Jump to content

gatehub

Gateway
  • Content Count

    94
  • Joined

  • Last visited

  • Days Won

    2

gatehub last won the day on August 4 2016

gatehub had the most liked content!

About gatehub

Profile Information

  • Gender
    Female

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. Dear community, We are in contact with all exchanges involved and are working together with law enforcement to freeze the transactions. Due to an ongoing investigation and security reasons we can not share any more information. We would like to thank all exchanges for their cooperation. GateHub Team
  2. Hey, similar to a warning by XRP Chat we also put out our warning on Tuesday: https://support.gatehub.net/hc/en-us/articles/360024460614-ATTENTION-Warning-about-phishing-emails GateHub will never send sensitive information such as ripple secret keys over email. Also you can check our customer correspondence timeline to see if any emails were sent: https://support.gatehub.net/hc/en-us/articles/360024622613-Customer-correspondence-timeline
  3. Due to phishing attempts, we conducted a timeline of our public correspondence during the recent occurrence. If you received anything outside these dates or you are not sure of its authenticity please contact our support. See the timeline here: https://support.gatehub.net/hc/en-us/articles/360024622613-Users-correspondence-timeline
  4. We have been notified that member of the XRP Chat community have been receiving phishing private messages from someone pretending to be Gatehub support and/or other members claiming they used their Repayment Program. In the GateHub support private message there is an attached document. DO NOT click on the document as it might be malicious. In case you have received such a message, please report it by using the report button.
  5. ATTENTION: Malicious email warning We have been notified that our users are being targeted with phishing emails from addresses registered @gatehub.com and @gatehub.net. Phishing emails look like they have been sent by GateHub, however, they were in fact sent by the attacker. Time of emails is night-time between 10 and 11 June 2019, UTC. The emails are malicious and did not come from GateHub. GateHub will never send sensitive information such as ripple secret keys over email. The subject line of phishing emails is: Critical Security Warning / Action Required - New Secured Wallets Both emails instruct users to move their funds to a new hosted wallet created by GateHub. This is in fact a ripple wallet created by the attacker and IT IS NOT SAFE! Do not transfer any funds to the address provided in this email. GateHub WILL NEVER create new ripple wallets on behalf of any user. The two types of email: From @gatehub.net Note: the warning banner that the email was not verified by GateHub Limited. and from @gatehub.com See the official article with screenshots here: https://support.gatehub.net/hc/en-us/articles/360024460614-ATTENTION-Warning-about-phishing-emails We kindly ask our customers to forward any suspicious email to security@gatehub.net What you should do: Ignore the instructions in the email. Forward the email to security@gatehub.net. Mark *@gatehub.com as spam in your email inbox. We strongly advise against saving your sensitive information in your email or any other online storage. For any additional questions, please contact us through our customer support service, here. Sincerely, GateHub team
  6. Dear GateHub customers, A few days ago we learned that a criminal hacker had accessed several dozen native XRP Ledger wallets and stolen crypto assets from our customers. Through a well-orchestrated attack, the perpetrator gained access to a database holding valid access tokens of our customers. We detected an increased volume of API calls (using these valid access tokens) coming from a small number of IP addresses. Upon detecting this intrusion, we immediately disabled all customer access tokens and stopped the suspicious API calls. We believe this action prevented further losses. We have identified 103 XRP Ledger wallets suffering losses in the attack. Our users are our highest priority. We are doing the best we can to learn how this intrusion happened, apprehend the perpetrator and help you protect assets that you have stored on the XRP Ledger. Altogether we detected 18,473 accounts that were potentially affected as a result of suspicious API calls. From these 18,473 accounts, 5,045 XRP Ledger wallets contained active balances. We promptly notified all GateHub customers who might have been affected through multiple channels, including emails, telephone messages, and calls. We have done our best to inform all of you about what we have learned and advise you to on how to protect assets that you hold on the XRP ledger. But we need your help. Our XRP Ledger Wallets are protected with secret keys kept in an encrypted state. GateHub does not have access to users’ native RCL wallets and we do not know your encrypted passwords. We cannot move or withdraw assets on your behalf. Only you can do this. Customers who previously received an individual warning e-mail from GateHub and thereafter did not move their funds to their hosted wallets are still at risk of having funds stolen by this thief. We urge all customers individually notified by email to move their XRP into a GateHub hosted wallet immediately. The funds were sent to several exchanges, including Freewallet.org, Changelly, Changenow, Kucoin, Huobi, Exmo, Hitbtc, Binance, Alfacashier and others. We have already contacted each recipient exchange with the aim to freeze and retrieve all customer assets. We urge all affected customers to directly contact these known destination providers and ask these accounts to be frozen, if possible, and to file theft reports with their local law enforcement. Please be assured that we are continuing to vigorously investigate this incident with the assistance of our internal response team, law enforcement agencies, third-party professional security and forensics