Ledger wurde geleert, Sadage…

[root_s2yse8vt]

Up

0

Down

::

Ich habe meinen Ledger seit einem Monat nicht mehr überprüft, und als ich gestern nachsehen wollte, stellte ich fest, dass jemand vor etwa 2 Wochen meine .45 btc geleert und weggeschickt hat… 🙁 Ich bin mir nicht sicher, wie das passieren konnte, aber offensichtlich wurde er irgendwie kompromittiert?

Ich habe meinen Ledger Nano S erst Ende 2017 bekommen. Aufgerüstet auf einen Nano X und übertragen mein Konto von der S auf die X über die Passphrasen in der Mitte des letzten Jahres. Haben DCAing BTC in mein Ledger für mehr als ein Jahr und jetzt ganz plötzlich jemand gehackt und übertragen sie alle.

Ich habe meine geheimen Phrasen aufgeschrieben, aber tbh, ich habe auch eine Kopie auf einer externen HD, die ich nicht angesehen habe, seit ich mein Konto übertragen habe. Jetzt kann ich nur noch beobachten, wo die gestohlenen BTC gelandet sind. Ich schätze, es gibt nichts, was ich tun kann, außer noch einmal von vorne anzufangen…schade

[jvsephii]

Up

0

Down

::

Sorry to hear that. This can be tough to bear 🙁

If it helps (so that you eliminate such ever happening again), here’s possible points of compromise:

– *“Upgraded to a Nano X and transferred my account from the S to the X via the pass phrases“* … where did you buy the device? did it come with a pre-written recovery phrase and you just restored that & transferred coins?

– *“I wrote my secret phrases down but tbh, i do also have a copy on an external HD that I haven’t looked at“* … this is a major compromise point — having your recovery phrase in any digital form. Not recommended.

– Additional: How secure was your written recovery phrase? Is it possible someone had access to it all along and just waited for you to accumulate? or someone found it recently from where you kept it.

– Additional (for the journey ahead): Look into setting a 25th word (passphrase) on top your new recovery phrase. Then store your main amounts of coins in the addresses generated while the 25th word (passphrase) was configured. This is an advanced thing and requires relative seriousness. https://www.ledger.com/academy/passphrase-an-advanced-security-feature

[CryptogenicallyFroze]

Up

0

Down

::

So, at one point you typed your seed phrase into a computer?

[debbbs123]

Up

0

Down

::

Weird thing is why so many years later if the leak was the photo on your ex. hdd. Then perhaps something happend this week or month on your computer?

[beerbaron105]

Up

0

Down

::

If what you’ve said is accurate and true :

1. Someone knows where you hid the seed
2. The external harddrive when connected to your computer got picked up by malware or Spyware and the seed exposed
3. Your phone is uploading to your cloud without your knowledge and you have a poor or reused password with weak 2fa or no 2fa
4. You have an app on your phone with privledge to your pictures but it’s malicious in nature and extracted your seed

[Trip_seize]

Up

0

Down

::

Nobody touched your Ledger.

Sorry for your loss though.

[azsxdcfvg]

Up

0

Down

::

If you type your words or digitize them in any way on a computer then you are compromised.

[Halo22B]

Up

0

Down

::

So you have a fully live Nano S floating around that contains your private key you also have your seedphrase in digital format (presumably created on your online computer) stored on an accessible HDD.
As well as your presumably secured Nano X…so many attack surfaces

[metulburr]

Up

0

Down

::

So you took a photo which made a digital copy, then you copied it to an external hard drive. Both of which are vulnerable. Never ever make a digital copy or eventypemit down in notepad and delete it. Always assume you have a keylogger and someone is screencastong your digital content live stream.

[jurassic_chuck]

Up

0

Down

::

Here it sits till it moves again… derp!

https://blockstream.info/address/38jtTVDZXjnMn5Q23vkfzdmLmbqat9wwQA

[ThenScore2885]

Up

0

Down

::

The most logical idea is your HD was used by someone around you. Someone you know.

I stored mine in an old style offline digital camera. 20+ years old. Yet if someone gets hold of it physically, they will find it. So tonight I will be deleting it. I was foolish.

[cogentat]

Up

0

Down

::

Regardless of what people are saying about the photo, this theft is pretty suspicious. Not sure what to think.. why did a photo from years ago just become an issue. I feel terrible for this guy and can’t fathom how his old photo suddenly came to play in this theft.

