Note, they did come out with this yesterday:
https://bitcoingold.org/safety-is-critical/However, I don't know that I can buy the "Man in the Middle" attack theory. How many people in crypto, having already gone to jail or going to jail for stealing people's money, have tried this explaination?
Also, the site in question has had two forms: one that was complete, and had footer credits that linked to the repositories the code came from, along with three options for creating a wallet, transferring BTC to BTG (which was disabled until the mainnet launched), and a tab for checking your BTG balance with your private keys (which is when we input our private keys); and the second one was the one that looked broken and "hacked" (which happened just
the evening before most of our coins were stolen, and is its current state). The first version of the site
had to be the version that stored and transmitted the keys, because for us, that's the only time we submitted them. Changing the site later to look like it's been "hacked" is super suspect to me. Why would the hacker change *anything* after stealing the money? You're done dude; no need to make the site look *more* jenky. And you mean to tell me that the site owner didn't notice this for
five days? Or that his site was jenky looking for all days
since? And hasn't bothered to lock it down, or
fix it? I call shenanigans.
For us, the timeline wouldn't work out. We submitted the keys on the 11th, when the site looked normal, and just after it was listed on the BTG official site and just before the launch of the mainnet. We waited for several days before just transferring it instead to a Coinomi wallet, since the date of last update (which was then 11/10/2017) hadn't changed. Even as recently as the 13th, when you clicked on the second tab to "transfer your BTC to BTG", you'd get a popup that said that this was disabled until the mainnet launch. It was clear that something might be wrong, but there was still little cause for alarm, because the site was still listed on the official BTG site, as far as we were concerned. This is when we started talking about moving the money (which we were actually planning to do).
On 11/14, I checked one last time in the evening, and that's when the site suddenly looked "hacked". But again, our keys shouldn't have been stored anywhere, right? So being "hacked" later shouldn't have affected us.
And, if they were "hacked"
before, why would a hacker then go out of their way, the day before their big heist, to make the site look horrible to dissuade others from losing
their money?
And on 11/15, our money, both our BTC and our BTG, were gone (by about 1:30pm our time, MDT).
The timeline just doesn't work out.
This is my point exactly. Nothing was wrong with the site when I used it on the 12th. The funds got stolen on the 15th. I didn't visit the site again as I managed to get Coinomi working in a VM. Initially I thought it was my fault for using dodgy software or having a virus but realise now I was probably never at risk for any of that. From the reports the site only looked broken or hacked after this. So why was it changed again and a broken certificate added after the keys were already stolen? All of this looks like a cover up after the fact.
Then there's also the issue of using a free host which usually doesn't ask a lot of questions like a paid one would do. Does anybody even really know the real identity of the owner?
