you'll need are included there.
By Winston - 20 Jan 2018

miota - 20 Jan 2018
I don't understand why the following post is not removed from the "official" iota forum: https://forum.iota.org/t/iotaseed-io-now-also-for-generating-paper-wallets/3915
Someone has posted iotaseed.io, one of the most dangerous SCAM sites 5 months ago, and no one has removed that post, or at least followed up by a THIS IS A SCAM, DO NOT EVER USE IT post.
Unfortunately registration to forum.iota.org has been closed for some time now, mostly because of scams and spams like this. Otherwise I would have already posted there, as I see already some few hundred people reached that scam site via "official" iota forum.

@miota
"I don't understand why the following post is not removed from the "official" iota forum: https://forum.iota.org/t/iotaseed-io-now-also-for-generating-paper-wallets/3915
Someone has posted iotaseed.io, one of the most dangerous SCAM sites 5 months ago, and no one has removed that post, or at least followed up by a THIS IS A SCAM, DO NOT EVER USE IT post.
Unfortunately registration to forum.iota.org has been closed for some time now, mostly because of scams and spams like this. Otherwise I would have already posted there, as I see already some few hundred people reached that scam site via "official" iota forum. "


The iota.org forum hasn't been active in a long time. This does appear to be a bad situation! I'll see what we can do to remedy this problem of having old posts on that forum possibly leading users astray. Thank you very much for pointing this out.
By ndi01 - 20 Jan 2018

I agree 100% with iq34acal and his points regarding security and so on! Ialso wanted to transfer my MIOTA away from the "unsecure" exchange and the only thing was the damned light wallet. So I ended up storing it in there.... thanks to IOTA foundation it's gone!?
another address to hack would be:
XHNRFOZYSPMZFRQQKQGKSDLAQHUNPAXVOSZWYIDMMWBXLPBWIXIZZ9BJIKAMWADMAWJJBZMOLXMXIIKPCGVWVKYKNW
and I would be glad to get my 8695 MIOTA back!

By miota - 20 Jan 2018

iq34acal: you are right, until proper wallet GUIs are implemented that do not require external seeds, at least a huge warning window should be shown indicating the seeds should never, ever be generated online.
If one does not have access to a Linux console, use this dice roll method: https://i.redd.it/1ob6f3wagp601.jpg

Have 3 dices and roll them. If the first dice shows 1 or 2, go to left in the second row, if 3 or 4 go to middle, if 5 or 6, go to the right.
If the second dice shows 1 or 2, go to the left in the third row, if 3 or 4 go the middle, if 5 or 6 go to the right.
Then do the same with the third dice: if it shows 1 or 2, go the left in the fourth row containing letters on the left, if 3 or 4 go the middle, if 5 or 6 go to the right.
For example rolling 3, 2, 5 would yield L, then rolling 6, 1, 4 would yield T, etc.

You will have to roll all the dices 81 times, but at least you can be pretty sure you have a quite random seed. At least much more random than using an online generator whose source of randomness you cannot be sure of (or whether it is stored on their servers), and much more random than just bashing the keyboard or trying to randomly type 81 capital letters and 9s.
By damian19 - 21 Jan 2018

Hi,
It looks like if somebody has stolen my Iota. I hope this is a problem with wallet. 
The balance shows zero. 
this is the hash: 
JKAEWURXXEV9OCVDJTEZWHQWGIQLGVUDTGOURMZILVNFPNNEENUYPWZIPFZG9ZHEHKGUZBQJKMOVZ9999

Could you please help! 
it looks like this is the address it went to 
LPRIXKCYXVFUN9CXNNNLJUG9W9REZ99ZXZLXJINABSPJ9RNYNXIGNCEJ9BIJGW9ZHYYFGBOOVXLIIFAYAUCGRRSJLB
By damian19 - 21 Jan 2018

Hi,
Now it looks like 560.490242 Mi are coming back and it's pending. I completely Don't understand it. 793.418145 are still not there. Could you please explain of what is happening it looks very weird. That all my iota disappear and now some of it is coming back?
By Winston - 21 Jan 2018

damian19 - 21 Jan 2018
Hi,
Now it looks like 560.490242 Mi are coming back and it's pending. I completely Don't understand it. 793.418145 are still not there. Could you please explain of what is happening it looks very weird. That all my iota disappear and now some of it is coming back?

@damian19
It looks like the stolen outgoing transaction has confirmed already, unfortunately.

Taking a look at the inputs to the stolen bundle, your two addresses were:
https://thetangle.org/address/UCOVDRYTVJL9KTZISXGKDKBXHKA99ONUWYLVUAUTTEF9JTHIVDETKQKPXHHRPBKHFGVNVFHSOEYTHPXRY
https://thetangle.org/address/KLZGZYVURXMMIZKNAPEXKFWKVSMMKEWRYPIRZQKXQV9COWELLWZQVZTPHZELTIIEVCCVHGJURKPCTGGOW

I don't see any incoming transactions on either of these addresses. (and I don't think the thief will be sending your funds back unless compelled by litigation
By Kaiblade - 21 Jan 2018

I also lost all my IOTA, though compared to some users that lost theirs, mine is not that much, just 111 Miotas. Still, losing that amount makes me quite sad, as I bought them when the price was below $1 and I was willing to hold the coins for a long time because I believed in the project.

Well, it was partly my fault due to using a website  to generate my seed, the website (i.e. https://iotaseed.io/) used was posted on the IOTA's official forum, so I thought since it was posted there, it should be legit. Seems I was wrong.

I blame IOTA foundation partly for not making the desktop wallet as user-friendly as possible and not policing their forums properly. Aside from IOTA, I'm holding other coins as well in desktop wallets, I don't have this security issue with their wallets and I'm holding a lot of other coins.

It's so unfortunate, I actually believed in the project as I saw how practical it was in solving everyday problems. I saw it as a coin that has a very high chance of being adopted by the masses. Well, I would not be buying and holding more IOTAs, I'm starting to lose faith in the project.
By Winston - 21 Jan 2018

Kaiblade - 21 Jan 2018
I also lost all my IOTA, though compared to some users that lost theirs, mine is not that much, just 111 Miotas. Still, losing that amount makes me quite sad, as I bought them when the price was still below $1 and I was willing to hold the coins for a long time because I believed in the project.

Well, it was partly my fault due to using a website  to generate my seed, the website (i.e. https://iotaseed.io/) used was posted on the IOTA's official forum, so I thought since it was posted there, it should be legit. Seems I was wrong.

I blame IOTA foundation partly for not making the desktop wallet as user-friendly as possible and not policing their forums properly. Aside from IOTA, I'm holding other coins as well in desktop wallets, I don't have this security issue with their wallets and I'm holding a lot of coins.

It's so unfortunate, I actually believed in the project as I saw how practical it's in solving everyday problems, I saw it as a coin that has a very high chance of being adopted by the masses. Well, I would not be buying and holding more IOTAs, I'm starting to lose faith in the project.

@Kaiblade
Thanks for stopping by to post your story. I'm really sorry to see this happen, and I understand your sadness and frustration right now.
By Rezz415 - 21 Jan 2018

So there is absolutely nothing that can be done?
Surely there is some kinda of thought given or fraud to theft by those conducting themselves in the tangle?
A mass of users was just robbed (including myself) .. someone must have thought of a plan of action in that case to support in getting things back.
No?

By fvantom - 21 Jan 2018

The whole point of a decentralised system is to remove central control by a single entity.

It would surprise me very much if someone was able to do something.

Maybe a class action and an investigation via some sort of Interpol group. But you’ll have to check with a lawyer about that stuff. I know nothing about it.

I do wish something could be done. On a human level I really feel for everyone who got scammed.

On I final note I want to stress that it’s not the technology that is flawed. It’s not user friendly which gives an unfair advantage to more technical people. Allowing scammers and thief’s many ways to work with.

Those need and will most likely be plugged in the future.

I know... doesn’t help the guys who got ripped off today...
By FrankB - 21 Jan 2018

4.7 Gi
https://thetangle.org/bundle/9LKIEFANWKNDJFJIHVZHRZBJRQHIQGGBXJJHFEPHGHDEKKNT9GXKLQIJBXKGBRXQUVUHGPQFPDJYLHJSA
Discussion on Reddit as HowAboutFrank
Thanks for this initiative!
By iq34acal - 21 Jan 2018

@fvantom: I totally agree with you, but also in a decentralized system there should be a mechanism to avoid or undo situations like this. Several (I don't know hundreds, thousands, ten thousands ...) accounts were hacked and it's public where the money went to..all adresses with our money are public. Isn't there still an inner circle/ round table or whatever of the founders of IOTA, the full nodes and so on who can take decisions? Based on my limited knowledge the decentralized system should be able to take the decision that this is robbery and undo the transactions before the thieves change the IOTAs for fiat currencies. Change the snapshot...founders also have some responsibility.
By Kaiblade - 21 Jan 2018

@iq34acal, I doubt that will be happening. I will be pleasantly surprised if it does, though.
By iq34acal - 21 Jan 2018

That's not gonna happen Sad But at least a little dreaming Smile
By gkool - 21 Jan 2018

Hi IOTA fans,
Being a big supporter of the Tangle, I invested in IOTA too. No need to repeat all the posts above... My IOTA's got stolen too. Someone is clearly getting rich over our backs. Modern day theft!! At the time I was a novice in crypto currency and used the seed generator that was, at that time recommended by IOTA itself. Nevertheless, I can only blame myself for using the iotaseed seed generator without questions (or adaptations to the seed).
?However, I do agree with all comments about the quality of the wallet. So IOTA foundation: get your act together and professionalize the wallet. It shouldn't be so hard to make IOTA compatible with off-line wallets like the Ledger Nano S. This works great for a lot of crypto currencies. Alternatively allow for 2 step verification of some sort, like other crypto's and various exchanges got down pretty solidly!

In the meantime, I keep the faith in the Tangle. It would be great to see the foundation actually using it's intellectual head-start instead of getting into all sorts of vague projects with big corporations. Make sure you've got a reliable spaceship before you fly to the moon...??

???
By paulpoison - 21 Jan 2018

Winston - 20 Jan 2018
paulpoison - 20 Jan 2018
VNSFPJAHYZONYUKZUXMHLHMKRJEV9BSWZGCBDNJIXPBHPAXFAZIJCGVQUG9KE9XXCMLSXALDK9GESQFRXIPEMCBBJY


Thats another adress that my 509 Iotas was send.This time it is confirmed.Have i lost my Iotas?

@paulpoison
Unfortunately if the transaction is confirmed, and your seed doesn't generate the address that now holds your balance, then yes those IOTA have been stolen. Really sorry to see this.

By paulpoison - 21 Jan 2018

Ok my fault.But how is it possible that i have sended 200 iotas to my binance account 2 days before i was roobbed and the transaction is still pending,and yet they managed to take 100% of my iotas includong that 200?
By ralf - 21 Jan 2018

Hi Everyone,
While we are all in this together, I highly recommend to not accept help via direct or private messages. We've seen scammers join our community, offer help, just to then send the pending transactions to their own addresses, instead of rescuing them.

In a decentralized world, trust is difficult. There is no central authority which vests users. So even those, offering help, could have bad intentions.

My advice: Join the #help channel over at Discord and make sure, help is provided within the boundaries of that channel. This at least increases the chance, that honest eyes are going to recognise should anything shady happen. No guarantees but increased chances.

Hope we get through this soon.
By fvantom - 21 Jan 2018

True. Although quite a lot of people can vouche for me being trustworthy. And did via my post for the seed recovery tool.
By Batis - 21 Jan 2018

All my money about 290 Mi IOTA has been stolen too !!
SadSad
By EwingJR5 - 21 Jan 2018

Hi Everyone,

I lost 1.9 GI to this address: YXRCTAVQTU9OSQBI9NYARSLBMATKROHJHCRX9IIPTMXXGFLDCOR9PIWDPCGTAGXZBYUPXUXRWZIK9GEBWIUHATXWMZ
The hash is: IPFY9EQJXQTBSAQEQVOOARKZPLQGXTRHOHWXUCPLAQWZMPSDQGKJJBUVBRKALUVCRRJJ9T9BAGLZA9999

The transfer is confirmed.

Is there anything one can do about?
By Winston - 21 Jan 2018

EwingJR5 - 21 Jan 2018
Hi Everyone,

I lost 1.9 GI to this address: YXRCTAVQTU9OSQBI9NYARSLBMATKROHJHCRX9IIPTMXXGFLDCOR9PIWDPCGTAGXZBYUPXUXRWZIK9GEBWIUHATXWMZ
The hash is: IPFY9EQJXQTBSAQEQVOOARKZPLQGXTRHOHWXUCPLAQWZMPSDQGKJJBUVBRKALUVCRRJJ9T9BAGLZA9999

The transfer is confirmed.

Is there anything one can do about?

@EwingJR5
Thanks for posting, and I'm sorry to see this. Please consider checking out the "Call to action" thread that's pinned right below this thread
By faeze - 21 Jan 2018

Hi,
My 140 IOTA is stolen.
I really need help.
You should support us ...
By Tim99 - 21 Jan 2018

I lost my 658 iota

https://thetangle.org/address/AZWBUGCURMQKZJYGZITN9QKKIGWHJA9GPVTYJC9CDUNWOCVJSOCSBILB9EAGUGXFCLOZKUSUJSVWHUZTW

Sad
By miota - 21 Jan 2018

miota - 20 Jan 2018
use this dice roll method: https://i.redd.it/1ob6f3wagp601.jpg

Have 3 dices and roll them. If the first dice shows 1 or 2, go to left in the second row, if 3 or 4 go to middle, if 5 or 6, go to the right.
If the second dice shows 1 or 2, go to the left in the third row, if 3 or 4 go the middle, if 5 or 6 go to the right.
Then do the same with the third dice: if it shows 1 or 2, go the left in the fourth row containing letters on the left, if 3 or 4 go the middle, if 5 or 6 go to the right.
For example rolling 3, 2, 5 would yield L, then rolling 6, 1, 4 would yield T, etc.

I forgot to mention that you should use quality dices, cheap Chinese dices may favor the lighter side (eg. number 6 as it has 6 holes that makes it lighter).
Also it is best to use dices of 3 different color and always read eg. red dice's number first, green dice's number second and white dice's number third. This is because if all dices are of the same color and look like the same, a human may be tempted to read for example the dice with the lowest number first. And this would cause the seed to contain a lot more letters from the first one third of the alphabet than the rest. It is simply amazing in how many ways a human can ruin a random number generator...

Also what most people forgot when generating a seed is that this seed is very much different from using a password. In most systems passwords cannot be brute forced, because the system locks the user should it try to guess too many times in a row. However in case of IOTA addresses, one can easily see online which address contains a huge amount of IOTAs and try to attack that using brute force. This brute force attack can be done completely offline, the attacker does not have to be connected to the internet. When a bad seed is used the attacker may succeed. When a compromised seed generator was used, for example one which stores all generated seeds it is just a matter of seconds for an attacker to find out which IOTA public address that seed belongs to.