[Sethdarkus]

Up

0

Down

::

Look into passphrase.

I actually advise storing a passphrase sometimes called 25th word on your phone/cloud.

So long as the seed phrase is only kept as a physical existing item and the passphrase is Digital you got two halves that makes a whole to give access to your keys.

Can’t get in without the other

So even if your cloud is compromised your crypto is safe because your seed phrase is stored physically.

And if your seedphrase is compromised they can’t get access without your passphrase.

I actually advise storing passphrase digitally because if even one character is wrong when you recover it will generate a whole different wallet address.

[disloyalturtle]

Up

0

Down

::

Your problem was storing the passphrase electronically. Sorry this happened to you. If you choose to start over, i would recommend looking into add a 25th word (passphrase) to your next seed. You can keep the 24 words electronically (preferably encrypted) but NEVER EVER store the 25th word electronically. That should keep you relatively safe.

[fanau]

Up

0

Down

::

I’ve read a few suggestions here that someone breached your info some time ago and was just waiting for you to accumulate – I doubt it. No one would take the chance you might move the crypto at anytime. Whatever breach happened I’m sure it’s quite recent.

[Double-Code-8018]

Up

0

Down

::

I hate to hear this but it’s good you’re honest about that photo which is the most likely the cause. That’s why I like the 25th word because it’s a added layer of hidden security. Apples iphones and Macs love to upload photos without your consent so that’s still an option. If not the external HD at anytime it was connected to the computer.. worse when the internet was on was a very big risk.

If I was going to ever plug that external in, it would only be on a PC that will not touch the internet even after it’s unplugged and would run software to 0 out the PC’s drive many times to make recovery hard if not impossible then reinstall the OS and probably repeat the process, but even then I would still feel paranoid connecting that PC to the internet.

I don’t trust apps on phones as they can have permissions to media and have the ability to grab personal data, I know iphones are meant to be better as the apps are run isolated but I don’t know enough about iphones apps to trust them.

Then there is the paper version maybe less likely but still a possibility via a camera viewing it or physical person but no one usually considers that. That’s why my seed is mixed up with many many other words in weird order with a clue I hide away and have also memorized is what I prefer to do with my seed along with the 25th word. I also have another backup version but it’s complicated and private lol

[StatisticalMan]

Up

0

Down

::

>I wrote my secret phrases down but tbh, i do also have a copy on an external HD that I haven’t looked at since I transferred my account.

Seriously come on people. At that point zero reason to even buy a hardware wallet. Might as well throw it in the trash and use a software wallet.

Like buying a car with airbags and removing all the airbags or better yet replacing them with explosives.

[Jogaila2]

Up

0

Down

::

When ledger got hacked they sent out an email to those (including me) that person info was compromised. Ill bet you got that email..

After i got mine i was bombarded by hacker emails of all kinds. They were watching and while i was very careful ever since i still got burned a couple months ago for 1.26 btc

Funny thing is… it hasnt moved yet. It’s still at the address that stole it.

[tim_penn]

Up

0

Down

::

I am truly sorry for your loss. For enhanced security next time, if you want to sleep like a baby, follow this procedure:

1. Buy hardware wallets from three different manufacturers. Create a multisig wallet in a 2 of 3 configuration. Consider using Caravan, a free and open-source software project available on GitHub. Caravan, developed by Unchained Capital, assists in creating and managing multisig addresses and wallets. While the tool was created by Unchained Capital, there’s no requirement to become a customer. You can freely use the software on GitHub without registration.

2. Don’t trust the hardware wallets‘ integrated seed phrase generators. Instead, create your own 24-word seed phrases using casino-grade dice and a scientific calculator. Computers, especially hardware wallets that have very little processing power, struggle to produce true randomness. Flawed “randomness” algorithms have been suspected in numerous wallet compromises by leading cybersecurity consultants. For guidance on this technique, search for dice-generated seed phrase tutorials on YouTube.

3. Record the seed phrases on steel or titanium plates, considering a product like the Keystone Tablet Punch available on Amazon. There are many other suitable products, but the punch method is easy and secure. Make sure you have complete privacy while you are recording your seed phrases. Burn the papers where you previously wrote down your seed phrases.

4. Secure your plates with security hologram stickers with printed serial numbers and lock them using high quality combination padlocks.