teams, and other investigative authorities. We cannot share additional forensic details at the moment, due to the ongoing criminal investigation. We are hopeful we can nail the perpetrator. In addition, we are taking steps to safeguard all XRP Ledger wallets (not just the small number potentially affected by the access token exploit). In the upcoming days, we will re-generate customer encryption keys and disable existing XRP Ledger wallet secret keys for all Ledger wallets. New secret keys will be created and encrypted, which will prevent access by the perpetrator to any XRP Ledger wallets. This process will be fully automated and we will engage our customers on a rolling basis. Other than signing into your account, no additional action will be required. When this update is available, each customer will be notified via email with instructions to sign into their account, and automatically to re-generate security keys. As always, we also suggest our users change your login passwords periodically, use strong passwords that are not already used on other websites, have 2FA enabled, and avoid being duped by phishing emails and suspicious websites. We would like to again apologize to our valued customers who have been directly affected by this attack, and more broadly, to the Ripple community for this inconvenience. We also wish to thank the many individuals who have been of great help in resolving this matter. The investigation continues, and we will not rest until we get to the bottom of it. http://gatehub.net/blog/gatehub-update-investigation-continues/
  7. We are sorry to hear about this incident. After checking this particular case, the transaction was made 10 days ago and therefore was not executed by the exact perpetrator mentioned in the preliminary statement. We will look into this matter as well.
  8. Please provide us with the wallet address of user/users who haven't received a warning email. Please send it to our private message if you do not feel comfortable posting it publicly. After the 3rd of June, multiple emails were sent to all users whose wallets might be compromised not just to the ones that had their funds stolen.
  9. Thank you for your comment. We have already corrected the number of compromised wallets.
  10. As stated in the blog post and on our social media, this is only a preliminary statement. Please know that we are working tirelessly to complete a thorough investigation and notify any customers whose accounts may have been affected. As soon as the investigation has been completed an official statement will be posted. We appreciate your patience in this matter.
  11. We would like to again clarify and make it absolutely clear. All users that might be affected but not necessary have their funds stolen received an email with further instructions. - If you received an email from us, please read it carefully and act accordingly. - If you have not received an email from us, then we have no reason to believe your account was compromised. We will keep you posted.
  12. We want to make it absolutely clear that: hosted wallets have not been compromised our cold storage has not been compromised only a limited number of users that we have sent emails to might have been compromised We will keep you posted.
  13. Dear valued community members, Recently, we have been notified by our customers and community members about funds on their XRP Ledger wallets being stolen and immediately started monitoring network activity and conducted an extensive internal investigation. Although we have not identified any action or omission by GateHub that may have facilitated or allowed this apparent theft to occur, we apologize deeply to all of our customers for this issue and pledge to get to the bottom of it. We already sent out an email to all users that might be affected as a result of suspicious API calls with instructions on how to protect their funds. If you received an email from us, please read it carefully and act accordingly. If you have not received an email from us, then we have no reason to believe your account was compromised. While the investigation is still underway and we can not post any official conclusions just yet here are a couple of findings so far. API requests to the victim’s accounts were all authorized with a valid access token. There were no suspicious logins detected, nor there were any signs of brute forcing. We have however detected an increased amount of API calls (with valid access tokens) coming from a small number of IP addresses which might be how the perpetrator gained access to encrypted secret keys. That, however, still doesn’t explain how the perpetrator was able to gain other required information needed to decrypt the secret keys. All access tokens were disabled on June 1st after which the suspicious API calls were stopped. At the moment we estimate that 58 XRP Ledger wallets were compromised. So far it looks like all the victims had their XRP Ledger wallets hosted on GateHub, but we cannot yet rule out that some wallets were not. To conclude the investigation as soon as possible, we are working closely with a professional IT forensics team to determine whether our system was compromised or not. Appropriate Law Enforcement Agencies were also notified about these thefts, and we will work diligently with them to help track the perpetrator who did this. We will post an official statement after the internal investigation has been completed. Last but not least, we would like to thank the community for offering continuous help. If you have any information that might help us or law enforcement agencies, please contact us via security@gatehub.net. Enej Pungercar Founder and CEO, GateHub
  14. Hey all! We are aware of the matter and are looking into it. If anyone has any information please contact us at: security@gatehub.net GateHub
  15. Hey Dmoney. Unfortunately, Rippex did close their gateway on 2 of April 2018. You can read more about it here: https://gatehub.net/blog/rippex-gateway-closure/
×
×
  • Create New...