When a truly random seed is used, however, brute force is not much of a problem, because the seed space is so big that it is highly unlikely one is able to ever succeed. There are 81 characters in the seed, and each character can be of 27 different values (A-Z, 9). That makes 27^81, that is twenty-seven to the power of eighty-one different seeds. That is 8 followed by 115 zeros. Just to compare, currently it is believed that the are about 10^82 (1 followed by 82 zeros) atoms in the whole currently observable universe.

An unbelievably lot of trials are needed to find the seed if it was truly randomly generated. Most commonly used x86-64 based hardwares can perform SHA-3 at about 12.6 clock cycles per byte (cpb). Since IOTA uses 384-bit (48 byte) SHA-3 function that makes it about 605 cycles to complete a hash operation, that is one trial of 27^81 space. If the hardware runs at 3.2 GHz, there are 3200000000 cycles per second, so in one second 3200000000/605 = 5.3 million trials can be made. While that may sound a lot, that is only 5 followed by 6 zeros trials in a second. To cycle through all possible variations, it would take 27^81 / 5.3 * 10^6, or between 10^108 and 10^109 seconds. In a year there are 31536000 seconds, that is around 3 * 10^7, so it would take between 10^101 and 10^102 years to complete all possibilties. That is 1 followed by 101 or 102 zeros. Note that the Earth is only 4.54 billion years old (4.54 * 10^9), so it would take about 10^92 to 10^93 Earth ages to succeed.

Of course an adversary may want to use more than a single computer, so let's say it has access to a botnet of 100 billion (10^11) computers. Note that there are currently much less computers on the whole planet, but let's suppose in the age of IoT (internet of things) there will be that much, and the attacker manages to take control over all of them. Even if using that much computing power it would take between 10^90 and 10^91 years to succeed. That is still much (and I really mean MUCH) longer time than the Earth's age. But by then our Sun will have long become a red giant and the whole Earth will have been destroyed anyways at around 5* 10^9 years from now.

So to summarize if one uses a truly random seed, like the one you can make with the help of 3 dices of different color, and you keep your seed safe and never share it with anyone, you should have no worries of any IOTA theft ever. Even with all computing power available on Earth, nobody could steal your funds, at least not before all planets in our solar system are vaporized.

Thieves succeed only because they use the weakest link in the chain to break it. And unfortunately the weakest link is always the people themselves. When it comes to money, never trust third parties, never share your seed and make sure you keep it safe.

Also you may want to distribute money into multiple wallets using different, that were generated using different truly random seeds. That way your wallet (remember: whose balance is public to anyone!) will be less likely a target of attackers in the first place.
By MMkrypto - 21 Jan 2018

hi 
I dont know if I have to forget this; I realize that I lost all of IOTA about  17GI  out of my wallet today. Trying to log in and recover my balance I was so romantic that I thought it was matter of time.
But as I went to talk to people on cryptocompare iota forum, I realized all of them lost.
I have everything kind of record. I am wondering if having help?
KH
By MMkrypto - 21 Jan 2018

hi mine is showing still pending. but I am not that techy what can I do ?
By yusuf - 21 Jan 2018

3 Gi
BJFVIGKFWNJWSWSNZERCXAOGWDAKZGHLSATKVCMKPOO9ZOPQKRASJDBTNZEZGTWHLBFNPAWMKUD9CKTZ9
By vamshi - 21 Jan 2018

I lost mine! Showing confirmed and happened on 18th jan to this address JMFSOIUAZHLQXSFNEQGDHRSSNTTHOXFRCUWU9ZNMUHCFGDLZQSGNEXGWNKXQKUCCOIIOHR9WJXDRBFSCCO9RMGJCUD
By MMkrypto - 21 Jan 2018

Winston - 19 Jan 2018
To everyone posting with stolen balances:

You have all likely used malicious online seed generators when generating your seed. It looks like the owner of that website(s) decided to steal all of the victims' funds today, so we're seeing a bunch of panicked posts about stolen funds. 

Here's a great initial postmortem of the situation (written by Ralf) 

Instructions:


1. If the stolen transaction is still pending (it'll say "Pending" underneath the transaction in your wallet history), URGENTLY send your entire balance to an address in a different seed. You might need to use the CLI wallet in order to make this new transaction so that you can bypass the double spending prevention mechanism that's built into the GUI wallet. You need to get your new transaction confirmed before the stolen transaction is confirmed.
CLI Wallet -
https://github.com/MichaelSchwab/iota-commandline-wallet
https://github.com/TimSamshuijzen/iotaproxy
CLI Wallet Instructions: 
https://www.reddit.com/r/Iota/comments/7rlvx5/how_to_how_to_maybe_rescue_your_funds_before_the/ 
-- or --
https://forum.helloiota.com/post/8584

For those who need urgent real-time assistance, join the IOTA Discord channel and ask for help immediately: 
https://discord.gg/fNGZXvh

2. If the stolen transaction is confirmed (it'll say "Confirmed" underneath the transaction in your wallet history), unfortunately that IOTA is now gone forever. This is a terrible situation, but hopefully we can use this experience to inculcate safe seed generation practices. Please see the "Legal Action" addendum below for details on legal recourse.

The golden rule is to change 10 characters from whatever string of characters the seed generator gives you. Preferably, avoid online seed generators altogether. Here are the currently recognized best practices of seed generation by the IOTA community:
https://helloiota.com/generate-seed.html 
------------------------------------
Legal Action: Since IOTA is an open-source software project, there's no central entity that has control over balances or permissions. However, this doesn't mean that there's no legal recourse if you were one of the unfortunate victims of this crime! I've already informally encouraged some victims to link up and explore taking legal action against the perpetrators of this theft. Even if you can just find one other victim who lives in your country, it would be smart to team up with them and attempt to navigate the legal process together.

The more people who decide to take action, the better. Nobody is going to act on your behalf, and nothing will happen if everyone sits around waiting for something to happen. Please let me know if I can be of any help during this process by either posting here on the forum or messaging me in discord.


By MMkrypto - 21 Jan 2018

Hi 
as I posted a comment when I found my iota was still pending to have help, I dont know Discord can help.
Where do I join for legal action?
By MMkrypto - 21 Jan 2018

MMkrypto - 21 Jan 2018
Hi 
as I posted a comment when I found my iota was still pending to have help, I dont know Discord can help.
Where do I join for legal action? 
By fvantom - 21 Jan 2018

MMkrypto - 21 Jan 2018
Hi 
as I posted a comment when I found my iota was still pending to have help, I dont know Discord can help.
Where do I join for legal action?

I've send you a private message. Maybe I can help. I've been helping other people on here with similar problems.
By Horsemen - 21 Jan 2018

Hallo IOTA Team
Ihr gebt uns IOTA Kunden die Schuld an dieser Sch....!
Es liegt in EURER Verantwortung, dass mehrere Wochen ein SCAM Seed-Generator mit EUREM Namen an erster Stelle bei Google gelistet ist und ihr nichts bemerkt.
Wie wollt ihr erfolgreich sei, wenn ihr nicht einmal ein sicheres Wallet erstellen könnt?
Wenn ihr Charakter habt findet ihr für eure Kunden, die euch Milliarden Euro anvertraut haben, eine Lösung.
Ihr habt die materiellen und technischen Mittel dafür.
Es wird nicht gelingen diesen Skandal klein zu halten.

Hello IOTA team
You blame us IOTA customers for this sh ....!
It is YOUR responsibility that for several weeks a SCAM seed generator with EUREM name is listed first on Google and you will not notice.
How do you want to succeed if you can not even create a safe wallet?
If you have character you will find a solution for your customers who have entrusted you with billions of Euros.
You have the material and technical resources for it.
It will not succeed to keep this scandal small.
By Jannemann - 21 Jan 2018

Helloplease help me my iota have been stolen. these were sent to this address. it was 3270 pieces. I was devastated CRRAFWYRQ99SE9OYHZKIHKPDVGXKSSECOBZT9QRNLSSOAWULGPRXKHWHWGXJVUMGGXZQIXHTMEYKUN9PZVPK9DBSYC
By huberto20 - 21 Jan 2018

Hi

I lost 1000,896928 Mi from my wallet GHFODEFVBMLPHXIYZDQF9PCWLNVOGNDKLXJJKFYFAVSXHSTGO9QJZWJWJSTUEWLXUOAKTT9FOHAFFWIUDAYLTEXWSX
was  send to LOLHWNEANRBKQXM9AYGEXPIGKLHQAWESMSAGXWNQQLJENBWJYEJFBLGSYQ9XKTJMDBYZPRTYYBCYTIAECRVXNPSVP9 


Thx
By Winston - 21 Jan 2018

Horsemen - 21 Jan 2018
Hallo IOTA Team
Ihr gebt uns IOTA Kunden die Schuld an dieser Sch....!
Es liegt in EURER Verantwortung, dass mehrere Wochen ein SCAM Seed-Generator mit EUREM Namen an erster Stelle bei Google gelistet ist und ihr nichts bemerkt.
Wie wollt ihr erfolgreich sei, wenn ihr nicht einmal ein sicheres Wallet erstellen könnt?
Wenn ihr Charakter habt findet ihr für eure Kunden, die euch Milliarden Euro anvertraut haben, eine Lösung.
Ihr habt die materiellen und technischen Mittel dafür.
Es wird nicht gelingen diesen Skandal klein zu halten.

Hello IOTA team
You blame us IOTA customers for this sh ....!
It is YOUR responsibility that for several weeks a SCAM seed generator with EUREM name is listed first on Google and you will not notice.
How do you want to succeed if you can not even create a safe wallet?
If you have character you will find a solution for your customers who have entrusted you with billions of Euros.
You have the material and technical resources for it.
It will not succeed to keep this scandal small.

@Horsemen
"Hello IOTA team
You blame us IOTA customers for this sh ....!
It is YOUR responsibility that for several weeks a SCAM seed generator with EUREM name is listed first on Google and you will not notice.
How do you want to succeed if you can not even create a safe wallet?
If you have character you will find a solution for your customers who have entrusted you with billions of Euros.
You have the material and technical resources for it.
It will not succeed to keep this scandal small"

Thank you for the post, and welcome to the community. It's important to remember that this forum is simply a community run platform, and none of the IOTA Core team posts here to my knowledge. So you'll want to join the discord channel if you'd like to voice your concerns with them directly.

Another important thing to point out is that there are no IOTA customers. IOTA is simply a software protocol that users can either choose to use or choose not to use. There is no product, and there is no business plan. This is a very common misunderstanding by lots of people, so I don't mean to disparage or single you out here, but it provides a good learning opportunity. There's no board of directors sitting around trying to increase profit margins or optimize returns. These guys are just writing software and attempting to help get that software adopted in the business world. They will not be pursuing legal action on behalf of users, just as the Bitcoin developers have never pursued legal action on behalf of Mt. Gox customers -- it was up to those individual customers to pursue their own legal action in that case. Same thing here.

Next: Nobody is blaming anyone. Stating facts should be celebrated, and the facts are that many people used malicious online seed generators. When someone else has your seed, they have the same ability to spend the funds that belong to that seed as anyone else who has access to the seed. It's extremely important to use this event as a teaching opportunity to make sure that the community understands the massive dangers of using online seed generators. Let's not miss that opportunity by trying to assign blame.
By Amfcoin - 22 Jan 2018

pls help 7 gi is stolen, I cannot enter the root in terminal
By Amfcoin - 22 Jan 2018

is there another option to stop pending?
By Amfcoin - 22 Jan 2018

Hi all, i Used the seedgenerator and changed about 20 caracters offline, but even with this adjustments I have been hacked. I would like to join any (legal) actions in recover and have this stopped
By Amfcoin - 22 Jan 2018

Foundation of central coordinator, pls provide help!!
By Amfcoin - 22 Jan 2018

I DID change 20 characters and still have been hacked!!
By DenisDub - 22 Jan 2018

All My wallet have been stolen.
I lost 20.97Gi !!
The destination wallet was 
HPHQTRANKNABYOWJLS9OTAMRABRBQAAQA9LMIKVAZBNXUMAATDFPPWWJGGVQAOQJZJ9OAJHEQU9XPERPX
That's was January 19, 2018 02:22:50
Seeing the number of problems, I think you need to something.
I arrived on the seed generator website through yours after downloading the wallet.

Ethereum has forked for the Dao hack, you have to do something similar.

Don't let us like that !

Thanks
By sirchia - 22 Jan 2018


Hi,

my balance is now ZERO ,,

hash:

RDZEOGAYJGCKFMKCFDQS9LLYAUGYCRAMY9BIDIBUDVRYVEFLIIBMVVISYFMASR9QISVXG9LMFRJF99999

used iotaseed.io 2 months ago ,, changing some chars. not enough. 


By guidolenders - 22 Jan 2018

All my IOTA (397 MIOTA) has been stolen at 19/1/2018 03:35 from my IOTA light wallet and send to this adress:
YGCCEMWOJGEXFKHCWNNIGMFPIZDOYJYIJAOUAFGJVQUVVVODFOSFXYPWPI9UJNGQZXSXJVUPQQUKQFEWDX9YUZHCWD

This is the first ever wallet theft i encouraged while I just followed the guidelines how to set up the wallet!! Is there a way to advocate this issue with the adress i provided???

Hoping to get some support... 
By src - 22 Jan 2018

I lost 10,3 Gi.

https://thetangle.org/transaction/RMSGYHMQXKDVIB9PLLYATLQRWLQPFUIXPPAGKMRCCWGNNUPYUUPWNUDHBCUDMBWIKOLZRWP9QV9PA9999
By lostiota_j - 22 Jan 2018

This is also the first time I was scammed by following wallet documentaion... it stinks

56.55 Gi all lost!!

https://thetangle.org/transaction/YJGUHJWMB9DKCJJCVDKQLR9Y9JISORJGKYLIXNDKNCFXKMPVTSVSSOP9QXGLKVIBLLIUHXLXKFC999999

Is there anything that can be done yet?
By lostiota_j - 22 Jan 2018

lostiota_j - 22 Jan 2018
This is also the first time I was scammed by following wallet documentaion... it stinks

56.55 Gi all lost!!

https://thetangle.org/transaction/YJGUHJWMB9DKCJJCVDKQLR9Y9JISORJGKYLIXNDKNCFXKMPVTSVSSOP9QXGLKVIBLLIUHXLXKFC999999

Is there anything that can be done yet?

iotaseed.io was recommended to be used to help fix those had lost balance problem from the screwed up wallet release.

