pull down to refresh
0 sats \ 0 replies \ @ramosh OP 23 Dec 2023 \ parent \ on: How To Get Robbed 4 BTC And Be Ignored by Anycoin.cz and BTCPay team bitcoin
Brother, what's your node public key? And name?
Bro @DarthCoin, thanks a lot for publishing this and forwarding zaps! You're my dude!
Guys, some people asked me how to donate. I've setup a wallet here:
bc1qz8dxk6h8gha5qvsnw67rjzz3xn6t4k0wmafqz3
If you want to track transactions on that wallet go here.
Thanks for your kind words brother.
I've setup a wallet here:
bc1qz8dxk6h8gha5qvsnw67rjzz3xn6t4k0wmafqz3
I can't believe you said that about @DarthCoin! I wrote in my article:
"Not knowing exactly what was happening and not even being able to see what I was seeing, he said 'probably some people are making payments using their LNbits wallets'. 'Nothing to worry about'."
Bro, read here. Now forget the apology and look at the ELEPHANT in the room as @DarthCoin said.
Because if I was the dev (and I was one for many years) I would! It's my MORAL imperative. But that's me.
STATUS UPDATE (Dec 13th 2023):
To be completely fair and just I want to clarify something I didn't know when I first posted my article. Only a few days after my original post I was clarified by Bitlifi that Anycoin and Bitlifi are separate entities and KYC is only used by Anycoin. Bitlifi only asks the user of the App for a phone number to be able to use the lightning wallet app.
My apologies to the guys at Anycoin and Bitlifi and thanks for clarifying this information.
Also I almost finished the research of the nodes were the funds rerouted to when sent out off ln-1.anycoin.cz. Not sharing this info yet because I want to contact all these nodes before publishing the list.
Bro, if you knew me a bit, or any libertarian for that matter, you would know I don't rely on State justice to claim anything!
When I said apology, I was referring to a moral obligation and not looking to input liability. If I was the developer I would. But that's me...
Brother, thank you verifying all the data I posted. I can assure you all is true and I was completely drained. This was already confirmed by Bitlifi, BTCPay Server and @C_Otto.
Yes some timings may not match exactly but who's looking at the watch while getting completely fucked? I can't remember exactly what time I got to the computer but I can assure you it was very late because I work on my projects all night long.
Regarding the NGINX log crossing over to Dec 7th: I restarted the node and BTCPay server after disabling the hacker accounts on BTCPay so that people using the server could move their sats to other wallets. I personally told them to do so. During that period there were a few other attempts to continue the attack but the accounts were already disabled.
Brother, I was a developer and sysadmin myself for many years. Old school python dev. Once I learned a great lesson with someone I respect a lot... "If you want you server to be completely 1000% secure, disconnect both the network cable and power cable."
I understand nothing can be 1000% totally secure but after running 2 LN nodes for almost 2 years, using always latest versions of LND, using a great firewall on my network and many other things like researching all the time and being aware of bug reports, I had 0 (zero) issues with the LND node itself.
Considering this I felt I could trust LND and my implementation to have it in production. And for 2 years all went fine until a installed BTCPay server a few months ago.
Regarding the rest of your comment, I totally agree 100% with you.
Brother, thank you so much! You can't imagine how this is appreciated and important to me. I confirm the funds were received.
Dear @C_Otto, thank you very much for confirming the part of the data you could confirm.
I want you to know that you were one of the first people I watched in a interview on YouTube about Lightning and your node was always part of my channels choice and something to lookup to. Best regards brother!
Dude, Bitlifi, BTCPay Server and even @C_Otto confirm in whole or part the data I published. You must be a very sad and lonely person. I wish you all the best.
Well I talk about my projects (in Portuguese) on my podcast. The Portuguese and Brazilian Bitcoin communities are aware of what I'm doing in El Salvador.
I Discuss with @DarthCoin many things about Lightning in general and best practices. Also I participate in Lightning discussion groups.
STATUS UPDATE (Dec 12th 2023):
-
Yesterday I had a video call with the guys at Bitlifi in Czech Republic (finally they crunched all the data and asked me to talk to them). They confirmed all the information in the files I sent them and matched the records with theirs. Everything matches with my information. That's good. We came to a final amount of 4.06BTC stolen. The difference to 4.07 means my node payed ~1M sats of fees (4.06 was the amount received at Bitlifi).
-
They provided me with the phone number used to register the Bitlifi wallet app used in the attack. If someone here can help me identify the number, please do: +19097073730
-
We agreed that next steps are identifying and contacting all the LN nodes where the funds were rerouted to. I'm working on this now. There's a possibility we could trace the funds to know where the off-ramp was.
-
They promised me that will collaborate with the authorities in case I decide to go ahead with this path. Good to know guys, I appreciate this.