Maybe his computer was on at the time, logged in on his Gox account? Someone might've taken over the computer.
http://i.imgur.com/2WiPhYj.jpgMy PC is located in my home but the person who withdrew had an ip address from China. Malwarebytes did not detect anything that I think would take over my computer. I'm not sure what it could be.
there should be a way to reverse these type of transactions when something unauthorized occurs. that's the weakness of BTC right now.
Yeah, that's the same reason why nobody in the world uses cash... huge weakness.
@OP: sorry for your loss. Also, thank you for sharing the information here. It is important that we get to the bottom of this. It's mind boggling. Even if your PC was completely compromised, and you were logged into gox that night, the hacker still needed to long press the yubikey. This is assuming your settings did not leave any holes via API or google auth, etc.
Holes via Google auth? Can you clarify?
Maybe someone was testing if they got around my Yubikey but I still don't know how. I am still suspecting Mt. Gox itself doing this.