Well I think it's safe to say this is by far the worst wallet experience ever, no way this belongs as a top 10 coin. It is not ready
By lostiota_j - 22 Jan 2018

Lawsuits should start with iotaseed.io, iota.org, their foundation and name all the large companies, pushing this malware/software that is repeatly caused their users to lose funds and wallets. 

At this point, one must guess that the people behind iota are putting out bad wallet software to scam people of their coins.

$ whois iotaseed.io
Domain Name: IOTASEED.IO
Registry Domain ID: D503300000042872196-LRMS
Registrar WHOIS Server: whois.namecheap.com
Registrar URL: www.namecheap.com
Updated Date: 2017-10-15T20:31:54Z
Creation Date: 2017-08-16T12:11:37Z
Registry Expiry Date: 2018-08-16T12:11:37Z
Registrar Registration Expiration Date:
Registrar: NameCheap, Inc
Registrar IANA ID: 1068
Registrar Abuse Contact Email: abuse@namecheap.com
Registrar Abuse Contact Phone: +1.6613102107
Reseller:
Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
Registrant Name: WhoisGuard Protected
Registrant Organization: WhoisGuard, Inc.
Name Server: DNS1.NAMECHEAPHOSTING.COM
Name Server: DNS2.NAMECHEAPHOSTING.COM
DNSSEC: unsigned
URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/
>>> Last update of WHOIS database: 2018-01-22T15:40:24Z <<<

Website image:
https://imgur.com/POdIuwX
Quote "Taken down. Apologies"
By lostiota_j - 22 Jan 2018

lostiota_j - 22 Jan 2018
Lawsuits should start with iotaseed.io, iota.org, their foundation and name all the large companies, pushing this malware/software that is repeatly caused their users to lose funds and wallets. 

At this point, one must guess that the people behind iota are putting out bad wallet software to scam people of their coins.

$ whois iotaseed.io
Domain Name: IOTASEED.IO
Registry Domain ID: D503300000042872196-LRMS
Registrar WHOIS Server: whois.namecheap.com
Registrar URL: www.namecheap.com
Updated Date: 2017-10-15T20:31:54Z
Creation Date: 2017-08-16T12:11:37Z
Registry Expiry Date: 2018-08-16T12:11:37Z
Registrar Registration Expiration Date:
Registrar: NameCheap, Inc
Registrar IANA ID: 1068
Registrar Abuse Contact Email: abuse@namecheap.com
Registrar Abuse Contact Phone: +1.6613102107
Reseller:
Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
Registrant Name: WhoisGuard Protected
Registrant Organization: WhoisGuard, Inc.
Name Server: DNS1.NAMECHEAPHOSTING.COM
Name Server: DNS2.NAMECHEAPHOSTING.COM
DNSSEC: unsigned
URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/
>>> Last update of WHOIS database: 2018-01-22T15:40:24Z <<<

Website image:
https://imgur.com/POdIuwX
Quote "Taken down. Apologies"

I forgot to include the CEO in charge of this disaster at IOTA...
David Sønstebø @DavidSonstebo
By richardquaker - 22 Jan 2018

Lost 124 Miotas, my PC is not hacked! 
https://thetangle.org/transaction/TVPUPGK9GZSZFOAH9MOVISLOUZSMRFWNZEWKDXTAMBFTJFBHQBIIIUO9CVBKRHOVGVXMAQANHEYP99999
By hamijam - 22 Jan 2018

4.78408 Gi stolen by iotaseed.io and sent to Addr.: https://thetangle.org/address/MKPMJQSEURTQMCFXBEIXAUXZRHYQCWTVOTROAUAZWPNZYJRSXGZHMHZIWWAEVHJVGV9TWLCOZUXBMETKXODAAODZVD
By MMkrypto - 22 Jan 2018

Seeing this endless list, this is beyond description. I dont know if blaming or judging victims is enough to figure out this situation for the IOTA team. Checking the news now, the article indicates, "Hackers has reportedly broke into an online IOTA seed generator website iotaseed.io"  My question is, does that mean if the iotaseed site was originally related to IOTA.
Although I got into cryptoworld lately, this would be one of the uglist and most ridiculous incident by now. Quote from the same article, "The attackers knew the seeds. You invited them into your wallet....by handing them your keys on a silver platter...." Excuse me? How IOTA  (legit) tech was open to illegit seed randomly generated by hackers? was it the wallet highly advanced tech system developed for users or technicians for your own community? The wallet system was totally unprotected which could set at least a second key recognizing only IOTA system. All the victims should gather an integrity to act out for our rights and funds. 
Come and  lets talk about our loss
@
IOTAS - let's talk.
By MMkrypto - 22 Jan 2018

MMkrypto - 22 Jan 2018
Seeing this endless list, this is beyond description. I dont know if blaming or judging victims is enough to figure out this situation for the IOTA team. Checking the news now, the article indicates, "Hackers has reportedly broke into an online IOTA seed generator website iotaseed.io"  My question is, does that mean if the iotaseed site was originally related to IOTA.
Although I got into cryptoworld lately, this would be one of the uglist and most ridiculous incident by now. Quote from the same article, "The attackers knew the seeds. You invited them into your wallet....by handing them your keys on a silver platter...." Excuse me? How IOTA  (legit) tech was open to illegit seed randomly generated by hackers? was it the wallet highly advanced tech system developed for users or technicians for your own community? The wallet system was totally unprotected which could set at least a second key recognizing only IOTA system. All the victims should gather an integrity to act out for our rights and funds. 
Come and  lets talk about our loss
@
IOTAS - let's talk.

telegram
By Saen7 - 22 Jan 2018

Amount:
200.145384 Mi

Sent to this Address:
CTORMCUAAMTBPK9XPSQEHJPARDRA9XTPUWC9EEARSWMZNTYAWXGLEVXVKQDXKBHARUFZEKBGSVKFJYHMZ

Transaction Hash:
UNVBMBTCRRHEGFFHTIFCSZKMRBGDIKYP9ARTGJMWXWPQKI9I9JDDTGL9XCVYLJIONCUBOCEYCLMZ99999
By MMkrypto - 22 Jan 2018

lostiota_j - 22 Jan 2018
Lawsuits should start with iotaseed.io, iota.org, their foundation and name all the large companies, pushing this malware/software that is repeatly caused their users to lose funds and wallets. 

At this point, one must guess that the people behind iota are putting out bad wallet software to scam people of their coins.

$ whois iotaseed.io
Domain Name: IOTASEED.IO
Registry Domain ID: D503300000042872196-LRMS
Registrar WHOIS Server: whois.namecheap.com
Registrar URL: www.namecheap.com
Updated Date: 2017-10-15T20:31:54Z
Creation Date: 2017-08-16T12:11:37Z
Registry Expiry Date: 2018-08-16T12:11:37Z
Registrar Registration Expiration Date:
Registrar: NameCheap, Inc
Registrar IANA ID: 1068
Registrar Abuse Contact Email: abuse@namecheap.com
Registrar Abuse Contact Phone: +1.6613102107
Reseller:
Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
Registrant Name: WhoisGuard Protected
Registrant Organization: WhoisGuard, Inc.
Name Server: DNS1.NAMECHEAPHOSTING.COM
Name Server: DNS2.NAMECHEAPHOSTING.COM
DNSSEC: unsigned
URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/
>>> Last update of WHOIS database: 2018-01-22T15:40:24Z <<<

Website image:
https://imgur.com/POdIuwX
Quote "Taken down. Apologies"
By MMkrypto - 22 Jan 2018

lostiota_j - 22 Jan 2018
lostiota_j - 22 Jan 2018
Lawsuits should start with iotaseed.io, iota.org, their foundation and name all the large companies, pushing this malware/software that is repeatly caused their users to lose funds and wallets. 

At this point, one must guess that the people behind iota are putting out bad wallet software to scam people of their coins.

$ whois iotaseed.io
Domain Name: IOTASEED.IO
Registry Domain ID: D503300000042872196-LRMS
Registrar WHOIS Server: whois.namecheap.com
Registrar URL: www.namecheap.com
Updated Date: 2017-10-15T20:31:54Z
Creation Date: 2017-08-16T12:11:37Z
Registry Expiry Date: 2018-08-16T12:11:37Z
Registrar Registration Expiration Date:
Registrar: NameCheap, Inc
Registrar IANA ID: 1068
Registrar Abuse Contact Email: abuse@namecheap.com
Registrar Abuse Contact Phone: +1.6613102107
Reseller:
Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
Registrant Name: WhoisGuard Protected
Registrant Organization: WhoisGuard, Inc.
Name Server: DNS1.NAMECHEAPHOSTING.COM
Name Server: DNS2.NAMECHEAPHOSTING.COM
DNSSEC: unsigned
URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/
>>> Last update of WHOIS database: 2018-01-22T15:40:24Z <<<

Website image:
https://imgur.com/POdIuwX
Quote "Taken down. Apologies"

I forgot to include the CEO in charge of this disaster at IOTA...
David Sønstebø @DavidSonstebo

Thanks for your quick reaction for this situation.  so what can I do? I lost 17GI. Do I send an email posted in your email?
By Winston - 22 Jan 2018

MMkrypto - 22 Jan 2018
Seeing this endless list, this is beyond description. I dont know if blaming or judging victims is enough to figure out this situation for the IOTA team. Checking the news now, the article indicates, "Hackers has reportedly broke into an online IOTA seed generator website iotaseed.io"  My question is, does that mean if the iotaseed site was originally related to IOTA.
Although I got into cryptoworld lately, this would be one of the uglist and most ridiculous incident by now. Quote from the same article, "The attackers knew the seeds. You invited them into your wallet....by handing them your keys on a silver platter...." Excuse me? How IOTA  (legit) tech was open to illegit seed randomly generated by hackers? was it the wallet highly advanced tech system developed for users or technicians for your own community? The wallet system was totally unprotected which could set at least a second key recognizing only IOTA system. All the victims should gather an integrity to act out for our rights and funds. 
Come and  lets talk about our loss
@
IOTAS - let's talk.

@MMkrypto
"My question is, does that mean if the iotaseed site was originally related to IOTA."
The IOTA Foundation only has one official website. iota.org 
The Foundation and community have stressed from the start the importance of safe seed generation practices (i.e. not using online seed generators)
The scam websites are not related to the official IOTA project.

" Excuse me? How IOTA (legit) tech was open to illegit seed randomly generated by hackers? was it the wallet highly advanced tech system developed for users or technicians for your own community? The wallet system was totally unprotected which could set at least a second key recognizing only IOTA system."
Interestingly, the IOTA wallet itself is one of the most secure wallets out there. The problem is that the UX is bad for newcomers who don't know how to use it. This is not putting blame on anyone, just stating facts (as evidenced by the recent event). It's important to understand that there were no 'hackers'. It was just people who convinced other people to use seeds that were also held by thieves. Social engineering, not software hacks.

"All the victims should gather an integrity to act out for our rights and funds."
Absolutely! Take legal action against the criminals who created the scam websites and stole your funds. Someone needs to spear head a class action lawsuit so that others can join
By lostiota_j - 22 Jan 2018

I see the developers are willing to blame the users, ages old battle. However, it's a shame they can't see their role in this. So many people got burned again.
archive.org shows the iota seed generator required as well as the forums posts about it.
https://imgur.com/AKpd8Af

By MMkrypto - 22 Jan 2018

lostiota_j - 22 Jan 2018
I see the developers are willing to blame the users, ages old battle. However, it's a shame they can't see their role in this. So many people got burned again.
archive.org shows the iota seed generator required as well as the forums posts about it.
https://imgur.com/AKpd8Af


I agree. Unless users' community, how the IOTA tech can have come to this far? 
By lostiota_j - 22 Jan 2018

$ whois iota.org
Domain Name: IOTA.ORG
Registry Domain ID: D2166953-LROR
Registrar WHOIS Server: whois.enom.com
Registrar URL: http://www.enom.com
Updated Date: 2018-01-04T10:14:59Z
Creation Date: 1997-09-30T04:00:00Z
Registry Expiry Date: 2018-09-29T04:00:00Z
Registrar Registration Expiration Date:
Registrar: eNom, Inc.
Registrar IANA ID: 48
Registrar Abuse Contact Email: abuse@enom.com
Registrar Abuse Contact Phone: +1.4252982646
Reseller:
Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
Registry Registrant ID: C200845408-LROR
Registrant Name: Dominik Schiener
Registrant Organization: IOTA Foundation
Registrant Street: Strassbrugerstrasse 55
Registrant Street: c/o Nextland
Registrant City: Berlin
Registrant State/Province: Berlin
Registrant Postal Code: 10405
Registrant Country: DE
Registrant Phone: +49.1431240432
Registrant Phone Ext:
Registrant Fax:
Registrant Fax Ext:
Registrant Email: contact@iota.org
Registry Admin ID: C200845018-LROR
Admin Name: Dominik Schiener
Admin Organization: IOTA Foundation
Admin Street: Schluterstrasse 55
Admin City: Berlin
Admin State/Province: Berlin
Admin Postal Code: 10629
Admin Country: DE
Admin Phone: +49.1431240432
Admin Phone Ext:
Admin Fax:
Admin Fax Ext:
Admin Email: contact@iota.org
Registry Admin ID: C200845022-LROR
Admin Name: Dominik Schiener
Admin Organization: IOTA Foundation
Admin Street: Schluterstrasse 55
Admin City: Berlin
Admin State/Province: Berlin
Admin Postal Code: 10629
Admin Country: DE
Admin Phone: +49.1431240432
Admin Phone Ext:
Admin Fax:
Admin Fax Ext:
Admin Email: contact@iota.org
Registry Admin ID: C200845408-LROR
Admin Name: Dominik Schiener
Admin Organization: IOTA Foundation
Admin Street: Strassbrugerstrasse 55
Admin Street: c/o Nextland
Admin City: Berlin
Admin State/Province: Berlin
Admin Postal Code: 10405
Admin Country: DE
Admin Phone: +49.1431240432
Admin Phone Ext:
Admin Fax:
Admin Fax Ext:
Admin Email: contact@iota.org
Registry Tech ID: C200845018-LROR
Tech Name: Dominik Schiener
Tech Organization: IOTA Foundation
Tech Street: Schluterstrasse 55
Tech City: Berlin
Tech State/Province: Berlin
Tech Postal Code: 10629
Tech Country: DE
Tech Phone: +49.1431240432
Tech Phone Ext:
Tech Fax:
Tech Fax Ext:
Tech Email: contact@iota.org
Registry Tech ID: C200845022-LROR
Tech Name: Dominik Schiener
Tech Organization: IOTA Foundation
Tech Street: Schluterstrasse 55
Tech City: Berlin
Tech State/Province: Berlin
Tech Postal Code: 10629
Tech Country: DE
Tech Phone: +49.1431240432
Tech Phone Ext:
Tech Fax:
Tech Fax Ext:
Tech Email: contact@iota.org
Registry Tech ID: C200845408-LROR
Tech Name: Dominik Schiener
Tech Organization: IOTA Foundation
Tech Street: Strassbrugerstrasse 55
Tech Street: c/o Nextland
Tech City: Berlin
Tech State/Province: Berlin
Tech Postal Code: 10405
Tech Country: DE
Tech Phone: +49.1431240432
Tech Phone Ext:
Tech Fax:
Tech Fax Ext:
Tech Email: contact@iota.org
Name Server: DARA.NS.CLOUDFLARE.COM
Name Server: MITCH.NS.CLOUDFLARE.COM
DNSSEC: unsigned
URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/
>>> Last update of WHOIS database: 2018-01-22T19:37:00Z <<<
By lostiota_j - 22 Jan 2018

So after the largest theft so far, IOTA.org is doing a snapshot of all the user's balances to determine the direction of the next fork.

