this is the key. he let everyone keep depositing, just lining his pockets with BTC that he is now "partially refunding." coinlenders is still up --- TF are you fucking STILL taking people's coins on coinlenders? i can't believe you let us go so long just lying to us that everything was okay. it is truly disgusting and i hope you are ostracized from the btc community. makes me so sick thinking about what you've done. if you really got hacked? fucking own up to it when it happens. don't let your loyal customers walk into a trap you set so you can steal from them for weeks while you figure your fucking mess out.
Agreed! What exactly does the bolded statement below from TradeFortress mean?
I have many problems with this.
- "We" refers to one person, am I correct?
- Why were deposits and withdrawal not disabled?
- If the hack occurred in October, how is it possible API keys were compromised in November and money was stolen?
- Why was the "hot pocket" not immediately emptied after the hack?
1. No. Inputs.io isn't just me, although I do the majority of the work.
2.
They were in limited capacity. A withdrawal amount limit didn't work as people simply broke up.3. The hacker dumped API keys and PIN from the DB. API keys (re)generated after the hack haven't being stolen.
4. The attacker didn't take all of the BTCs, perhaps wanting to remain undetected and steal more.
Is that an admission that he imposed new withdrawal limits after the "hack" to try to hide inputs.io's insolvency? Or were new deposits somehow restricted as well?