Was this TR hack related to HugBunter's discovery??

Remember seeing a post about some weird a$$ Trade Route listings and I guess someone found a h@ck to drain TR wallets. Does anyboudg have any deets about this? http:/[traderoute forums]/viewtopic.php?id=2124

Someone posted:

please checkout this strange listing: small house for children very sketchy and could be a a market vulnerability.

And trade route admin replied:

Hello,

Yes, that was a vulnerability, an user found an intrincate way to steal funds from us and he used multiple vendor account and those listings to steal. He went away with around 100k$, we'll take this as a loss. We already released the patch and moved on.

The damage that can be done by robberies in TR is very limited as our hot wallet is very small, rest assured that 95% of the funds are always safely stored in cold wallets. Also multisignature or security escrow transactions are totally safe, this only could affect the normal escrow balance.

It's sad to see this happening but there's a lot of hackers and thieves focused on darknet markets. We are doing our best to keep the market updated and bug-free.

Best regards!

/u/hugbunter - were you aware of that bug?

EDIT: I 'member seeing a post from a buyer saying he got his withdrawal twice. He made a post saying that when he made a w/d, trade reported an error. He made the withdrawal again and BOTH went through. The post was deleted or removed soon after. Wonder if that 'ploit was related?


Comments


[19 Points] HugBunter:

I saw this yesterday, none of this adds up at all.

This looks more like an attempt to bury the huge vulnerability with a less serious exploit that they are willing to swallow 100k over to have a good reflection from their users. Something smells.


[10 Points] None:

[deleted]


[6 Points] thrway4datards2:

This guy is probably HugBunter himself. post history only goes back 17 days and all posts are about hacking markets. Guy probably has a bunch of alt accounts upvoting him.


[8 Points] bigOILvendor:

I'm calling bullshit. I'm not at all an infosec expert. but there is nothing on the TR forums about this new "hack".

In fact. the admins adamantly deny the first "hack" even happened. and I don't think anyone. or at least no one that I know, actually saw the "deface page". I think the whole thing was bullshit. and some other market is scared of TR's growth/progress.


[2 Points] larry151:

Why can't we get some real programers in the markets. For fucks sake. 100k is nice haul.


[2 Points] JeffSessions_DNM:

u/l33tl0 my apologies for questioning this, but how come you only post about this specific type of issue, going back to DHL. It feels like you like to fan the flames so to speak.


[2 Points] None:

[deleted]


[2 Points] None:

[deleted]


[1 Points] AutoModerator:

/u/hugbunter - You have been summoned in this thread by /u/l33tl0.

This convenience is brought to you by AutoMod. Submissions do not automatically summon users like comments do. AutoMod is trying to be helpful.

For others, it should no longer be necessary to summon the referenced user in a comment any more. AutoMod has done the heavy lifting for you. You're welcome. Bow before me.

I am a bot, and this action was performed automatically. Please contact the moderators of this subreddit if you have any questions or concerns.


[1 Points] izza123:

Still no warning on the super list about this market?


[1 Points] QEywvcB9utqScJN6:

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA512

OFFICIAL COMMUNICATION FROM TRADEROUTE

The hugbunter's hack was totally fake, just a couple of made up screenshots. The robbery was real, the market is a huge project with lots of features, there's a lot of attack surface, we are working day by day to make it as strong and reliable as possible. Small bugs and logic errors in the payment system may lead to robberies like the one we had, but the server security is top notch.

Since the attack the vulnerability has been addressed and fixed. Only ONE of the two attacks were real though. HugBunter's "attack" was a Photoshoped picture that the DNM mods took as genuine.

-----BEGIN PGP SIGNATURE-----

Version: GnuPG v1

iQIcBAEBCgAGBQJZoEeLAAoJEBL5HYb19dvPIwoQAJ0Z8xoIzh8Z9Ot1nq/zH64d USb6EaneAGEy81hEqZ/CzUUAf3cMgzd3YCdIMpX/nEQQeugl5FasKztUzbj5uGLR pw72tMfaRhYi5XrTJklhM3DgGB6oa9ATGYCUb8nWWiFUquXcy1i9iaIv6+acdcwL hbEeKOaHw/37mShoMUFp7pQHobz8H/25ZdRmyupHJ6vsugBBRLAAT4HlwRGycj3s gpk05LaCEiPd8yuU5KQPvHUqYp/OOTJVHFEpCnaGqkBIPjTuQ/iRv7sY2O77lq+P UpoShuKyoY0OH16YAyo2fQOyEKJkDGYBI88fIYgWQRIjSAtYGSWpNXPtNAMsaiWS BUCTyv86BPFyqw4AEuhdTbJogIS+6os90MCBgShSm8xEg8bZ1Pmlm3a2k/rlDqAs LQwhzWG/jIX6ZGQYYykI33OKwecebdMmuk8FCcWVkyN0BvIiTNVb9L3B/suQQa3N k3DZhTXSGHR/+200rL+5iiTJG3PwFWL98Se11IndquKfu6+cs6UdmPDlMmDp3wwz kDIP4RcyNKQvX5c6LC55XbdIpKhg8OPZnxbI5SQbcGR14Q4NCk7EgX3IsSrJX9Hd DynarCkz4sG0D4XF+rKq37boZjRFvXlRI5dhdgQu6v92kXh927WvYMZrkrWokkPM MOjcDwX/arXvFnRKT95N =HB/c

-----END PGP SIGNATURE-----


[1 Points] WhatsInAName69:

u/hugbunter is a bellend :)