So many people lost money and dev's arrogance is the part that stinks the most.

Easy solution, backdate the snapshot as of 1-18-2018. 

*edit date to 24 hours before first reported theft.
By Winston - 22 Jan 2018

lostiota_j - 22 Jan 2018
I see the developers are willing to blame the users, ages old battle. However, it's a shame they can't see their role in this. So many people got burned again.
archive.org shows the iota seed generator required as well as the forums posts about it.
https://imgur.com/AKpd8Af


@lostiota_j
"I see the developers are willing to blame the users, ages old battle. However, it's a shame they can't see their role in this. So many people got burned again."

This is an definitely an extremely frustrating situation for everyone involved. Could you point to the comments from developers who are blaming the users? I'm curious to see that discourse.
By lostiota_j - 22 Jan 2018

Winston - 22 Jan 2018
lostiota_j - 22 Jan 2018
I see the developers are willing to blame the users, ages old battle. However, it's a shame they can't see their role in this. So many people got burned again.
archive.org shows the iota seed generator required as well as the forums posts about it.
https://imgur.com/AKpd8Af


@lostiota_j
"I see the developers are willing to blame the users, ages old battle. However, it's a shame they can't see their role in this. So many people got burned again."

This is an definitely an extremely frustrating situation for everyone involved. Could you point to the comments from developers who are blaming the users? I'm curious to see that discourse.

I think this about sums it up, people are asking for a response to this theft and what is going to be done about it. Right now it's trying to be ignored and blamed on users... oh yes lots of lost money too. 

David Sønstebø?
@DavidSonstebo
Replying to @AltcoinBio
You might want to see a doctor.

In reply to a news request for information regarding the substantial loss of user's IOTA funds
By MMkrypto - 22 Jan 2018

Winston - 22 Jan 2018
lostiota_j - 22 Jan 2018
I see the developers are willing to blame the users, ages old battle. However, it's a shame they can't see their role in this. So many people got burned again.
archive.org shows the iota seed generator required as well as the forums posts about it.
https://imgur.com/AKpd8Af


@lostiota_j
"I see the developers are willing to blame the users, ages old battle. However, it's a shame they can't see their role in this. So many people got burned again."

This is an definitely an extremely frustrating situation for everyone involved. Could you point to the comments from developers who are blaming the users? I'm curious to see that discourse.

I am wondering if IOTA can take any action link to exchanges considering that thieves (group or individuals) will bring tons of IOTA into exchanges (not many IOTA exchanges currently) and cash them. Is there any action IOTA team can take for this users community?
By Winston - 22 Jan 2018

MMkrypto - 22 Jan 2018
Winston - 22 Jan 2018
lostiota_j - 22 Jan 2018
I see the developers are willing to blame the users, ages old battle. However, it's a shame they can't see their role in this. So many people got burned again.
archive.org shows the iota seed generator required as well as the forums posts about it.
https://imgur.com/AKpd8Af


@lostiota_j
"I see the developers are willing to blame the users, ages old battle. However, it's a shame they can't see their role in this. So many people got burned again."

This is an definitely an extremely frustrating situation for everyone involved. Could you point to the comments from developers who are blaming the users? I'm curious to see that discourse.

I am wondering if IOTA can take any action link to exchanges considering that thieves (group or individuals) will bring tons of IOTA into exchanges (not many IOTA exchanges currently) and cash them. Is there any action IOTA team can take for this users community?

@MMkrypto
The Foundation can't pursue legal action or anything, and there's nothing they can do other than to alert exchanges of this weekend's events. We've compiled a pretty good blacklist of addresses so far that we can give to the Foundation (they are aware of this list). But everything is up to individual community members, ya know? People need to be banding together to pursue the thief by reporting the theft to their local authorities and looking into filing for legal action.

I don't really know anything about this stuff though. I'm just some random guy who volunteers his free time to answer questions here on the forum. This is all way over my head. It seemed logical to write a few threads that would allow the community to come together and pool their knowledge and resources in an effort to resolve this situation. But who know how that'll play out. I hope my (very) minimal efforts here have been worthwhile
By vittu - 22 Jan 2018


APZL9YYTQZXUZUOZ9KMVP9IMXBZNYX9QMERGVJ9K9QXZQACSFEUIFIDOOLSPUZGHG9LCRSVQQIVYPMRMDQQIEKGVFC

By MMkrypto - 22 Jan 2018

Winston - 22 Jan 2018
MMkrypto - 22 Jan 2018
Winston - 22 Jan 2018
lostiota_j - 22 Jan 2018
I see the developers are willing to blame the users, ages old battle. However, it's a shame they can't see their role in this. So many people got burned again.
archive.org shows the iota seed generator required as well as the forums posts about it.
https://imgur.com/AKpd8Af


@lostiota_j
"I see the developers are willing to blame the users, ages old battle. However, it's a shame they can't see their role in this. So many people got burned again."

This is an definitely an extremely frustrating situation for everyone involved. Could you point to the comments from developers who are blaming the users? I'm curious to see that discourse.

I am wondering if IOTA can take any action link to exchanges considering that thieves (group or individuals) will bring tons of IOTA into exchanges (not many IOTA exchanges currently) and cash them. Is there any action IOTA team can take for this users community?

@MMkrypto
The Foundation can't pursue legal action or anything, and there's nothing they can do other than to alert exchanges of this weekend's events. We've compiled a pretty good blacklist of addresses so far that we can give to the Foundation (they are aware of this list). But everything is up to individual community members, ya know? People need to be banding together to pursue the thief by reporting the theft to their local authorities and looking into filing for legal action.

I don't really know anything about this stuff though. I'm just some random guy who volunteers his free time to answer questions here on the forum. This is all way over my head. It seemed logical to write a few threads that would allow the community to come together and pool their knowledge and resources in an effort to resolve this situation. But who know how that'll play out. I hope my (very) minimal efforts here have been worthwhile

thanks for your reply Winstonton, 
By lostiota_j - 22 Jan 2018

Winston - 22 Jan 2018
MMkrypto - 22 Jan 2018
Winston - 22 Jan 2018
lostiota_j - 22 Jan 2018
I see the developers are willing to blame the users, ages old battle. However, it's a shame they can't see their role in this. So many people got burned again.
archive.org shows the iota seed generator required as well as the forums posts about it.
https://imgur.com/AKpd8Af


@lostiota_j
"I see the developers are willing to blame the users, ages old battle. However, it's a shame they can't see their role in this. So many people got burned again."

This is an definitely an extremely frustrating situation for everyone involved. Could you point to the comments from developers who are blaming the users? I'm curious to see that discourse.

I am wondering if IOTA can take any action link to exchanges considering that thieves (group or individuals) will bring tons of IOTA into exchanges (not many IOTA exchanges currently) and cash them. Is there any action IOTA team can take for this users community?

@MMkrypto
The Foundation can't pursue legal action or anything, and there's nothing they can do other than to alert exchanges of this weekend's events. We've compiled a pretty good blacklist of addresses so far that we can give to the Foundation (they are aware of this list). But everything is up to individual community members, ya know? People need to be banding together to pursue the thief by reporting the theft to their local authorities and looking into filing for legal action.

I don't really know anything about this stuff though. I'm just some random guy who volunteers his free time to answer questions here on the forum. This is all way over my head. It seemed logical to write a few threads that would allow the community to come together and pool their knowledge and resources in an effort to resolve this situation. But who know how that'll play out. I hope my (very) minimal efforts here have been worthwhile

Also thank you for your reply and help. But I this must b wrong.  A foundation can initiate a class action suit on behalf of the users of this community.

Isn't that why they exist, and if they can not help resolve this then what are they good for?
By LuckyDude - 22 Jan 2018

Hello, I am confused by the whole thing.
My balance is still in the wallet, but transaction is pending.
TCYIOHEKE9ANDPCNZZAQMJKKTRXXNAIG9ORFXUWSCUCYFUXCPMBAVUCQBOATFSTXVBTGGJTZCDMRNXHR9NGWFPRDJW
this is my adress. What can I do to stop the transaction?
Thx for help.
Antworten gerne auch auf deutsch
Danke für die Hilfe
By mm1alf - 22 Jan 2018

Winston, I do realize that you are an everyday individual. Here's my problem and probably many others have the same problem. How do we know "WHO" took our investment from us? All we have are our seeds, hashes, and tangles. We have no hard evidence to go to the authorities with. As another "FAMILY" member made note of that it's IOTAS system that was hacked and not just 1 or 2 accounts. This is their responsibility to respond to the situation and not let you handle all the heat about it. I know you want to do the right thing for us but you don't have the pay grade to go with all this aggravation. I'm on your side BTW.
By karolgs - 22 Jan 2018

Hi
I lost 3.001 Gi . The funds was send to AFUKOEVPJLMVCSEAQIFZDXARCS9CEBGAHNWMJZQHQP9TLCLKUCFUSQZOZFGZKSLZSO9KNSPRKUOVMRVSXFVIETDGQW




By Daniel - 22 Jan 2018

Someone has stolen 792.1 IOTA from my wallet.

The receiving adress was:

HRDQDNCEACXQIRLK9OXPDHHBVQPCVDDWLUGKBYHXYPNQCFUBNCUPBYEQACAFDPGKGWOILLHIMLFF
Z9999

Is there a way to get my Iota‘s back?

Thanks for any help,

Daniel
By Daniel - 22 Jan 2018

Hi all,

Someone has stolen 792.1 IOTA from my wallet.

The receiving adress was:

HRDQDNCEACXQIRLK9OXPDHHBVQPCVDDWLUGKBYHXYPNQCFUBNCUPBYEQACAFDPGKGWOILLHIMLFFZ9999

Is there a way to get my Iota‘s back?

Thanks for any help,

Daniel
By Winston - 22 Jan 2018

lostiota_j - 22 Jan 2018
Winston - 22 Jan 2018
MMkrypto - 22 Jan 2018
Winston - 22 Jan 2018
lostiota_j - 22 Jan 2018
I see the developers are willing to blame the users, ages old battle. However, it's a shame they can't see their role in this. So many people got burned again.
archive.org shows the iota seed generator required as well as the forums posts about it.
https://imgur.com/AKpd8Af


@lostiota_j
"I see the developers are willing to blame the users, ages old battle. However, it's a shame they can't see their role in this. So many people got burned again."

This is an definitely an extremely frustrating situation for everyone involved. Could you point to the comments from developers who are blaming the users? I'm curious to see that discourse.

I am wondering if IOTA can take any action link to exchanges considering that thieves (group or individuals) will bring tons of IOTA into exchanges (not many IOTA exchanges currently) and cash them. Is there any action IOTA team can take for this users community?

@MMkrypto
The Foundation can't pursue legal action or anything, and there's nothing they can do other than to alert exchanges of this weekend's events. We've compiled a pretty good blacklist of addresses so far that we can give to the Foundation (they are aware of this list). But everything is up to individual community members, ya know? People need to be banding together to pursue the thief by reporting the theft to their local authorities and looking into filing for legal action.

I don't really know anything about this stuff though. I'm just some random guy who volunteers his free time to answer questions here on the forum. This is all way over my head. It seemed logical to write a few threads that would allow the community to come together and pool their knowledge and resources in an effort to resolve this situation. But who know how that'll play out. I hope my (very) minimal efforts here have been worthwhile

Also thank you for your reply and help. But I this must b wrong.  A foundation can initiate a class action suit on behalf of the users of this community.

Isn't that why they exist, and if they can not help resolve this then what are they good for?

@lostiota_j
"Isn't that why they exist, and if they can not help resolve this then what are they good for?"

I don't know anything about the legal matters, but the Foundation's sole purpose is to develop a software protocol. So they're not good for anything besides researching mathematics/economic conditions, writing code, and making business partnerships. Anything outside of that narrow scope is not really value added -- it would be much more efficient for the legal minded individuals in the community to work together and pursue the criminal(s). If something comes up in the legal case where extra information is needed, it's probably safe to speculate that the Foundation would provide authorities with whatever limited information they have in order to help the victims' case. 
By Winston - 22 Jan 2018

LuckyDude - 22 Jan 2018
Hello, I am confused by the whole thing.
My balance is still in the wallet, but transaction is pending.
TCYIOHEKE9ANDPCNZZAQMJKKTRXXNAIG9ORFXUWSCUCYFUXCPMBAVUCQBOATFSTXVBTGGJTZCDMRNXHR9NGWFPRDJW
this is my adress. What can I do to stop the transaction?
Thx for help.
Antworten gerne auch auf deutsch
Danke für die Hilfe

@LuckyDude
URGENTLY follow these steps to save your balance from being stolen:
1. If the stolen transaction is still pending (it'll say "Pending" underneath the transaction in your wallet history), URGENTLY send your entire balance to an address in a different seed. You might need to use the CLI wallet in order to make this new transaction so that you can bypass the double spending prevention mechanism that's built into the GUI wallet. You need to get your new transaction confirmed before the stolen transaction is confirmed.
CLI Wallet -
https://github.com/MichaelSchwab/iota-commandline-wallet
https://github.com/TimSamshuijzen/iotaproxy
CLI Wallet Instructions:
https://www.reddit.com/r/Iota/comments/7rlvx5/how_to_how_to_maybe_rescue_your_funds_before_the/
-- or -- https://forum.helloiota.com/post/8584

For those who need urgent real-time assistance, join the IOTA Discord channel and ask for help immediately:
https://discord.gg/fNGZXvh
By Winston - 22 Jan 2018

mm1alf - 22 Jan 2018
Winston, I do realize that you are an everyday individual. Here's my problem and probably many others have the same problem. How do we know "WHO" took our investment from us? All we have are our seeds, hashes, and tangles. We have no hard evidence to go to the authorities with. As another "FAMILY" member made note of that it's IOTAS system that was hacked and not just 1 or 2 accounts. This is their responsibility to respond to the situation and not let you handle all the heat about it. I know you want to do the right thing for us but you don't have the pay grade to go with all this aggravation. I'm on your side BTW.

@mm1alf
Thank you for the post, and your kind words are very much appreciated.

