Jump to content

a few user reported their gatehub wallet been hacked and XRP sent to r9do2Ar8k64NxgLD6oJoywaxQhUS57Ck8k


Recommended Posts

4 minutes ago, Silkjaer said:

Nothing wrong with considering worst case scenarios. But likely Gatehub doesn't even store KYC material themselves. And I'd rather focus on more likely scenarios first, since the evidence on the XRPL doesn't point in that direction :)

Every FI with KYC has! to store your documents , being  able to hand it to authorities in case of any legal actions.

Link to post
Share on other sites
  • Replies 1.2k
  • Created
  • Last Reply

Top Posters In This Topic

Top Posters In This Topic

Popular Posts

On June 1 we were made aware of a theft of 201,000 XRP (transaction F6E9E1385E11649A6C2F88723A821AF209B54030886539DCEF9DDD00E6446948) and immediately started investigation. It turned out that the acco

Hey all! We are aware of the matter and are looking into it. If anyone has any information please contact us at: security@gatehub.net   GateHub

Reminder: There is no direct evidence pointing to Gatehub being responsible even though it may appear as the most likely scenario right now. Just be careful about jumping to conclusions What you c

Posted Images

5 minutes ago, superboon said:

it makes sense since you dont need do any effort to fake ids if you have originals. Secondly you dont run risk to get detected since the used ID is legit.

more over in case your account gets blacklisted you have a scapegoat and no risk for yourself.

Every self respecting criminal has a couple of fake passports on stock. Those are very easy to get hold of.

But anyway, you can believe what you want. The largest amounts have been laundered through Changelly and ChangeNOW which do not require KYC information, that's of course not a coincidence.

Link to post
Share on other sites
1 minute ago, mrenne said:

Every self respecting criminal has a couple of fake passports on stock. Those are very easy to get hold of.

But anyway, you can believe what you want. The largest amounts have been laundered through Changelly and ChangeNOW which do not require KYC information, that's of course not a coincidence. 

ok i get that point. the question is still valid. Has personal info on GH also got compromised.

9 minutes ago, Silkjaer said:

Also if they use a KYC service provider that does all the processing? 

why are you asking? I dont know,  im assuming they hold it but could you clarify ? If not  ofc my concerns are not valid.

Otherwise you HAVE to take this scenario serious and into consideration.

best regards

 

 

Link to post
Share on other sites
6 minutes ago, superboon said:

ok i get that point. the question is still valid. Has personal info on GH also got compromised.

Of course the question is valid. I was only reacting because you did not ask the question, you wrote "we must assume" and there are NO reasons to assume it has been the case.

6 minutes ago, superboon said:

why are you asking? I dont know,  im assuming they hold it but could you clarify ?

GateHub, just like many other exchanges and financial institutions, has outsourced their KYC/AML. They are using the German company http://4stop.com

This is a highly specialized company with a good reputation. Although GateHub remains legally responsible, they don't do this kind of stuff themselves any more so most likely their KYC data is not even stored on their own servers.

Edited by mrenne
Link to post
Share on other sites
2 hours ago, gatehub said:

Dear community,

 

We are in contact with all exchanges involved and are working together with law enforcement to freeze the transactions.

Due to an ongoing investigation and  security reasons we can not share any more information. 

 

We would like to thank all exchanges for their cooperation. 

 

GateHub Team

This is madness two weeks down the strech and your still investigating without statement for the victims.

Absolute Joke!

Link to post
Share on other sites
13 minutes ago, Jillian said:

Has anyone noticed any discrepancy on their Gatehub Access log.  On my Access log in,  it always shows "sign in" except for the day the wallet was hacked.  Same IP address as I have always used appears also.

Its because they didn’t logged in to your account on Gatehub UI. They use the back door so it doesn’t trigger any notifcations.

Link to post
Share on other sites
48 minutes ago, tulo said:

@gatehub Can we know if deleted wallets are at risk too? You never told us what was happening to deleted wallets. The only asnwer I remember is that after 1 month they were going to be deleted from any database.

Is that true?

Do we need to secure also those wallets?

