Helix Hack (Attempt)

Hi All, Many have you may have noticed no helices had gone out the past hour and Grams was in maintenance mode.

Helix was in the middle of a hack attempt.

My system saw the attempt and shut everything down. I think it was the same people who got BitBlender. It was quite an ingenious method. If the person/s want to come forward I would give them a job. Anyways I spent the last hour putting in extra security to block their method.

Not One Bitcoin was stolen!

My code shut everything down in time to stop even 1 hack transaction form going out. all the pending Helices will be going out in the next 5 minutes. I just wanted to let you all know why Grams was down and assure you, all your bitcoins are safe.

Stay safe,
GramsAdmin


Comments


[20 Points] OrdinaryToaster:

Wow, good job and thank you for the transparency. I really appreciate it and I am pretty sure most other people do as well.


[15 Points] thatwhichisnt:

You should detail how the back was performed so that others may be ready to defend themselves against the same thing.


[14 Points] gramsadmin:

The attack was like a race condition, but specifically made for my helix light system. Giving away how they were doing it wouldn't help anyone else because it would only work on helix lights which no one else has a system like.


[8 Points] None:

I want to be careful how I phrase this, because I do not want to come off the wrong way, I both like and loathe tumblers equally, and I am a user of them. After thinking about it for a little while a question came to mind.

I have used Helix, and I felt just about as safe using it as the other mixers I have used, which is, well, I just kind of close my eyes and hope for the best, because I really can't know for sure that any tumbling service is safe or that it does what it says it does, as I'm ignorant the methods used. I just kind of follow popular opinion and suggestion and pray it all goes well.

What I was wondering is; why did you tell us about the attempted hack? Was there a good chance that you thought it was going to get out publicly, and wanted to nip it in the bud to reassure people that you had everything in hand? Kind of a preemptive strike against the rumor mill? Because if that is the case I think you did a good job. Or was there some other reason?

I'm asking this because I used to work in a public relations type setting, (hated it, but it was a job) and we generally would not shout fire, unless we thought people would smell the smoke, otherwise we would prefer to just put it out quietly. People used to say that any publicity is good publicity, or vice versa, depending on what business your in. Any website that deals in big financial transactions is a constant target and usually hack attempts will be ongoing throughout it's existence. I think it was in 2012 that it came out that either Chase bank or BoA, I can't remember which, received something like 10,000 credible hack attempts (I do not know what the difference is between credible and not, or if it's just a term tossed around without true merit) in a 30 day period at one point. When asked why they did not report it (to make it big news), they said something like, "there was no need, our system is secure." It later was revealed that nearly all large financial institutions, especially the ones that allow mass online transactions, receive between 0 - 1000 hack attempts per day on average. Maybe even more now, but I have no idea. Of course they try to keep that as quiet as possible to avoid alarming their customers.

Now I know Helix is not Bank of America, but do you kind of get what I am asking? Why did you mention the attack? Especially with BitBlender taking the hit, aren't you afraid that this is bad publicity that could hurt your business?

Just keep in mind, I'm not trying to criticize, because I do not know the facts. I have been a customer of yours in the past, and I respect what you say your trying to do and I sincerely hope your really doing it. I'm merely curious, because the announcement kind of goes against my schooling.


[5 Points] jbh679276f776:

Error: Don't use a Grams address! ;0


[4 Points] bafflesaurus:

It was quite an ingenious method. If the person/s want to come forward I would give them a job.

"Almost gets hacked by blackhat"

[good guy greg]

"offers blackhat job"


[3 Points] WightLightY:

Thank you grams.


[3 Points] None:

Glad you were able to save people's money Grams. I mentioned in a post recently that with BitBlender's rep now forever tainted, and with wide spread claims of Bitcoin Fog selectively scamming, you are looking more attractive. But as the lone deer in the forest come hunting season, you are definitely big hunted. I hope you make it though, I like your service.


[3 Points] None:

Did you unplug your broadband adapter / ethernet cord / disable WIFI?

WHAT ARE YOUR SECRETS!!?


[3 Points] None:

This makes me uneasy to use Helix...is it still safe to use?


[2 Points] synikal12:

Why would you give the guy that tried to steal every last bitcoin from helix a job? Normally with a business this makes sense, but not when the guy is maliciously trying to steal everyone's money ya think?


[2 Points] hdheuud:

Its about time we get some competent service Leaders. Good job on your part man. Im honestly impressed


[2 Points] earthmoonsun:

and this is how great customer service is done


[1 Points] None:

There are many less tumbler sites than markets now ... maybe that's where "our" weak point is.

It is indeed weird the ridiculous influx the last few weeks of all the talk of tumbling meaning nothing from all of these new comers and now there is barely a gold standard site for tumbling/mixing with barely any other heads of this hydra to take the place of Helix if anything were to happen.

Strange, indeed.


[1 Points] sharpshooter789:

What type of attack was it? Did the hacker try exploiting a race condition?


[1 Points] al_eberia:

Are you going to say the method so that others can protect themselves?


[1 Points] galaxyandspace:

Are you willing to reveal their methods once you are well protected from additional attacks? It would be interesting to know...


[1 Points] obsidianchao:

I know you don't want to say how they did it, but is there any chance you'll be giving your "protection" code to other tumblers? If these folks really got BitBlender, they're going to be hitting everyone.


[1 Points] None:

another bit blender??


[1 Points] ToxicTodd9:

This is why Grams is this shit.


[-3 Points] None:

[deleted]