I guess we'll just have to see how the situation plays out. I hate seeing so many people lose their funds, so I'm going to continue trying to help however I can here on the forum.
By karolgs - 22 Jan 2018

My transaction is confirmed, all it's gonne, very painful lesson.
By lostiota_j - 22 Jan 2018

Winston - 22 Jan 2018
lostiota_j - 22 Jan 2018
Winston - 22 Jan 2018
MMkrypto - 22 Jan 2018
Winston - 22 Jan 2018
lostiota_j - 22 Jan 2018
I see the developers are willing to blame the users, ages old battle. However, it's a shame they can't see their role in this. So many people got burned again.
archive.org shows the iota seed generator required as well as the forums posts about it.
https://imgur.com/AKpd8Af


@lostiota_j
"I see the developers are willing to blame the users, ages old battle. However, it's a shame they can't see their role in this. So many people got burned again."

This is an definitely an extremely frustrating situation for everyone involved. Could you point to the comments from developers who are blaming the users? I'm curious to see that discourse.

I am wondering if IOTA can take any action link to exchanges considering that thieves (group or individuals) will bring tons of IOTA into exchanges (not many IOTA exchanges currently) and cash them. Is there any action IOTA team can take for this users community?

@MMkrypto
The Foundation can't pursue legal action or anything, and there's nothing they can do other than to alert exchanges of this weekend's events. We've compiled a pretty good blacklist of addresses so far that we can give to the Foundation (they are aware of this list). But everything is up to individual community members, ya know? People need to be banding together to pursue the thief by reporting the theft to their local authorities and looking into filing for legal action.

I don't really know anything about this stuff though. I'm just some random guy who volunteers his free time to answer questions here on the forum. This is all way over my head. It seemed logical to write a few threads that would allow the community to come together and pool their knowledge and resources in an effort to resolve this situation. But who know how that'll play out. I hope my (very) minimal efforts here have been worthwhile

Also thank you for your reply and help. But I this must b wrong.  A foundation can initiate a class action suit on behalf of the users of this community.

Isn't that why they exist, and if they can not help resolve this then what are they good for?

@lostiota_j
"Isn't that why they exist, and if they can not help resolve this then what are they good for?"

I don't know anything about the legal matters, but the Foundation's sole purpose is to develop a software protocol. So they're not good for anything besides researching mathematics/economic conditions, writing code, and making business partnerships. Anything outside of that narrow scope is not really value added -- it would be much more efficient for the legal minded individuals in the community to work together and pursue the criminal(s). If something comes up in the legal case where extra information is needed, it's probably safe to speculate that the Foundation would provide authorities with whatever limited information they have in order to help the victims' case. 

As a long time supporter, after this I can only say the foundation seems only good at making business partnerships, the code is dangerous at best.

Maybe after a CEO at one of their business partnerships losses all his coins, then @DavidSonstebolisten will feel he needs to respond to this wallet failure. /
By rixster - 22 Jan 2018

hi, I'm another that seems to of been hacked. lost 105.4 mi. 
the address it went to is :? XTWBZTKIHCIHYBYNOHHXFJ9XLF9COCTLNAVMKVKKFELASASUOXDO9IKDES9NWRTLUWCJLOAPHPOYWROCZFCALJNYQC
confirmed!!!!!
it baffles me that these so called geniuses at iota and other companies can build platforms to run the world, but can't build a wallet that is secure for us to store the their coins on, that they want us to buy???? I wonder how many people won't be buying iotas after this????  
By MMkrypto - 22 Jan 2018

Winston - 22 Jan 2018
MMkrypto - 22 Jan 2018
Winston - 22 Jan 2018
lostiota_j - 22 Jan 2018
I see the developers are willing to blame the users, ages old battle. However, it's a shame they can't see their role in this. So many people got burned again.
archive.org shows the iota seed generator required as well as the forums posts about it.
https://imgur.com/AKpd8Af


@lostiota_j
"I see the developers are willing to blame the users, ages old battle. However, it's a shame they can't see their role in this. So many people got burned again."

This is an definitely an extremely frustrating situation for everyone involved. Could you point to the comments from developers who are blaming the users? I'm curious to see that discourse.

I am wondering if IOTA can take any action link to exchanges considering that thieves (group or individuals) will bring tons of IOTA into exchanges (not many IOTA exchanges currently) and cash them. Is there any action IOTA team can take for this users community?

@MMkrypto
The Foundation can't pursue legal action or anything, and there's nothing they can do other than to alert exchanges of this weekend's events. We've compiled a pretty good blacklist of addresses so far that we can give to the Foundation (they are aware of this list). But everything is up to individual community members, ya know? People need to be banding together to pursue the thief by reporting the theft to their local authorities and looking into filing for legal action.

I don't really know anything about this stuff though. I'm just some random guy who volunteers his free time to answer questions here on the forum. This is all way over my head. It seemed logical to write a few threads that would allow the community to come together and pool their knowledge and resources in an effort to resolve this situation. But who know how that'll play out. I hope my (very) minimal efforts here have been worthwhile

Reading through the threads, almost all of IOTAs looks stolen in 1/19. Also the hash includes many 9999999... it looks like something coincident with certain IOTA system activity related. It looks too unclear to blame solely users online downloads. 
By domtasc - 22 Jan 2018

My Iota were also stolen. 3.879 Gi. The seed was also generated at Iotaseed. io. I air-gapped my computer to generate the seed, so I guess I though I was safe. Nope, the "random" seeds weren't random. Iota devs are reckless to not have a seed generator built into the wallet, but none of us should have generated a seed from a website, even if we opened the page and then went offline to generate the seed. The TX hash is TWTAXSLGSMDKKGAKYHYBDI99BFDDAYRGVESXEDTRMUMESUSVDLPGLHEHDLDXFPSFNRFPXWWTSJCOZ9999

By Ataurus27 - 23 Jan 2018

I lost my 886.2 MIOTA too.   It is a sad day.  Looks like mine was stolen on 1/18/2018 at 18:42.
TX hash :NDVRYZSCXVDAUBKTJTVVLP9KKQFJEVGJPKTJGD9FTIHWAYMRSWGLYICXDRJ9QVMNUIGHXKRZ9JNGA9999

address: ENNKBZQWPOHNOJBVRZPNAIW9KJQBVVCQQHOCCOH9ZPUT9DVEHAAMEGEKGBCRLYZSEJTICHVNAWVPCCVDBWVQTNF9VZ

By Winston - 23 Jan 2018

MMkrypto - 22 Jan 2018
Winston - 22 Jan 2018
MMkrypto - 22 Jan 2018
Winston - 22 Jan 2018
lostiota_j - 22 Jan 2018
I see the developers are willing to blame the users, ages old battle. However, it's a shame they can't see their role in this. So many people got burned again.
archive.org shows the iota seed generator required as well as the forums posts about it.
https://imgur.com/AKpd8Af


@lostiota_j
"I see the developers are willing to blame the users, ages old battle. However, it's a shame they can't see their role in this. So many people got burned again."

This is an definitely an extremely frustrating situation for everyone involved. Could you point to the comments from developers who are blaming the users? I'm curious to see that discourse.

I am wondering if IOTA can take any action link to exchanges considering that thieves (group or individuals) will bring tons of IOTA into exchanges (not many IOTA exchanges currently) and cash them. Is there any action IOTA team can take for this users community?

@MMkrypto
The Foundation can't pursue legal action or anything, and there's nothing they can do other than to alert exchanges of this weekend's events. We've compiled a pretty good blacklist of addresses so far that we can give to the Foundation (they are aware of this list). But everything is up to individual community members, ya know? People need to be banding together to pursue the thief by reporting the theft to their local authorities and looking into filing for legal action.

I don't really know anything about this stuff though. I'm just some random guy who volunteers his free time to answer questions here on the forum. This is all way over my head. It seemed logical to write a few threads that would allow the community to come together and pool their knowledge and resources in an effort to resolve this situation. But who know how that'll play out. I hope my (very) minimal efforts here have been worthwhile

Reading through the threads, almost all of IOTAs looks stolen in 1/19. Also the hash includes many 9999999... it looks like something coincident with certain IOTA system activity related. It looks too unclear to blame solely users online downloads. 

@MMkrypto
Certainly a possibility. Maybe some forensics people here  in the community can find the time to dig into all of the transactions and map out the paths
By IOTAhelper - 23 Jan 2018

Hello Everyone,

So far, I and my friends have been able to prevent multiple thefts of IOTA from occurring by creating and promoting our own transaction. To do this is not an easy task and it takes a lot of time and expertise. I will help anyone who has a pending transaction by the hacker, so please email me for details.
Contact me via email here:
bazbazbaz@protonmail.com
Thanks guys.
By lostiota_j - 23 Jan 2018

Update:
So far there is over $30k put to gather information about this attack and hold those responsible.

People have lost enough money for a second time, that they are no longer putting up with this.

Situation best said by 
@twobitidiot: 
Childish, unprofessional, $6.5b disaster, etc.

You either have no leader as bitcoin and can say its user's fault or you are a corporation that is held responsible. You can't tell user's to do something and claim ignorance.
No one would have changed their wallet if it wasn't for your forced upgrade.

 Anyone with additional information on this attack should use this forum to report.
By lostiota_j - 23 Jan 2018

Can anyone explain why the signature of all lost funds are all 9s such as:
999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999999
By domtasc - 23 Jan 2018

Just so everyone is aware the thief's information on the Iota forum as Norbert vd Berg He used to have a GitHub link that is now blank. Let's find him and turn him in to the proper authorities. 
By domtasc - 23 Jan 2018

https://www.quora.com/profile/Norbert-vd-Berg/log
https://github.com/norbertvdberg - The GitHub link is dead now. 



By domtasc - 23 Jan 2018

Sorry... Last one. This is all of his activity on the Iota forum... Notice how he discourages everyone from keeping their coins on exchanges and tells them all to go to his website to generate keys....

https://forum.iota.org/u/norbert/activity
By iq34acal - 23 Jan 2018

@domtasc Check "Call to action", page one displaysall "easy accessible" information who promoted this scam (Norbert). Ithink for hidden information we need the support of the more IT or programmingfocused community of IOTA. Unfortunately, my knowledge is way too limited totrace someone down who set this huge scam up and tricked me and 1000xxx of IOTAsupporters. I could bring some beer and donuts, but that's it Sad Later I'llcall to the Cybercrime Department of the Prosecution in Hessen, Germany (ZIT).At least, I'll report my (our) case. Maybe they will start an investigation.There are Cybercrime Departments in each state of Germany, so if you're Germanyou should at least inform them (although they hopefully already know aboutthis theft). Nothing more what we can do and I don't expect to get any of mymoney back but at least to give the thieves some feeling of being not 100 %secure.

 

@Winston Thanks for all your support, understanding andpatience. I also understand your statements related to the foundation and inthe end it was really not my smartest move to use iotaseed.io to generate myseed. Everything what I state from now on is based on that I know it was myfault in the end. But as mentioned in earlier posts, when I set everything up,all sources I found stated it's ok in doing so (youtube, google,forum.ioto.org...). I definitely watched out for more than one source. I boughtmore than one coin and invested days in research for security for all of mycoins. Therefore, I moved asap my coins from the "unsecure" exchanges(what all of my friends didn’t do - and they still have their IOTAs). ObviouslyI didn't invest enough time, resources or whatever for IOTAs security. I endedup in using this light wallet for IOTA (which is obviously secure with a secretseed) and the Ledger Nano S for all other cryptos. Ingenuous and foolish I expectedto be safe if I follow all instructions on the also "easy accessible"sources, assuming that somebody would answer on mainstream sources topromotions for scams something like: "SCAM - DON'T USE THIS" orsimply delete the posts. Honestly, also the "programming-orientated"environment didn't make it easier for me (it's not like downloading a PDF reader).One could say, why you invested in the coin if you got already kind of lost tofind the right wallet and generate a secure seed.

Coming back to the IOTA foundation or its programming community,I think most supporters or users are now kind of disappointed by the reactionof the "more programming focused society/ community" of IOTA. Thereare always multiple reasons or pillars why an idea is able to grow andinfluence the world while other (also good ideas) die without any recognition.Next to the brains behind IOTA, the technical supporters, the supportingindustries, also the “simple” believers in this technology contributed to whereIOTA is now. Members of this last group lost their money because they trustedin the brains behind IOTA and in the more programming-focused community. Theytrusted that something like this cannot happen and that there are people who don'tlet something like this happen. IOTA raised billions of dollars and they arenot even able to protect their own supporters from something like this,published and promoted on the most popular forums for IOTA, incl forum.iota.org? Pubslihsed on google, youtube...everywhere...And now, instead of showing sympathy or support, most answers are like: “Howcan one be so stupid and use an online seed generator”. Why didn't I find somethinglike this month ago when I set up my seed? Now, nothing about ideas how torecover the money (maybe there is no chance and they don’t want to make us hope),no word like: “We try everything to trace these f***ers down, we are skilledprogrammers, hackers, geeks, whatever and we will do everything to find themwith all our knowledge and resources”. Nothing about: “We need to discuss apossible snapshot modification, hard fork whatever…”, “We gonna document alltransactions (maybe sorted by receiving addresses with XXXX9999999) from last72 hours and discuss how to recover the money”.

 Instead, I find someannouncements how safe IOTA is and how stupid all of us were. Announcementslike:  “Please don’t lose faith in IOTA (witha taste that founders are scared to lose their money due to falling price). Ifind articles about exciting summits, meets up and new members of IOTAfoundations like nothing important happened these guys should care about. Isthere really something more important than to help us right now??? But there isnothing, not even a sign that we are not alone…and that’s why a lot of us arefu***d up by IOTA now…maybe it’s missing social intelligence, it’s ignorance orarrogance…but in the end it’s simply not OK how they keep on behaving likenothing has happened and how they try to keep it from media to protect their money.


Human failures shouldn’t be new to anybody and it’s commonstandard since decades that big companies or foundations take care that thesehuman failures are reduced to minimum level with minimum impact. IOTA raised 6billion dollar!!!! What would you say, if I would promote an update for yournew BMW on the official BMW website? It’s fucking everywhere..Google, Youtube…Even if the promotion directs you to another website, looking pretty similarlike BMWs website. You download this fucking update and I steer your caragainst a wall with 100 km/h…and then BMW gives you following answer: “How canone be so stupid and download an update from a random website?“ This wouldnever happen, because BMW simply would never ever let it happen…and if it wouldhappen, they would say they investigate it, take care this not gonna happenever again, that they are sorry… and that’s why everybody is pissed now. Notonly that they don’t try to undo the hack, not only that they say we weresimply to stupid without any sympathy or understanding, not only that they noteven try to trace this f***er down (and if somebody could trace them then the programmerswho built IOTA)…but they keep on going like nothing happened, not evenimproving their wallet and thinking about their role & responsibilies in this theft, partying at some summitsand meet-ups, celebrating the success of IOTA and how smart & intelligent& rich they are… and that’s why we are pissed and feel like IOTA doesn’tcare at all…because they simply don’t care…

By Vesko1984 - 23 Jan 2018

Yeah IOTA really deserves to be top 10 coin Tongue
Too much problems and complications about this project. Transactions pending forever, worst wallet ever, stolen founds every 2-3 months, false news,...
You cannot make proper wallet but you want to change the world with you technology. wtf
Why would somebody invest in this project again? 
By lostiota_j - 23 Jan 2018

Thank you to every one that has the courage to post their loss here. Many others have lost coins too that have yet to report.

