Bitcoin Exchange Mt.Gox Suffers Serious Attack, Instawallet Offline

Bruce66423 writes "The BBC reports that Mt.Gox, the main exchange dealing with Bitcoins, has been attacked, and other resources are off line. A scary reminder of how insecure ALL money is in the computer age..." Also at TechWeekEurope. A message at bitcoin storage service Instawallet's site begins "The Instawallet service is suspended indefinitely until we are able to develop an alternative architecture. Our database was fraudulently accessed, due to the very nature of Instawallet it is impossible to reopen the service as-is."

Is it?

[paiute]

"A scary reminder of how insecure ALL money is in the computer age...."

I applaud the creation of Bitcoin, but really, would you trust your $10,000 more on a server somewhere or in an FDIC-covered bank?

Re:Is it?

And if you did trust it on a server somewhere, would that server be "Magic The Gathering Online Exchange"?

(Or are we supposed to forget that that's what "MtGOX" stands for?)

Re:Is it?

[betterunixthanunix]

If you're into security, I'd highly recommend looking through the specs. It's an incredibly beautiful piece of engineering whether or not you are using it.

I looked at the specs, in great detail. What I saw is a system that uses cryptography but which is not secure under the notion of "security" that cryptographers use. The effort required for a successful double-spending attack on Bitcoin scales linearly with the effort required to use Bitcoin; this is worthless as far as cryptographic security is concerned. It is also troubling that the Bitcoin "security proof" only rules out a single attack strategy. Usually we want security proofs to rule out *all* theoretically feasible attacks, even those that we do not know of.

Re:Is it?

[camperdave]

See! I knew bitcoins were some in-game currency.

Re:Is it?

[camperdave]

The big sack of pennies under my bed is as secure as ever.

Security through bad-guys-not-carrying-a-forklift... Clever.

Re:Is it?

[lgw]

As I understand it, a successful double-spending attack on Bitcoin requires controlling more than 50% of the computing power participating in the transaction validation network at the time you make the transaction. As that is the same thing as the bitcoin mining network, and that has gone to custom ASICs now, that's a pretty impressive obstacle. I don't think even the NSA has that kind of horsepower any more (though if anyone does, it's them).

If there's some flaw you see in the implementation of that, it's a really interesting flaw and you should publish.

Usually we want security proofs to rule out *all* theoretically feasible attacks, even those that we do not know of.

You contradict yourself there. Everything is vulnerable. Everything from AES to SHA-x relies on the premise that no one has come forward with a weakness, and lots of smart people have looked, and that's as good as it gets. You can't prove a negative.

Re:Is it?

[lgw]

When I buy a share of stock or a corn future, my need to trust the government is minimal. I need to trust the exchange. And the big exchanges have an excellent track record - the exchange rules protect against 400+ years of dirty tricks by participants, and the likes of MtGox have a very long way to go. Attacking the database is just the most obvious and straightforward approach; there are so many ways to participate fraudulently in an exchange, or corner the market, or so many other dirty tricks that become rewarding if bitcoin really takes off.

Re:Is it?

[Archangel+Michael]

This wasn't a hack of the database. It was a DDOS attack. The database was not at risk in this case. People who don't understand technology need to not talk about it like they do.

And unlike most other exchanges, I can actually hold on to my own bitcoins, and submit to the exchange only when I want to trade them for other currencies.

Re:Is it?

[Anon-Admin]

That is because you do not understand how the stock exchange works. Some notes to help you under stand

#1) When you buy a stock, you do not own the stock. (Unless you get a hard copy of the stock certificate)
#2) The real stock is in DTCC's (Depository Trust and Clearing Corporation) name in a hidden vault in New York City.
#3) DTCC when Clearing the sale simply moves the record of the stock from one account to another and does not change the ownership of the stock.
#4) DTCC's Data center is running on 10 to 15 year old hardware and the stuff crashes all the time.
#5) Some day the database will crash and the information as to who owns what will be lost
#6) DTCC Will profit as they own all the stocks.

DTCC the privately held company you never heard of processing 4.6 quadrillion dollars a year in stock transactions.

Wait tell you find out who makes up the board of directors!

Re:Is it?

[SydShamino]

In my opinion, microsecond stock transactions are the very type of dirty trick the exchanges should be protecting against, so based on the current actions of the stock exchanges, I disagree with your opinion on the big exchanges' track records.

Re:Is it?

[AuMatar]

No, it does so in the opposite direction.

I bid $10. Someone asks $9.99. Obviously we're going to make a deal. There's an overflow of 1 cent- one of us will make 1 more cent than they expected to. Either of us could move, we could split the difference, or we could just set an exchange wide rule for this (say the seller always makes it, or the buyer).