 

Don't know, but would guess that is prudent.

 (I remember the same verbiage, re: deletion, but I always made a note when I shared any ledger address skey with GateHub - or anyone - just in case.)

Edited by NightJanitor
Link to post
Share on other sites
9 hours ago, tekkillah said:

XRPchat user since day 1 after migrating from Hurukan's XRPtalk years ago.
Supporting Ripple & HODLer since early 2014...
GateHub user since day 1 after enjoying RippleTrade era.
A true believer. Broken now. Broken.
My wallet is empty. All stolen.

I am devastated and I hope it will never happen to any of you. :(

@alloyxrp Any recommendation? What is this club about?

@gatehub @enej I hope you will find the people doing this, refund everyone and not do like JustCoin did years ago...

Thanks for your help.

I think I won't sleep. I just hope I'll wake up from this nightmare.

We've sent you a DM and received your email.

Link to post
Share on other sites
On 6/14/2019 at 11:56 AM, superboon said:

Ok guys i will let the cat out of the bag.

This one might be even bigger than you think.

Gatehub confirmed ~18k possible compromised accounts. Its clear the hackers must have had access to the database with secretkeys.

looking at how the "hack" was performed and how they are able to launder the stolen coins with so many different accounts, its obvious he/they must be using fake Identities to pull this through.  (Exchanges all have KYC).

So we are not only talking about the theft of millions XRP but also 18k cases of possible theft of Identities, WE must assume the perpetrator(s) also had access to Gatehubs KYC database with all uploaded client documents.

 

tl:dr Your passport might be used to launder stolen funds!

 

 

 

Something to look up?????

1) @gatehub seems to know WHO of their clients are vulnerable to theft (18K so it seems?)

2) But what separates the vulnerable from those who are safe?
My son who still has a wallet with 16K on Gatehub. (I warned him of the ongoing hack but he is so busy that he still didn't find the time to put them safe :unsure:).
But he told me (just double checked it) that he did NOT receive a warning email grom Gatehub of being vulnerable to a direct theft from the hackers
But now he did receive a warning from Gatehub as potential target with phishing.
The last payment he made on XRPL was on 5th of Jan 2018 and before that he ONLY received payments from computing for good after the initial activation on 7th of Jan. 2014
For some reason (anyone knows?) he was NOT warned by Gatehub for potential hacking..... And they do have him in their records because he was warned for the phishing

Link to post
Share on other sites
On 6/14/2019 at 11:56 AM, superboon said:

Exchanges all have KYC

Binance lets you transfer 2BTC every day without KYC. Just set up more accounts if you need higher KYC-free bandwidth.

But nevertheless, if Gatehubs KYC databases have been compromised, and these documents were not encrypted by these "backed by Chris Larsen" amateurs, then that's the end of this company. And some bad publicity spotlight on Ripple, which will be well deserved.

Link to post
Share on other sites
1 hour ago, kanaas said:

Something to look up?????

1) @gatehub seems to know WHO of their clients are vulnerable to theft (18K so it seems?)

2) But what separates the vulnerable from those who are safe?
My son who still has a wallet with 16K on Gatehub. (I warned him of the ongoing hack but he is so busy that he still didn't find the time to put them safe :unsure:).
But he told me (just double checked it) that he did NOT receive a warning email grom Gatehub of being vulnerable to a direct theft from the hackers
But now he did receive a warning from Gatehub as potential target with phishing.
The last payment he made on XRPL was on 5th of Jan 2018 and before that he ONLY received payments from computing for good after the initial activation on 7th of Jan. 2014
For some reason (anyone knows?) he was NOT warned by Gatehub for potential hacking..... And they do have him in their records because he was warned for the phishing

I did NOT receive  the phishing email or an email that my account was vulnerable. My account was hacked and drained.  I had always received the new device confirmation email and the Gatehub support email.  I did question this false sense of security they were giving to account holders telling them if they did not receive an email there was no reason to suspect their account was threatened.   I pointed this out on  my support ticket.  

Honestly I am starting to lose patience.  3 years with Gatehub. Wallet created in June 2016.

 

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.