Every one here is a believer in this technology and have supported this project for a long time.

Perhaps worse than losing our IOTA coins repeatedly is having lost faith in these devs. Their complete failure to handle this issue responsibly is a first for a top 10 coin.

IOTA docs have had links to online seed generators all over the place. It was the first step on their web site to setup an offline wallet. https://imgur.com/ZQJxVcs

Any smaller cap coin would get lambasted for this. When it happens to everyone holding IOTA coins it isn't just the user' stupidity to blame.

Only if we speak up, then will IOTA respond to this major attack and loss by it's community members.
By JANEK123 - 23 Jan 2018

GOBXTNODUGURNEESTGFVMGFBVBFGIXJLYPOUWMXTBMECORN9IHHCLVWD9UM9WYKJMB9YOFMUHZ9SJASYXNWGUPOSDD

This is the address that mine and all the other stolen iotas have been sent to!  Is there any way this address can be frozen by iota or tracked and stopped?  Had no support of any of the iota team they just ignore me. I had 3.07 Gi stolen on the 19th Jan
???
By JANEK123 - 23 Jan 2018

I am so frustrated! All I was told was never to keep my iota on an exchange and store it in a wallet. I found all the info to set up the wallet really confusing with loads of different links and technical jargon....no warning was given about using a seed generator and everyone recommended iotaseed back then. I'm sure it was on reddit and everyone on youtube said that was the way to do it! Wish id kept it on an exchange now!!! Also Iota just ignore you now and don't give you any reassurance! Just treat you like its your problem
By miota - 23 Jan 2018

JANEK123 - 23 Jan 2018
I am so frustrated! All I was told was never to keep my iota on an exchange and store it in a wallet. I found all the info to set up the wallet really confusing with loads of different links and technical jargon....no warning was given about using a seed generator and everyone recommended iotaseed back then. I'm sure it was on reddit and everyone on youtube said that was the way to do it! Wish id kept it on an exchange now!!! Also Iota just ignore you now and don't give you any reassurance! Just treat you like its your problem

Actually Norbert vd Berg was the one who posted on many forums to use his online seed generator. I also wonder why you think no-one has notified users about not to use online seed generators.
See for example this on reddit: https://www.reddit.com/r/Iota/comments/7cr4uk/iota_seed_generator/

A user named iotahelp (who is apparently a bot) actually advised not to use any online seed generator, but instead directed users to use a safe method (Linux terminal, Mac terminal).
The problem is that anyone can register a website in a few days, and can name it iota-foundation.org or whatever sounding pretty official and then scam iota holders to store their coins using an unsafe seed. As with any new technology, newbies can be scammed unfortunately. Remember that in the beginning of 2000s how many people used to send money to some online lottery that he/she already won, just some administration needed to be done? It is something very similar happening here. Scammers took advantage of not-so techie people.

I think the only thing in which IOTA foundation was very wrong is that there was no big red warning in the wallet GUI that your seed needs to be kept private and should never ever be shared with anyone. Using the term master password instead of seed (even if technically seed is the correct term) could also help, because it would have made people more aware that the seed used for an IOTA address is top secret that keeps your money safe from thieves.
By GregPol - 23 Jan 2018

JANEK123 - 23 Jan 2018
GOBXTNODUGURNEESTGFVMGFBVBFGIXJLYPOUWMXTBMECORN9IHHCLVWD9UM9WYKJMB9YOFMUHZ9SJASYXNWGUPOSDD

This is the address that mine and all the other stolen iotas have been sent to!  Is there any way this address can be frozen by iota or tracked and stopped?  Had no support of any of the iota team they just ignore me. I had 3.07 Gi stolen on the 19th Jan

My stolen coins are also on this wallet. The worst is helplessness and looking at this wallet. I do not want to believe that the IOTA foundation can do nothing. Maybe he does not want to? Not a professional approach to them. What more can you do? I wrote to https://twitter.com/DomSchiener and https://twitter.com/DavidSonstebo. Unanswered Sad
By tonychat - 23 Jan 2018

Hi,

Reporting in with stolen iotas Sad    Nothing much to be done since it has been confirmed.

Hacker tx

JAZDUF9HBORDBRWOTDPZVNJYHFIEANLXAIAZOJTVYCQWNZVHYBOAOPDORXEX9ZGIPNXIYHLTG9KXZLTUWJYPNGITFY

By atoi1567 - 23 Jan 2018


139 Mi stolen from
VLSAACAKYFEVYKLLZKCDHACHL9KHNVPAIZCOBGTZVVWAZHCVXNWLLHKCIORNXPV9CJBUJRLBVNYZEJHKDHOJXAALAA

This case teaches me:
What is safe in the crypto world at all?
For example:
Liteaddress.org: Paperwallet generated online or offline, sure? Maybe only preselected addresses are displayed anyway.
Ledger Nano: where are the recoveryphrases stored, sure Central !
...many more suggestions, nothing is safe !
By zlocinho - 24 Jan 2018

Hello,

I'm really frustrated, I transferred my IOTA from Binance to my wallet.
Than I read in the newspaper about the hacked wallets and I wanted to check mine. I saw my balance 1.3995 Gi and I was happy, but than I saw my history about pending transaction to address: GAURXOBZFJIEBBARPFIXCXTQAOXGOEGOKSQSAYVXFWFTHWVQUXUOQNQCHVAKFKQCWEERYYXVEVZKLCXB9TPSTSTHTD

after some minutes transaction was confirmed and now I can't see anything on my balance and I can't attache tangle, NOTHING.

https://iotasear.ch/address/GAURXOBZFJIEBBARPFIXCXTQAOXGOEGOKSQSAYVXFWFTHWVQUXUOQNQCHVAKFKQCWEERYYXVEVZKLCXB9TPSTSTHTD

DO ANYONE HAS IDEA HOW TO PROCEED ? Because address does not look like a hackers address.
By jules - 24 Jan 2018

254.2 MIOTA stolen
from:
LCDFIIGGOENREPWZMLZKEOCTHJAFCQJM9QLRFDOM99WXETQNANEJ9GJIYQNSJPGLJVOCPLYKZSOQKRNQWZDMYQXLED

transfered to:
DBPHJOESJBLJEK9WANRDLQLR9A9UOKWYZCYTHALDQIVDZOGBPCKSQPDRYP9VVHQGBYUFIJBHZQGRNEXQDQXPU9IIMD
By jules - 24 Jan 2018

HI, i was also so stupid to trust a scam site ;-(

254,2 MIOTA stolen
from:
LCDFIIGGOENREPWZMLZKEOCTHJAFCQJM9QLRFDOM99WXETQNANEJ9GJIYQNSJPGLJVOCPLYKZSOQKRNQWZDMYQXLED

to:
DBPHJOESJBLJEK9WANRDLQLR9A9UOKWYZCYTHALDQIVDZOGBPCKSQPDRYP9VVHQGBYUFIJBHZQGRNEXQDQXPU9IIMD

Unfortunately is one of the entries confirmed.



By iq34acal - 25 Jan 2018

Here's another chat, which is more actively used. "Call to Action", post your comments there. Only thing you can do is to involve legal authorities. That's it.
By iq34acal - 25 Jan 2018

iq34acal - 25 Jan 2018
Here's another chat, which is more actively used. "Call to Action", post your comments there. Only thing you can do is to involve legal authorities. That's it.

Only thing you have to do is to involve legal authorities.
By jattitude - 26 Jan 2018

Reporting in with stolen 121  MIOTA 

Hash: RXAQMTXQKTDQRLAHOKOEAWZVJRVIOFH9NSFSFJVQVEWEIABGLNF9LVNOPPYMUHQYFFCMBSGRO9VPA9999

IITY9EZ99AYPRGO9ZDEV9QABOOLTA9PKEGG9THGNFARUZ9VYAJQADZINNJFOLJCIAJWXNUUMHVASMNWBTYZQOH9ENDIB
121.8+ Mi
XGMZE9PVCJEWFHRAP9SPYYVKJOMGKCGHLRUQZYQWFUXYROAVBMPIKZVWKXIILTBJSE9HSTEVHAB9NADUBJUCJ9CLU9
-121.8+ Mi
XGMZE9PVCJEWFHRAP9SPYYVKJOMGKCGHLRUQZYQWFUXYROAVBMPIKZVWKXIILTBJSE9HSTEVHAB9NADUBJUCJ9CLU9
0
By jattitude - 26 Jan 2018

Any update on Hacked Iotas as i can see the person who transferred  121 MIOTA from my account is unable to withdraw,

https://iotasear.ch/address/TY9EZ99AYPRGO9ZDEV9QABOOLTA9PKEGG9THGNFARUZ9VYAJQADZINNJFOLJCIAJWXNUUMHVASMNWBTYZQOH9ENDIB
By kohlerst - 26 Jan 2018

Hallo,
auch meine IOTAs sind leider weg.
TRANSACTION HASH
RS9QTIHFQLIQRMIPHCIUQONUNXBVXTTXLTJZUAOJT9OBZIF9SL9JXHSQTFS99NSZPVXIAEZAJJBY99999
IOTA ADDRESS
WVGPQSORGGDIEWORFYSTKHYGRKULRHFPEUPLTFGMMKYJJEWDESTGGBWSVPEMSYYYC9CWAMHFCHPVUAZIA

AMOUNT
139.228243 Mi
TIME
8 days ago
STATUS
Confirmed

Gibt es noch eine Chance sie zurück zu bekommen?
By vojc - 27 Jan 2018

interesting that 3 months ago i was attempting to made transaction out from my generated iota wallet.
since i had pending transactions for 3 months (i did reattach and so on...) nothing happen, i also made a reclaim, since i get error KEY REUSE.
How da hell did hacker than managed to get iotas out of my wallet if i wasn't able ?

there was no solution on forum to use command line iota to bypass that error, thanks iota, you are so secure BigGrin
By Winston - 27 Jan 2018

vojc - 27 Jan 2018
interesting that 3 months ago i was attempting to made transaction out from my generated iota wallet.
since i had pending transactions for 3 months (i did reattach and so on...) nothing happen, i also made a reclaim, since i get error KEY REUSE.
How da hell did hacker than managed to get iotas out of my wallet if i wasn't able ?

there was no solution on forum to use command line iota to bypass that error, thanks iota, you are so secure BigGrin

@vojc
None of the advanced users use the GUI wallet. The key reuse prevention mechanism is just an easy add-on made to the GUI wallet in an effort to prevent everyday users from messing things up.
 
 
By schros05 - 27 Jan 2018

I checked my wallet today after a couple weeks and see that I also lost 131.2 miota on January 18th.   After scouring the internet and reading through all the posts it appears that I was not the only one.  Went to reddit first and it seems most people are also applauding some hacker stealing/scamming people out of their money.  Iota was my first crypto purchase and setting up the seed was the single most confusing part of the process for a newbie like me.  But for some reason I could create all my other wallets with no problem.  Obviously everyone hates to lose money, but I think the fact that the whole thing feels like a giant scam is the biggest kick in the gut to me. 

??I didn't lose enough to make any difference in my life, but people have invested huge amounts of money in a project that does not seem to really care that there is no clear and secure wallet.  I'm sorry it is a waste of your time.  
?
?Now off to sell the Iota that I still have on Binance...or I may just send directly to the thieves address cause I'm probably too dumb to setup a new wallet anyway.   

Sorry to all that had there Iota stolen.  Ok, done ranting and life goes on. ???
By Koczek0007 - 28 Jan 2018

Two accounts of scammer:
https://iotasear.ch/address/MPK9FFYG9MHVQZUOJVC9GKATKPWIDRRSUDZJJUUPAOXHUYPBRBUFYYTIIGNWZNJLSHFXWCFFISWHXCOLAQLSJEWHTW
https://iotasear.ch/address/OXVTFHDVRGK9NP9LYCVAQYBBFKCEEZIVBVJ9OEOLJFMDRDQGISLEZXCCSLAPNUOTUQJHOXHGYTTRBOC9XL9THGIGAD

link to transaction with stolen my IOTAs:
https://iotasear.ch/transaction/YXUDEMZXQAZNZWFWDKLRFGQHCMPNVPDMGXCPSRVWFFSZQQXBSQPJYLTIANNOFQYUMMTSIVOUPSALA9999

Question to developers:
Do is any chance to block or bann an then freeze tokens if you have as many information about dishonest scammer?
They still using this adresses
By Winston - 28 Jan 2018

Koczek0007 - 28 Jan 2018

@Koczek0007
Thanks for the post, and welcome to the community.

Question to developers:
Do is any chance to block or bann an then freeze tokens if you have as many information about dishonest scammer?

I don't think the developers are here on the forum (yet).

It's pretty much impossible to ban or freeze tokens on a permissionless distributed ledger. The major selling point of this technology is the fact that it's immutable and 'you are your own bank'. This means that the tradeoff is that giving your seed away means that your funds are gone.
 
By Manilo - 28 Jan 2018

Hy Guys, I‘m one of the dumb ones who used the online seed generator and got screwed (I think).
The transaction of the guys who tried to steal my IOTAS was still pending back then – and I thought I succeeded to intercept that. I did it like the reddit post described it. I've send my ITOAS with the CLI wallet to a new account. Also I promoted that transaction quite often – but I have the feeling I was too late because the IOTAS still did not arrive. I don't really understand how this works. I see a lot of transactions in my IOTA Light wallet, but they're still pending. Can someone look into that?

This is the adress which I was dumb enough to generate online
SLYERMBBUMMWUKNKRDBXCOPMUALNOLPGELKCPJMUYLIVDGBFDRZPLQNOGODJCDLQWHWZDUMXQTPAFEKYXPTCPWSZLA

This is the adress which I created afterwards and tried to send my Iotas via CLI wallet
TXFKZTLDADW9DJIZJTQOP9JPQUUC9DFLYVGBBQXPGF9WPBBLYAHPUKRPYNNOYSQATGRXZACVBFHBYFYIDSKU9KPGIW

Thanks in advance!
By Winston - 28 Jan 2018

Manilo - 28 Jan 2018
Hy Guys, I‘m one of the dumb ones who used the online seed generator and got screwed (I think).
The transaction of the guys who tried to steal my IOTAS was still pending back then – and I thought I succeeded to intercept that. I did it like the reddit post described it. I've send my ITOAS with the CLI wallet to a new account. Also I promoted that transaction quite often – but I have the feeling I was too late because the IOTAS still did not arrive. I don't really understand how this works. I see a lot of transactions in my IOTA Light wallet, but they're still pending. Can someone look into that?

