坑爹的Mt.Gox确认密码泄漏，各位小心你们的BTC啊。

杯具了

ideeinfo 侬 好早啊

丢了BTC的应该要求去赔偿！

@wonster 哈哈，你也在这里混啊

呵呵 每天都转转

居然是香港人干的？早上google提示我的gmail帐户遭到可疑的访问，赶紧改密码

The bitcoin will be back to around 17.5$/BTC after we rollback all trades that have happened after the huge Bitcoin sale that happened on June 20th near 3:00am (JST).

One account with a lot of coins was compromised and whoever stole it (using a HK based IP to login) first sold all the coins in there, to buy those again just after, and then tried to withdraw the coins. The $1000/day withdraw limit was active for this account and the hacker could only get out with $1000 worth of coins.

Apart from this no account was compromised, and nothing was lost. Due to the large impact this had on the Bitcoin market, we will rollback every trade which happened since the big sale, and ensure this account is secure before opening access again.

UPDATE REGARDING LEAKED ACCOUNT INFORMATIONS

We will address this issue too and prevent logins from each users. Leaked information includes username, email and hashed password, which does not allow anyone to get to the actual password, should it be complex enough. If you used a simple password you will not be able to login on Mt.Gox until you change your password to something more secure. If you used the same password on different places, it is recommended to change it as soon as possible.

SERVICE RETURN

Service will not be back before June 20th 11:00am (JST, 02:00am GMT). This may be delayed depending on what is found during the investigation.

恩 不错 比抢银行来的刺激

还好我的gmail密码没有到处用，否则就惨了

@ideeinfo "早上google提示我的gmail帐户遭到可疑的访问，赶紧改密码"
我也有同样情况，google 安全上做得不错。

@ideeinfo 不一定是香港人，在香港租 server 很簡單..

看这个链接，mtgox事件的timeline: http://blog.zorinaq.com/?e=55

这段有意思，感谢这位google的兄弟，服务台太贴心了：
The only positive news amongst all this is that Mike Hearn, a prominent Bitcoin community member, and part of the Google abuse/anti-hijack team, proactively forced a password change on all the Gmail accounts that were found in the leaked MtGox account list.

Bank robbery IRL, oh wait, not IRL.

reddit上的BLEAOURGH的内涵回复：

Look on the bright side: nobody in the Bitcoin mining community is going to have the processing power to make brute forcing these unsalted passwords in a reasonable amount of time feasible.

TrageHill开始抢客户了，哈哈

Dear Sir or Madam,

A few hours ago the Bitcoin trading website Mt Gox has been hacked. Malicious individuals have been able to obtain a database containing usernames, email address and encrypted passwords. This information has been posted publicly on the internet.

As a Bitcoin supporter I'm now sending a message to every email address contained in the hacked database. This is to warn you that your username, email address and password have been leaked. I therefore strongly advice you to change your passwords. If you have used the same password on different websites it's highly recommended to change your password on all of your accounts!

For a more secure alternative to Mt Gox, the community appears to be moving to TradeHill. So this is no reason to lose faith in Bitcoin itself. It must be seen as a warning that not every website can be trusted with your data however! Their link is http://www.tradehill.com/?r=TH-R15683 (Note: You can remove the Referral Code when registering if you want!) This is certainly not the only website where you can exchange Bitcoins, also check out http://www.thebitcoinlist.com/dp_bitcoin/bitcoin-exchange/


Sincerely,

A Bitcoin supporter
1CWSjov2N7ix41bZ8bJfHXkdLLbkUsG9Y7

@est 确实很内涵 :-D