Poloniex hacker?

Uh.....

twitter.com/poloniexhack/status/962288838692474880

Other urls found in this thread:

twitter.com/poloniexhack/status/962288838692474880
twitter.com/SFWRedditGifs

If they seriously store passwords plaintext, they deserve to get hacked.

I'm betting this is fake, though.

Fuck, i have same password and email at everywhere

This. Only 14 year old script kiddies would ever consider storing passwords in plain text.

Tried one of those, can't get in. Fake.

Fuck, I used my work email and my password is ih8niggers

Anyone tried one to see if it is legit?

nice one

Or doe a single round of SHA256 w/ no salt

>twitter.com/poloniexhack/status/962288838692474880

I just tried some of the logins. Only one worked, but they had 2fa enabled.

big if true

OH SHIIIIIIIIIIIIT

99dent but he has 2fa

Could be just one they created

Yeah, some of those work

FUCK

Haven't used poloniex in years though

YES YES this is the FUD we need to dirve btc down to 5k

Do people unironically actually not use strong alphanumeric passwords?

Do I need to change password?

tried both @naver.com ones and they worked.... jesus fuck

nooo my linkies

They could’ve just made those accounts calm the fuck down

How do you think that would help in this case??

if only a couple work while most fail, it's overwhelmingly likely that's his own accounts

doesn't make sense though, why not create every account on the screenshot in that case?

welp, for once OP isnt LARPing

big if true

Come on baby, crash this market. NOW.

big if large

my email is my full name @ gmail and my password is "justinbieberownsmyasshole". Not a good day.

just some larper with shorts open. not a bad idea actually if it goes viral.

true if big

tethered up @8800,waiting for the crash.

and we just got the perfect scapegoat after bitgrail "hack"

He probably didn't want to take the time to create 25 email accounts and polo accounts with 2FA enabled. Create a few and scatter them in the list.

big, therefore true

and now you've doxxed yourself as a Veeky Forums poster, you've really gone dun it

poloniex can die in a fire. 7 month open ticket for 2000$

Holy fucking shit they work .

HOLY FUCK THE PASSWORDS WORK

Feels good having 2fa on absolutely everything

>using le stronk alphanumeric password in plaintext is somehow more secure
the absolute state of Veeky Forums

Cool good thing I never used Poloniex because I always heard how shit it is.

hotmail ones didnt work

fuck

huge if big

can someone explain to me why anyone uses any exchange that's not Bittrex or Binance? What's the point of using Bitgrail or Poloniex or AbuCoins or any of that? It all just seems so sketchy to me

first of all Poloniex definitely uses a hash algo like bcrypt
second of all, you don't have "usernames" on poloniex so you can already know this isn't their database

Friendly reminder to sell now. This is the perfect storm with the Binance and Bitgrail bullshit flying

shitcoins my dude. shitcoins.

who is this and why does he follow

you would be surprised how many incompetent retards are calling themselves software developers

Anyone whos been in this space for more than 6-7 months has at some point had a polo account. Polo was the bittrex or binance before they took off.

Binance has so many though

this makes sense

also checked my dudes

Good thing I came in July lel
Bittrex and Binance are secure af

I bet people that shit their pants right now, will loose their own info on his super secret website he's prepping.
what a day!

>Abucoins

now's the part where you backup the 2fa keys
/data/data/com.google.android.apps.authenticator2/databases/databases

>unhashed passwords
That's really bad.

honestly, do they work? Still hackers can't withdrawl without email acces. API key's might be a problem

OMFG
Try to log in with these accounts, shit works only need 2fa ofc and the other i tried had email code send -_-

They want the tier 3 shitcoins like nano and turtle

Newfag spotted
>up to 300 BTC payments required to list coins
>less than a year old
Binance is a exit scam waiting to happen
Bittrex is a dinosaur in deep shit
And both don't have all the promising coins listed

OH NO!!! MY PRECIOUS 80 DOLLAR WORTH OF ADA I STILL MIGHT HAVE ON POLO!!! AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHHHHHHHHHH!!!!! good thing polo decided to be turbo faggots to its legacy holders and i moved them all to bittrex months ago

>Oh crap
>Login into Poloniex account from years years ago
>Oh right i don't have any funds in here anymore
>Enable 2FA just because

Poloshit is really fucking shitty for having password in clear text, this is actually illegal where I live.

Tried all of them. fake.

also

this is from some stupid phishing site he created that steals credentials
must be a mimic of poloniex domain..

how people on Veeky Forums this stupid ffs

kazakhstan?

some of these mails are used on normiebook and dont look lie bots/fresh accounts.

Maybe he made those accounts? Full list or larp.

the [email protected] works

what does this imply?

These idiots always have blatant typos. The fake stellar blog post that spelled it 'steller" was great.

This. Digits confirm. It could be an attempt to extort money from Poloniex.

You don't understand. You have it backwards. Poloniex is the tried and true American exchange that we all used for altcoins, for years. Bittrex and Binance were and still are seen as sketchy shitcoin exchanges to buy complete garbage that just happened to explode over the past few months as more and more people were pressured to buy lower cap shitcoins. Poloniex was seen as something of a gatekeeper for which altcoins are "legit," for a long time. If they get hacked, you can be sure it will have massive effects on the entire crypto economy.

That being said, I think this is nothing at all because Poloniex was one of the most secure exchanges for years. Almost as secure as you'd expect something like Gemini, Gdax, Bitstamp to be. Not quite but up there but for altcoins.

this is probably the most true

>tfw don't even have a polo account and still just changed all my exchange passwords

no it doesn't

are you an expert on bot fresh account appearance you fucking dork

Ah, nice.

>plaintext passwords

Fake.

So what one are you supposed to use?

Prob this gay guy

They range from terrible passwords like "miner3033" to great ones like "c&%e3nC&%E3N" and yet it doesn't matter because they're all in plaintext.

I tried the [email protected] one and it works, just needed 2FA.

this guy fucks

what if false thefore small?
big if tru

Lol this is fake. He created those accounts himself.

>no it doesn't
It does work. I tested it too.
[email protected]
5800xm5800xm

Test it yourself.

this
i've worked a bit as a freelance webdev in the past
nearly half of the websites i've done backend stuff for have stored sensitive information in plain text in an sql database
websites usually ranged between 500 and 25k registered users
this is the reason why you should use different emails and different passwords for every site you register on

This is truely the wild west era of digital assets
Its kind of humbling to witness the entire thing in my lifetime
I feel like we are in the equivalent to "not being able to call because you are using the internet" period but for crypto

or they were phished

>what is password reuse
The only real risk, you absolute fucking brainlets
Do you think poloniex won't reset every password after this is leaked?

aye cheers mum thanks for picking up the phone id only been trying to download that file for the last four hours

I will give you advice. Take your money. Tomorrow you will see very serious things.

There's already hundreds of modules/libaries that does password hashing for you. Don't need to do anything. This has got to be a troll

sounds just like a pajeet phisher who missed out on buying at $6k

whoaaaa scary.

prove it

oooh no, sold everything

Several billion worth of passwords and email addresses have been stolen because of this over the past 10 years. Only 14 year olds, really?

I think the duplicated entries and misspelled email (gmai.com) point to this being the results of a phishing attack rather than an actual hack