This is the adress which I was dumb enough to generate online
SLYERMBBUMMWUKNKRDBXCOPMUALNOLPGELKCPJMUYLIVDGBFDRZPLQNOGODJCDLQWHWZDUMXQTPAFEKYXPTCPWSZLA

This is the adress which I created afterwards and tried to send my Iotas via CLI wallet
TXFKZTLDADW9DJIZJTQOP9JPQUUC9DFLYVGBBQXPGF9WPBBLYAHPUKRPYNNOYSQATGRXZACVBFHBYFYIDSKU9KPGIW

Thanks in advance!

@Manilo
Thanks for reaching out, and I'm sorry to see your situation.

https://thetangle.org/address/SLYERMBBUMMWUKNKRDBXCOPMUALNOLPGELKCPJMUYLIVDGBFDRZPLQNOGODJCDLQWHWZDUMXQTPAFEKYX
It looks like one of the thief's reattachments was confirmed, and the balance of this address is zero. Unfortunately, your funds have already been stolen, and there's nothing you can do with the CLI wallet to get them back at this point.
 
By kingsichi - 28 Jan 2018

Hi 
@Winston and the IOTA community,


I have lost 5Gi from generating a seed on iotaseed.io. I would like to propose using the coordinater node to roll the network back or just the scammer accounts back to Saturday the 20th January 2018? This will restore my and I would think many other users faith in the project. 

Please note the thieves address below -  

BBXKJTZBRKQB9RDAKUVYXZDH9IT9VWRIQXCVESDTZXASFPLZPWYCATVZMXIEHVJCHSURXGPUORVJMMGRZN9OJNUELW

And the bad transaction can be found on the tangle here -
https://iotasear.ch/address/BBXKJTZBRKQB9RDAKUVYXZDH9IT9VWRIQXCVESDTZXASFPLZPWYCATVZMXIEHVJCHSURXGPUORVJMMGRZN9OJNUELW

Thanks,
By Manilo - 28 Jan 2018

Winston - 28 Jan 2018
Manilo - 28 Jan 2018
Hy Guys, I‘m one of the dumb ones who used the online seed generator and got screwed (I think).
The transaction of the guys who tried to steal my IOTAS was still pending back then – and I thought I succeeded to intercept that. I did it like the reddit post described it. I've send my ITOAS with the CLI wallet to a new account. Also I promoted that transaction quite often – but I have the feeling I was too late because the IOTAS still did not arrive. I don't really understand how this works. I see a lot of transactions in my IOTA Light wallet, but they're still pending. Can someone look into that?

This is the adress which I was dumb enough to generate online
SLYERMBBUMMWUKNKRDBXCOPMUALNOLPGELKCPJMUYLIVDGBFDRZPLQNOGODJCDLQWHWZDUMXQTPAFEKYXPTCPWSZLA

This is the adress which I created afterwards and tried to send my Iotas via CLI wallet
TXFKZTLDADW9DJIZJTQOP9JPQUUC9DFLYVGBBQXPGF9WPBBLYAHPUKRPYNNOYSQATGRXZACVBFHBYFYIDSKU9KPGIW

Thanks in advance!

@Manilo
Thanks for reaching out, and I'm sorry to see your situation.

https://thetangle.org/address/SLYERMBBUMMWUKNKRDBXCOPMUALNOLPGELKCPJMUYLIVDGBFDRZPLQNOGODJCDLQWHWZDUMXQTPAFEKYX
It looks like one of the thief's reattachments was confirmed, and the balance of this address is zero. Unfortunately, your funds have already been stolen, and there's nothing you can do with the CLI wallet to get them back at this point.
 

Thanky you Winston,

Can you tell me the current address of  my lost iotas? I would like to put it in the "Call to action: let's catch the thief" section. I allways end up with just an "transaction" and can't figure out the address, when browsing thetangle.org.

Thanks again!
By Winston - 28 Jan 2018

Manilo - 28 Jan 2018
Winston - 28 Jan 2018
Manilo - 28 Jan 2018
Hy Guys, I‘m one of the dumb ones who used the online seed generator and got screwed (I think).
The transaction of the guys who tried to steal my IOTAS was still pending back then – and I thought I succeeded to intercept that. I did it like the reddit post described it. I've send my ITOAS with the CLI wallet to a new account. Also I promoted that transaction quite often – but I have the feeling I was too late because the IOTAS still did not arrive. I don't really understand how this works. I see a lot of transactions in my IOTA Light wallet, but they're still pending. Can someone look into that?

This is the adress which I was dumb enough to generate online
SLYERMBBUMMWUKNKRDBXCOPMUALNOLPGELKCPJMUYLIVDGBFDRZPLQNOGODJCDLQWHWZDUMXQTPAFEKYXPTCPWSZLA

This is the adress which I created afterwards and tried to send my Iotas via CLI wallet
TXFKZTLDADW9DJIZJTQOP9JPQUUC9DFLYVGBBQXPGF9WPBBLYAHPUKRPYNNOYSQATGRXZACVBFHBYFYIDSKU9KPGIW

Thanks in advance!

@Manilo
Thanks for reaching out, and I'm sorry to see your situation.

https://thetangle.org/address/SLYERMBBUMMWUKNKRDBXCOPMUALNOLPGELKCPJMUYLIVDGBFDRZPLQNOGODJCDLQWHWZDUMXQTPAFEKYX
It looks like one of the thief's reattachments was confirmed, and the balance of this address is zero. Unfortunately, your funds have already been stolen, and there's nothing you can do with the CLI wallet to get them back at this point.
 

Thanky you Winston,

Can you tell me the current address of  my lost iotas? I would like to put it in the "Call to action: let's catch the thief" section. I allways end up with just an "transaction" and can't figure out the address, when browsing thetangle.org.

Thanks again!

@Manilo
Sure, let's take a look at it in the tangle explorer:

Here's your address from which your balance was stolen:
https://thetangle.org/address/SLYERMBBUMMWUKNKRDBXCOPMUALNOLPGELKCPJMUYLIVDGBFDRZPLQNOGODJCDLQWHWZDUMXQTPAFEKYX

Scroll down to find the confirmed outgoing transaction of 598.67 Mi, and click on its transaction hash:
https://thetangle.org/transaction/ESGQKAZYUHYNFYQDHXFCNCMFDMJKSDJTUNWIP9MCGFIWSWLMMJXLUGYZROSICQTZEUPKEOJHFFGR99999

Then we click on the bundle that's associated with the above transaction hash:
https://thetangle.org/bundle/AD9AEBAQFJGHO9BANLWODAVDNBTKIIDBKAGCUGDQ9IUZRECAYSVEPYUAFLEBFCEMZESEDBCIWCZIBSMHD

Which lets us see the output address (the thief's address):
https://thetangle.org/address/LGAQMSVYUZMYRPCGJGGXKUSHYLODFZVMKZUHXOCTMLLQJRGJNVQNOAVFZKFFTCGSAVGONNLDSZMHYIEJD
 
 
By iotastuff - 30 Jan 2018

Hi Winston,  Just to say a 'thank you' to you for supporting users in the community.  I know you're a volunteer and I'm sure people appreciate that someone is responding and helping them during this stressful time.
By Winston - 30 Jan 2018

iotastuff - 30 Jan 2018
Hi Winston,  Just to say a 'thank you' to you for supporting users in the community.  I know you're a volunteer and I'm sure people appreciate that someone is responding and helping them during this stressful time.

@iotastuff
Thanks for the kind words. I hope this forum continues to be a good resource for everyone.
By chechocv8 - 31 Jan 2018

Hola mi saldo esta en 0.

Que debo hacer, la semilla la genere yo mismo y mi billetera la revise hace 8 dias despues que me entere del robo y todo estaba normal.

Eran 587 MIOTAS.

Gracias por la ayuda que me pudieran brindar
By leittersday - 31 Jan 2018

Hello together, 

- LMXPRRWCNPDEAK9EZVECLDSIKLNTV9JGFMMZSBLLWDRX9PZEEKYKWSO9FWJSZ9DPFHTM9ZHMOCVHNBMYWVXYTSYCPW (587,9 Mi) 

- Confirmed -

Irgendwelche aussichten, dass man sein Geld wiederbekommt?

Vielen dank für eure Hilfe Sad

Luca
By JANEK123 - 31 Jan 2018

Does anyone think anything can actually be done? Like legal action or tracing the Iota thief or seeing where they try and sell the Iotas eventually? I lost over 3.0 Gi and its a huge chunk of my portfolio! Its hard to just let this go knowing they've scammed so many people. Also really disappointed with the people at Iota who have shown no sympathy or support and just push the blame at the users! Over $4mil was stolen so obviously there was some sort of wallet issue and it wasn't clear about the seed and how to generate one at the time...Everytime they post something now about seeds and new wallets it just feels like a massive kick in the balls! 
By FreeWilly - 31 Jan 2018

JANEK123 - 31 Jan 2018
Does anyone think anything can actually be done? Like legal action or tracing the Iota thief or seeing where they try and sell the Iotas eventually? I lost over 3.0 Gi and its a huge chunk of my portfolio! Its hard to just let this go knowing they've scammed so many people. Also really disappointed with the people at Iota who have shown no sympathy or support and just push the blame at the users! Over $4mil was stolen so obviously there was some sort of wallet issue and it wasn't clear about the seed and how to generate one at the time...Everytime they post something now about seeds and new wallets it just feels like a massive kick in the balls! 

JANEK123, it seems highly doubtful that anything can be done.
By Winston - 31 Jan 2018

JANEK123 - 31 Jan 2018
Does anyone think anything can actually be done? Like legal action or tracing the Iota thief or seeing where they try and sell the Iotas eventually? I lost over 3.0 Gi and its a huge chunk of my portfolio! Its hard to just let this go knowing they've scammed so many people. Also really disappointed with the people at Iota who have shown no sympathy or support and just push the blame at the users! Over $4mil was stolen so obviously there was some sort of wallet issue and it wasn't clear about the seed and how to generate one at the time...Everytime they post something now about seeds and new wallets it just feels like a massive kick in the balls! 

@JANEK123 
I agree with FreeWilly's post above - it'll be very difficult to do anything about this situation.

Also really disappointed with the people at Iota who have shown no sympathy or support and just push the blame at the users!

They have consistently shown sympathy for the victims, and have done a great job of further educating the community to prevent this from happening again in the future:
David's interview: https://www.financemagnates.com/cryptocurrency/news/iota-founder-stolen-funds-lots-people-will-screw/
Dom's tweet: https://twitter.com/DomSchiener/status/955134744034971648
IOTA Foundation blog post: https://blog.iota.org/the-secret-to-security-is-secrecy-d32b5b7f25ef

Maybe your definition of sympathy differs from mine, but surely you agree that the above responses are high quality?

Over $4mil was stolen so obviously there was some sort of wallet issue and it wasn't clear about the seed and how to generate one at the time

There was/is no wallet issue. This whole ordeal arose due to social engineering (a phishing website) that gave one person the seeds that everyone generated on the website. It was not a hack, it was not a wallet issue, and it had nothing to do with the tangle itself.
 

Again, really sorry to see that you're in this situation.
By hirtop - 31 Jan 2018

iq34acal - 20 Jan 2018
Hey guys, 

also my IOTAs were stolen, 19.01.. The TX is confirmed and most probably I'll get a shitstorm for my following comment. But if there are so many hacked accounts and the adresses are public, what is the point in changing the "snapshot" to try at least getting some of these IOTAs back. It's obvious which adresses are used to receive stolen IOTAs.The tanglesearch shows that they have plenty of incoming transaction, some of them unconfirmed, a lot of them confirmed. The money is still on the adress!!!! I also know that's in the responsibility of the end-user to setup a safe account, but the situation shows it's not that obvious and easy as many of the programmers may assume. I bought for almost all of my coins a Hard Wallet and safer them securely. But for IOTA I didn't know what to do, so I checked the internet, ended up on Youtube and followed the advice from some different videos. They didn't say anything about changing 10 characters of the seed and they recommended to use seedgenerators. For sure, I watched more than one videoe and obviously it's kind of confusing for beginners to understand everything from the very beginning. Especially if you buy more than one coin it doesn't make it easier. Maybe I used wrong key words or wrong sources but I also tried to get some infos for all of my coins from google and and and. I found nothing about that issue, but still...my fault. It's an expensive lesson for my own (and obviously also for a lot of other folks out there), but the guys behind IOTA should overthink their security settings and policies. Maybe a simple pop-up window integrated in the wallet with the most important security tips would have protected my money...not that hard to implement, everybody who opens the wallet needs to check that and get the necessary infos...Although I don't expect that somebody decides to undo the hack and send my 314.69 MIOTAs back, I'll give the thiefes and IOTA the chance to do so Wink

New Adress:
BXZLVCQV9GZMMAMANHAZCNARDD9JNWCLORAYSADLHBZFDODGDBQRTZENMWFYZTVJT9YJFKXPGCRQTKAUXJZSZRHWKC

And for all these wonderful guys out there knowng more about coins, blockchain, cryptographie then I do, hack this adress, bc my IOTAs were transfered to :

 OQRJJB9MJFOLGALRYNAUNZCRQOZGRQPHTRNGNWLPPNGETIU9JVQNRSOEICJOGLQVPLCMHEBZSHNI9UJQWQXVFENLBB

Do what you can do Smile Have a good night and thx for your support!!!

did you ever get your iota's back? my wallet was just emptied and I am not sure what to do
By FreeWilly - 1 Feb 2018

Unless there is some miracle of the century, we're not getting our IOTA back. It sucks, but there's nothing more we can do. Maybe make a police report.
All we can do is move on, report the loss and be smarter. Don't repeat these mistakes.
Trust no-one. Don't trust some random website. Secrecy is the only policy. If you think you are compromised, change your seed. 
Guess it probably doesn't hurt not to keep all your eggs in one basket too. But then again some people unfortunately used compromised seeds for multiple wallets and lost them all.
That being said I would also recommend checking your wallet multiple times through the day and keeping up to date with the news - if I'd been more tuned in, pretty sure I could have stopped it.

The IOTA foundation better get that wallet with a seed generator up and running soon already., a lot of hurt would have been saved - however even wallets can be corrupted.
By Koczek0007 - 2 Feb 2018

Something is wrong. I just tryed log in to my IOTA seed (with one was grabbed), and is absolutelly empty. No history and transactions done. Looks like newly made and freshly seed.
Transactions on iotasearch message "Sorry, the page you were looking for doesn’t exist".

