Donate for the Cryptome archive of 65.000 files from June 1996 to the present

11 September 2011

Bitcoin Password Hashes May Have Been Leaked


Subject: Bitcoin Forum: Password hashes may have been leaked
From: "Bitcoin Forum" <noreply[at]bitcointalk.org>
Date: Sun, 11 Sep 2011 06:31:09 -0000

Recently, an attacker was able to compromise the security of the Bitcoin Forum by exploiting a flaw in the forum software. While there is no evidence that the attacker did download any password hashes, it would have been possible for him to do so. Therefore, you should consider the password you used on the Bitcoin Forum to be compromised. Change your password. If you used the same password on any other sites, you should change the password on those sites as well.

Because the passwords were hashed, it may take the attacker some time to find your actual password, depending on how strong your password was. You should not rely on this, however. Assume that your password is compromised.

The attacker may have also downloaded a list of all user email addresses, so you might receive Bitcoin-related phishing emails. If you click a link in an email and you are then asked to log in, double-check the URL to make sure you are where you think you are.

More info:

https://bitcointalk.org/index.php?topic=42572.0

We are very sorry for any inconvenience this issue might cause you.