Bitcoin user loses 2 BTC in possible Electrum phishing attack
The reddit user "finalremedy" reported losing their 2.02729024 BTC ($39k) to a hacker last month after possibly following a fake update link for their Electrum client.
The user stated they had originally mined the coins around 2013, and had been saving them for the future:
It's a real shame, I was really proud of owning these coins having mined them originally myself and I was hoping one day that I could split them between my [...]
1400 Bitcoins stolen after user updates Electrum with a malicious version.
An Electrum user reported an issue on the software's Github explaining how they had 1400 Bitcoins taken from their wallet after a malicious update was installed.
Quote of the user '1400BitcoinStolen':
I had 1,400 BTC in a wallet that I had not accessed since 2017. I foolishly installed the old version of the electrum wallet. My coins propagated. I attempted to transfer about 1 BTC however was unable to proceed. A pop-up displayed stating I was required to update my security prior to being [...]
Reddit user seraf1990 has $350 stolen by Windows Clipboard malware
A reddit user reported this week how their coins were stolen after attempting a transaction out of Binance. The user copied their deposit address from Coinbase, and after pasting and sending the coins from Binance, they discovered the malware had modified their clipboard's contents and replaced their deposit address with a look-alike address owned by the hacker:
This malware can be countered by always double checking the address you paste from your [...]
CryptoLocker - All Bitcoin Addresses - Complete Wallet Balance
All Bitcoin transactions and addresses for malware CryptoLocker
Btcst.com User pirateat40 - All Bitcoin Addresses - Complete Wallet Balance
All Bitcoin transactions and addresses for user pirateat40 on Btcst.com, who stole $4.6M with their Ponzi Scheme.
10xBitco.in - All Bitcoin Addresses - Complete Wallet Balance
All Bitcoin transactions and addresses for the historical cryptocurrency scam 10xBitco.in
414 BTC ($4.5M) CWT Ransom Payment Tracking
Travel giant CWT just payed 414 BTC to have 2 TB of company data unencrypted, after it it was taken hostage by an encryption script deployed by hackers.
Here, we are tracking where the payment goes. We can see on July 28 the ransom payment was sent. $7605abd7afa8a4b851d393a682bf845cb70715da38ba15df3fde67455cb6f4f7
The hackers began moving the coins 2.5 hours after the payment, first by sending a 1 BTC test send to their new wallet $58a22a5a40a8cb98df8398567f33402c577affbb8d3d0c993fa17289c24d
$65 Million stolen from NiceHash
In December of 2017, Nicehash had 4,736 BTC taken from their wallets. This took place just a few days after they completed maintenance to their API, which possibly opened up a security fault.
The attached address is where the funds moved to during the hack.
Press Release Thread:
Cryptoshuffler, a clipboard swapping trojan has gathered over 23 bitcoins ($160K) from victims
A trojan that has been silently swapping out copy+pasted addresses on victim's computers with its own address has netted itself over 23 bitcoins since its first payment in September of 2016.
When 25,000 BTC get stolen from one person (2011)
Here is the unfortunate story of bitcointalk user 'allinvain', who in 2011 woke up to find 25,000 BTC ($425K then, $120M now) stolen from his PC. Their wallet.dat file was apparently left un-encrypted and vulnerable on a live Linux computer, which a virus or attacker was able to access.
The attacker, however, was kind enough to leave 1720 BTC untouched, which it appears allinvain was able to safely sweep them the next day.
Original thread here: https://bitcointalk.org/index.php?topic=16457.0
Petya Ransomware collected 4.1 BTC ($17K)
The Petya ransomware was first seen in 2016, but this new strain in 2017 is one of several ransomwares using NSA's leaked Eternalblue exploit.
This version presented the same Bitcoin address to every victim, which was clearly useless because the ransomware was modified to be unable to un-encypt the files it held hostage. It attacked over 80 companies, mostly in Ukraine and western Europe, most notably Ukraine's Chernobyl nuclear power plant's radiation monitoring system was disabled.
Wannacry Ransom Receives 53.45BTC ($230K)
As of Sept 2017, the Wannacy Ransomware attack that infected over 230,000 computers in 150 countries has been paid over 53 BTC to un-encrypt files. The bitcoins have been on the move, possibly being mixed through several coin tumbling services.