DNS Hijack Leads To Bitcoin Heist

First time accepted submitter FearTheFez writes "Social Engineering and poor DNS Security lead to a Bitcoin heist worth about $12000. Bitcoin broker Bitinstant was robbed after thieves managed to take over ownership of their domains. While Bitinstant claims that no customers lost any money, without 2 factor authentication all it took was a place of birth and a mothers maiden name to gain access. This looks like poor security from everyone involved."

Re:Conviction for stealing bitcoins

[Zemran]

I do not think that any court or official government body recognizes your television as being a legitimate currency but I can be prosecuted for stealing it. If it has value to the owner, it can be stolen.

Re:Conviction for stealing bitcoins

[aztracker1]

It's wire fraud. Nobody needs to recognize the currency to prosecute for that.

Re:Non story

[Pentium100]

There's nothing stopping you from conducting a Bitcoin transaction in person, aside from the other party needing to hold and/or be able to receive BTC as well.

Yes, but if the transaction is in person, I might as well use cash. Neither me nor him would need an internet connected device to send/receive money and no need to wait for confirmations.

One day Bitcoin may be really convenient, but right now it is too much like cash for online use and too much like a wire transfer (or paypal) for in person use.

Re:Non story

[athmanb]

One hour? If "ease of use" means to have to wait a full hour for confirmation whether the purchase of your coffee went through or not I think I'd rather use cash...

Stengthen your security.

[MrL0G1C]

Mothers maiden name: 9zimu8sj4q99uf
Place of birth: wj9awitkj4girc

If you use real details, you're a fool.