So, I've never actually been to the Bitfinex web site (or used it)
I found another pool STILL has links to them on their web site, so I clicked and had a look.
Wow are they delusional still saying this on the web site:
https://www.bitfinex.com/security_policySecurity of user information and funds is our first priority.
Every detail is analyzed to avoid security holes. We pride ourselves on being the most secure Bitcoin exchange.
Security is their priority ? any Security expert should know that almost everything online is hackable. The fact that they didn't use Cold storage to store most of the funds means that they don't really give a damn.
That was certainly quite weird. Their wallet system was a hot mess.
So I guess that Bitfinex themselves is actually all a scam, since th web site (still) says this:
Why is this method superior to the traditional pooled funds method of cold storage?
The use of this model, where each customer has a separate set of keys and wallets, allows for a much greater level of granularity at which multi-institutional security can be provided. Whilst in the past BitGo would have to treat a pooled wallet as a single unit, per-customer policies can now be enforced. Further, since we now enforce multi-institutional second factor authentication (Bitfinex will be the first factor and BitGo the second factor), attackers are required to compromise both institutions before getting funds.
i.e. both BitGo and Bitfinex had to BOTH be compromised according to their (current) web site.
If that above quote is false, then it's still a scam them making that statement.
That's an interesting point. Think it's an inside job just like the Shapeshift hack?