5. Put each hardware wallet and its corresponding plate set into an individual tamper-evident bank deposit bag. Label each set as „1/3“, „2/3“, and „3/3“ to differentiate them. Ensure you store each labeled bag in secure locations that are geographically diverse from one another.

6. Avoid discussing your crypto holdings with others and include access instructions to your crypto in your Last Will. Store your Will in a bank safety deposit box.

[Juusojee]

Up

0

Down

::

All these sob stories have the same problem of buying the ledger online from somewhere rather than the official website or they have shared/stored the passphrase online or on an device

[FewElephant9604]

Up

0

Down

::

Are you sure it’s gone, ledger app has a super confusing desktop app when it’s showing your funds on one device while you’re connected to another. Did you check blockchain explorer? Which address got your Bitcoin?

I’m moving my bitcoin the F out of ledger (to Coldcard).

[jurassic_chuck]

Up

0

Down

::

I have once again started using my Nano X with Ledger Live. This time I’ve only written down my 24 word seed and added a 25th passphrase. I’m only storing stuff on my passphrase side, currently. Should be pretty bullet proof this time.

[Lucky_Letter_2730]

Up

0

Down

::

ahhhh thats very sad …..

it only takes a single mistake to lose everything in crypto

mistakes happens

we live 365 days a year ….

[pringles_ledger]

Up

0

Down

::

Hey – truly sorry to hear about your situation. It’s indeed a distressing experience. It seems like your recovery phrase might have been compromised. If someone has access to your 24-word recovery phrase, they can access your funds without needing your physical Ledger device.

Please remember that Ledger will never ask for your 24-word recovery phrase. It should be kept offline and never shared with anyone. If you suspect that your recovery phrase has been exposed, it’s crucial to transfer any remaining funds to a secure account associated with a new recovery phrase as soon as possible.

Our help desk article below will provide more info on what could have happened: https://support.ledger.com/hc/en-us/articles/7624842382621-Loss-of-funds?support=true

[baconequalsgains]

Up

0

Down

::

That’s insane reading all this and seeing how compromised computers and phones are now a days. I was honestly getting comfortable storing my shit digitally because I felt safe.

Reading this thread is freaking me out and realize that I absolutely need to get everything off. Wow

[slaczky]

Up

0

Down

::

Report it to the police. Not sure what they can do, but it is a significant amount money.

[cogentat]

Up

0

Down

::

I’m so so sorry this happened to you. I think this is everyone’s nightmare. Honestly, I’m surprised this happened with a Mac. I’ve had computers, pc’s and macs, for decades and only got hacked once on my pc. Never on my Mac. I would maybe use malwarebytes and bitdefender for security. Did you recently do any updates with Ledger Live?

[Im_just_lampin]

Up

0

Down

::

This is why crypto will never go mainstream.

[[deleted]]

Up

0

Down

::

[deleted]

[hermburger]

Up

0

Down

::

A few months ago ledger released a firmware that allows backdoor restore passphrases. Small chance this happened to you but small doesn’t mean never…

[Foreign_Jackfruit_70]

Up

0

Down

::

I wish Reddit had a ‚haha‘ post reaction.

[doneduardon]

Up

0

Down

::

Hi OP I was hacked as well not having compromised the seed phrase, my guess is malware or I was shipped a fake Ledger when I ordered it through their Amazon instead of their website. Never buying crypto again either way just too risky. Apparently ledger has a class action lawsuit brought against them in California that could possibly lead to recovering some of the stolen assets.

[ImmortalSpirit1]

Up

0

Down

::

Happened to me as well with metamask wallet. Had the seed written and achieved in the note app. Not uploaded anywhere. But they still got it somehow. There seem to be people that see all your pics and what you write on your phone. Didn’t lose as much as you though. Ouch! Let that be a lesson.

[bmoreRavens1995]

Up

0

Down

::

Perhaps someone in your home or someone who had access. Ledger has never been „hacked“. Maybe your phone was connected to the cloud but you didn’t realize it?

[r_a_d_]

Up

0

Down

::

Saudade maybe?

[ishortbus]

Up

0

Down

::

How did you generate your seed phrase?

[Takbira]

Up

0

Down

::

https://www.bleepingcomputer.com/news/security/new-atomic-macos-info-stealing-malware-targets-50-crypto-wallets/amp/

[Autor]

Beiträge