Now add in HFT. Same scenario. The HFT sees my $10 bid before the seller does, and sends a buy for $9.99 exactly to the seller, buying the stock. He then sells to me for $10. He makes that extra penny. Has he helped me? Not at all- he took an average of half a penny from me. Does he help the seller? Nope, he took half a penny from them, for the service of completing the transaction a few microseconds sooner.

HFT are parasites. They provide no value to either side, but make a vig. There is no bid-ask gap that they reduce because the bid is higher than the ask. If it wasn't there'd be no money for them to make. Its immoral, unethical, and ought to be illegal. It also siphons millions to billions from the economy.

Dwolla Also Hit

[eldavojohn]

Also Dwolla was down for two days but appears to be back up as they appeared to have worked a deal with CloudFlare. Mt. Gox uses Prolexic so this shouldn't affect them, right? Right? Accessing the database of Instawallet sounds like a total fail though.

A scary reminder of how insecure ALL money is in the computer age...

Really? My Celtic ring money is still fully intact around my wrist and still worth the silver it's made out of. All currencies have their ups and downs. Some benefits are double edged swords (just ask Renminbi traders). Nice editorial though -- the services surrounding BitCoin are clearly infantile and only now are getting DDOS protection.

My credit union offers two factor authentication. Could a Bitcoin exchange do the same? You bet. But they haven't. The fact is that it's easier to find legit and robust exchanges and institutions in USD than BitCoin.

target

[roman_mir]

Bitcoin exchanges are a target right now at the current exchange rates, but I was thinking just a little while back, isn't it strange that somebody who released the original protocol is unknown and wishes to stay anonymous? I thought about that for a little bit, there are a number of possibilities. Of-course somebody who had the original idea could run the hash generation for a much longer time before anybody started doing it as part of a mining (proof of work) network. I don't know, it's hidden in plain sight

This feature is then used in the Bitcoin network to secure various aspects. An attacker that wants to introduce malicious payload data into the network, will need to do the required proof of work before it will be accepted. And as long as honest miners have more computing power, they can always outpace an attacker.

- good, what if somebody had a much longer stretch of time to work out the answers before they could even become questions? It's not like those transactions are random.

What other motives can somebody have to release a protocol like this one potentially to be used by millions of people who see this as a way to make money? Giving people incentives to come up with faster SHA generators? Somebody who wants to break encryption mechanisms by generating huge amounts of SHA codes against various data?

I think without actually getting into the source code it's impossible to read the answers to any of these questions, so maybe that's the next step, read the source code.

Re:A reminder of how insecure ALL money is?

[Wonko+the+Sane]

Those depositors were generally not "people in Cyprus" but rather "people in Russia with money in Cyprus".

No, the Russians were all tipped off ahead of time, and were able to withdraw their money via overseas branches that remained open during the freeze in Cyprus. The only people who were affected were regular people and small businesses.

Old news?

[prisoner-of-enigma]

This is semi-old news. Mt.Gox has been under attack for at least a couple of days but they appear to be handling it pretty well. I haven't noticed any problems with using them at least. Trades might be taking a tad longer but nothing big that I can see.

Instawallet, on the other hand, crumbled at least a day or two (I read about it early yesterday morning). Their problem had nothing fundamental to do with BTC but more to do with the unique way Instawallet did business with (I believe) greater anonymity. The whole "we gotta rearchitect this thing" press release was that their fundamental way of doing business made them uniquely targetable by fraudsters, thus they gotta figure out something new.

Re:A reminder of how insecure ALL money is?

[prisoner-of-enigma]

Uh, no. Somehow I sleep a little better knowing my money is backed up by the FDIC if I keep it in a real bank.

And, as recently demonstrated by Cyprus, if the government arbitrarily changes the rules ex post facto and decides they're going to take your money "because we need it," how well do you sleep? You sleep well thinking the rules of the game can't be changed. They can. They are. This is a terrifying precedent.

The purpose of the FDIC

[sjbe]

Remember, the FDIC has about $25B in treasury notes (not cash, that's long gone) in its fund to cover about $10T in deposits, and most of the insured banks have very low ratios (perhaps 10% cash-on-hand at most). If there's ever a bank run, the FDIC can't stop it.

The FDIC doesn't have to stop it. The purpose of the FDIC is to keep bank runs from starting in the first place, not to be able to back every dollar deposited. The FDIC is there to reassure people that even if their particular bank is having issues that they still will be able to get to their money because the government is there to back them up. Bank runs start because people think they cannot get to their money. If the money is insured there is less chance of them doing this.

For those of you too lazy to RTFA

[slashmydots]

Hackers DDOSed just the website itself to scare people into a sell-off then bought up the cheaper coins and waited for the price to rise again. This has nothing to do with the bitcoin network or protocol, zero coins were stolen, and no security was breached at MTGox. So everyone above me, STFU and read the article or this before talking out your ass about bitcoins.