Can somebody tell me what happend?
By aammartins - 2 Feb 2018

iotastuff - 20 Jan 2018
This is a terrible situation and we can't believe that user bad practices are entirely at fault here.  It is very bad practice that a wallet would not generate its own secure seed instead of requiring an external program to do this.  Furthermore, to make users log in with their seed puts them at constant risk of key loggers and mistakenly pasting the seed into websites and chat windows.  These things definitely need to be solved ASAP.  
Please stop pointing fingers at users as this is preventing critical modifications being added to the wallet and improving security and user experience.

Exactly
By Winston - 2 Feb 2018

Koczek0007 - 2 Feb 2018
Something is wrong. I just tryed log in to my IOTA seed (with one was grabbed), and is absolutelly empty. No history and transactions done. Looks like newly made and freshly seed.
Transactions on iotasearch message "Sorry, the page you were looking for doesn’t exist".

Can somebody tell me what happend?

@Koczek0007 
A snapshot was done last weekend.

Generate addresses and your balance will reappear.
https://forum.helloiota.com/11062/Instructions-to-have-your-balance-reappear-zero-balance
By IOTA0 - 5 Feb 2018

I lost all my Mi from my desktop IOTA wallet.  I don't see any balance in my wallet.  I had 537.888 Mi transferred from Binance.   

EPZW9DWXCSPY9JYAUAUIIA****OITNXNE9Y9YP9AY9NGOPNX            9.5 Mi
RQEVUPVLJEKHR9SGMWOPEO****ACRZGFJOWKND9LRIEIKCHD       528.388 Mi
By kohlerst - 6 Feb 2018

Hallo,
auch meine IOTAs sind leider weg.
TRANSACTION HASH
RS9QTIHFQLIQRMIPHCIUQONUNXBVXTTXLTJZUAOJT9OBZIF9SL9JXHSQTFS99NSZPVXIAEZAJJBY99999
IOTA ADDRESS
WVGPQSORGGDIEWORFYSTKHYGRKULRHFPEUPLTFGMMKYJJEWDESTGGBWSVPEMSYYYC9CWAMHFCHPVUAZIA

AMOUNT
139.228243 Mi
TIME
8 days ago
STATUS
Confirmed

Gibt es noch eine Chance sie zurück zu bekommen?
By razimih - 6 Feb 2018

Looks like mine has gone too:
https://thetangle.org/address/9OCNDHKQPBVWJ9SFDUYXQITPCVEPPPKL9FDEKKVOWQOLTQCLLNPJQOQTEOQETKCPLEZIBOIGOTDIOJHBD
and
https://thetangle.org/address/JDJFTCPKXZOUMLQJOUXRUMSGEPWGETMIDCVDOHPSGTYJDFS9XBGLCBDOHRJDFZETIINCTGCROFLUGRPV9

However, I can't even bring the history in the wallet  (using 2.5.7 - as 2.5.5 does't work anymore...).  It's like everything vanished...  Zero cross board.
By 999falcon - 8 Feb 2018

Dear Admin 

Please advise if my IOTAs were indeed stolen as I see zero balance on the wallet and I see this bundle that seems to have transferred out 7Gi on 19th Jan. 

https://thetangle.org/bundle/RGJRDDIGKZPULNNJZWZLPCHSLTZWFCTUKZJKBLCXD9UGUPWIFSXLOGWYLRCPNGHQLR9JVCZJHPWPZXLZZ

Thank you
By Winston - 8 Feb 2018

999falcon - 8 Feb 2018
Dear Admin 

Please advise if my IOTAs were indeed stolen as I see zero balance on the wallet and I see this bundle that seems to have transferred out 7Gi on 19th Jan. 

https://thetangle.org/bundle/RGJRDDIGKZPULNNJZWZLPCHSLTZWFCTUKZJKBLCXD9UGUPWIFSXLOGWYLRCPNGHQLR9JVCZJHPWPZXLZZ

Thank you

@999falcon
Thanks for checking in.

If 1) there's an outgoing transaction in your wallet that you didn't make, and 2) that transaction was sent to an address that your seed doesn't generate, then unfortunately your funds are gone. It sounds like that's the case in your situation, but only you can verify that and know for sure.
 
By razimih - 9 Feb 2018

Hello,
Can somebody help me to stop this fraudulent transaction ?
https://thetangle.org/address/JDJFTCPKXZOUMLQJOUXRUMSGEPWGETMIDCVDOHPSGTYJDFS9XBGLCBDOHRJDFZETIINCTGCROFLUGRPV9
Windows wallet 2.5.7 can't find this address.... Not sure how to proceed. I am totally confused.
Thanks.

By Winston - 9 Feb 2018

razimih - 9 Feb 2018
Hello,
Can somebody help me to stop this fraudulent transaction ?
https://thetangle.org/address/JDJFTCPKXZOUMLQJOUXRUMSGEPWGETMIDCVDOHPSGTYJDFS9XBGLCBDOHRJDFZETIINCTGCROFLUGRPV9
Windows wallet 2.5.7 can't find this address.... Not sure how to proceed. I am totally confused.
Thanks.


@razimih 
If you still see the balance in your wallet, follow the first part of the instructions in the OP of this thread.
 
By razimih - 9 Feb 2018

Winston - 9 Feb 2018
razimih - 9 Feb 2018
Hello,
Can somebody help me to stop this fraudulent transaction ?
https://thetangle.org/address/JDJFTCPKXZOUMLQJOUXRUMSGEPWGETMIDCVDOHPSGTYJDFS9XBGLCBDOHRJDFZETIINCTGCROFLUGRPV9
Windows wallet 2.5.7 can't find this address.... Not sure how to proceed. I am totally confused.
Thanks.


@razimih 
If you still see the balance in your wallet, follow the first part of the instructions in the OP of this thread.
 

@Winston Thanks for your reply. I see nothing in my wallet (2.5.7)... No history, even after attaching 50 addresses. Not sure wht's going on... I am pretty confused at this point
By Winston - 9 Feb 2018

razimih - 9 Feb 2018
Winston - 9 Feb 2018
razimih - 9 Feb 2018
Hello,
Can somebody help me to stop this fraudulent transaction ?
https://thetangle.org/address/JDJFTCPKXZOUMLQJOUXRUMSGEPWGETMIDCVDOHPSGTYJDFS9XBGLCBDOHRJDFZETIINCTGCROFLUGRPV9
Windows wallet 2.5.7 can't find this address.... Not sure how to proceed. I am totally confused.
Thanks.


@razimih 
If you still see the balance in your wallet, follow the first part of the instructions in the OP of this thread.
 

@Winston Thanks for your reply. I see nothing in my wallet (2.5.7)... No history, even after attaching 50 addresses. Not sure wht's going on... I am pretty confused at this point

@razimih 
I'd recommend looking at each one of your wallet's addresses on a tangle explorer to see what the history is.
 
By tedanton - 14 Feb 2018

HI ,
     I transfered iota from bitfinex to my wallet yday. its been more than 10 hrs and bitfinex withdrawal says still processing. Did I d something wrong. If I cancel the withdrawal, can I retreive my iota. Sorry I am a noob here. Any help will be appreciated
Thanks
Antony
By Winston - 14 Feb 2018

tedanton - 14 Feb 2018
HI ,
     I transfered iota from bitfinex to my wallet yday. its been more than 10 hrs and bitfinex withdrawal says still processing. Did I d something wrong. If I cancel the withdrawal, can I retreive my iota. Sorry I am a noob here. Any help will be appreciated
Thanks
Antony

@tedanton 
Thanks for the post, Antony, and welcome to the forum.

I don't know if Bitfinex allows for cancellation of withdrawals. You can speed the transaction up by finding the pending transaction in your light wallet and promoting/reattaching it a few times per day.
 
By tedanton - 15 Feb 2018

Winston - 14 Feb 2018
tedanton - 14 Feb 2018
HI ,
     I transfered iota from bitfinex to my wallet yday. its been more than 10 hrs and bitfinex withdrawal says still processing. Did I d something wrong. If I cancel the withdrawal, can I retreive my iota. Sorry I am a noob here. Any help will be appreciated
Thanks
Antony

@tedanton 
Thanks for the post, Antony, and welcome to the forum.

I don't know if Bitfinex allows for cancellation of withdrawals. You can speed the transaction up by finding the pending transaction in your light wallet and promoting/reattaching it a few times per day.
 

Hi Winston,
                   THANKS ... This is the transaction details. it says confirmed...NOt sure tbh what it means. pls help

                    
By tedanton - 15 Feb 2018

Here is the response from bitfinex


Is this a problem at bitfinex end?
Ta
Antony
By Winston - 15 Feb 2018

tedanton - 15 Feb 2018
Here is the response from bitfinex


Is this a problem at bitfinex end?
Ta
Antony

@tedanton 
Thanks for posting this info. The screenshot of your wallet is simply an attached address (not your withdrawal).

The Bitfinex screenshot looks like their in the process of sending the transaction.
 
By tedanton - 15 Feb 2018

@Winston
which means  I can cancel that withdrawal and redo it again?
By Winston - 15 Feb 2018

tedanton - 15 Feb 2018
@Winston
which means  I can cancel that withdrawal and redo it again?

@tedanton 
I don't know how or what features the exchanges have built in on the back end. It's impossible to "cancel" a pending transaction in IOTA, but they might have some tool built in to achieve the same thing as a cancellation for the end user.

I can't really give any advice on exchange stuff since I have no experience with that. You might get better answers by posting this question in the Trading forum.
 
By coffee7 - 16 Feb 2018

My stolen IOTAs: 10.1225 Gi

this address:
VLTARELGWYV9WYDNYXGSE9RKOVFQRHDCJYIOYJSSTNQLALXPQLEJLEXBFKYDBXVBZTNTTAWHUYIMSWOQWRHYCHRYQA

https://iotasear.ch/address/VLTARELGWYV9WYDNYXGSE9RKOVFQRHDCJYIOYJSSTNQLALXPQLEJLEXBFKYDBXVBZTNTTAWHUYIMSWOQW

PLEASE HELP
By Mlemus - 19 Feb 2018

Help request respectfully being requested !!

??I suspect my 1200 + Iota tokens have been stolen since I have followed the " My Iota balance is 0" instructions and have attempted to generate 70 new addresses some times with no success.  I sent 1200 Iota on  believe October 17  I did not do a single transaction since then,   but did sign in to the wallet at least twice  a week  with the bottom address using  wallet 2.53 light wallet.  I had to do some travel for a while and  lapsed on checking my balance for a few weeks and noticed on the 2 days ago that balance was 0 .
I thought I may have altered the auto gen seed , not sure. My PC is very well protected regarding being hacked locally, and I am certain  I am using the correct seed.    Wondering if the series of events tell of the inevitable  stealing of my tokens .  This was the original address of the wallet that I had been using to check my balance to check my balance with success previously.
?
https://thetangle.org/address/WGQXJRAEGFOBWREJTXYMYCOSVZMMQBHLLMZZ9LUCBWSIGAPPVTDMONVSDTYBPVMACBHIKMFADIQD9FEWZ??? .

Would greatly appreciate any help or advice on this. Is  this is a reclaim tool issue, or theft? Would truly appreciate some advice so I  can either ?take proper recourse , or just move on and learn by experience.  Thanks any help would be truly appreciated !?
By Mlemus - 19 Feb 2018

Note that the address was above part of chain but not the original .  Original was 

https://thetangle.org/address/WGQXJRAEGFOBWREJTXYMYCOSVZMMQBHLLMZZ9LUCBWSIGAPPVTDMONVSDTYBPVMACBHIKMFADIQD9FEWZMLHMHSGLW???   prior address was part of the chain but not original .  Sorry! .??
By CryptoHamster - 19 Feb 2018

Marty L - 19 Feb 2018
Help request respectfully being requested !!

I suspect my 1200 + Iota tokens have been stolen since I have followed the " My Iota balance is 0" instructions and have attempted to generate 70 new addresses some times with no success.  I sent 1200 Iota on  believe October 17  I did not do a single transaction since then,   but did sign in to the wallet at least twice  a week  with the bottom address using  wallet 2.53 light wallet.  I had to do some travel for a while and  lapsed on checking my balance for a few weeks and noticed on the 2 days ago that balance was 0 .
I thought I may have altered the auto gen seed , not sure. My PC is very well protected regarding being hacked locally, and I am certain  I am using the correct seed.    Wondering if the series of events tell of the inevitable  stealing of my tokens .  This was the original address of the wallet that I had been using to check my balance to check my balance with success previously.

https://thetangle.org/address/WGQXJRAEGFOBWREJTXYMYCOSVZMMQBHLLMZZ9LUCBWSIGAPPVTDMONVSDTYBPVMACBHIKMFADIQD9FEWZ .

Would greatly appreciate any help or advice on this. Is  this is a reclaim tool issue, or theft? Would truly appreciate some advice so I  can either take proper recourse , or just move on and learn by experience.  Thanks any help would be truly appreciated !


Hi @Mlemus,
this is definitely not a reclaim case, your funds have been stolen. I've tracked a lot of thefts on the tangle explorer these past few weeks and I've seen the exact same path that your funds have taken a dozen times before. 
I actually suspect this address to be a thief's deposit address at an exchange: https://thetangle.org/address/AEXUCAZEATIJNDIBRI9Y9MSFN9YKWONVZBLXV9YARGUKLTBGX9PSZOXRIMYQLKPMMBUQW9UOCPHFWDDSY

My advice would be to file a claim with your local police and ask them to reach out to the exchanges to investigate this particular address.
Or ask the exchanges yourself if that's their address.
If the owner of the exchange-account that's linked to it can be found, maybe you'll get your funds back someday.
I could be on the wrong track though, only proper investigations will be able to confirm or refute this...
I'm sorry that you've lost your funds!
By ckabadjeu - 20 Mar 2018

Hello,

I have just noticed my IOTA (18G IOTA) have also been stolen! The last time I checked my light wallet was in January before the hack happened and before the IOTA snapshot update:
My IOTA was stolen on the 19th January from the address:
FCTXQRRIKWTKWCXE9KNOJGT9GYUANUW9JSKZHGGVFZ9CGO9MFZCU9YJCSRMKNWQHIIOJ9E9WALCLGRB9DQZKZUPZDX

The receiving address was:
QSYCRFFWMSQOIOBZCNOWXMGKOZILITDAKIFKXNASQZTWNRIRDRNPDEEZ9DJZQXVBABXYWRDGGVFCZ9999

Transaction: https://thetangle.org/address/FCTXQRRIKWTKWCXE9KNOJGT9GYUANUW9JSKZHGGVFZ9CGO9MFZCU9YJCSRMKNWQHIIOJ9E9WALCLGRB9D

I am so lost now as IOTA was my biggest investment ! It feels so disturbing to have suddenly lost everything!