missing wallet -stolen BTC ?

[Zeuss1980]

Hi my wallet is missing. im using MULTIBIT. When i log in my wallet was gone and new one was in place.

it was there 1BTC

today it was sent to another wallet but i was not me. it is strange because i was logged in to the multibit about 6:35pm and my wallet was gone. A recovered it about 7:10pm and in transaction history i found 1BTC sendet to this wallet https://blockchain.info/pl/address/1DHKv9GLzapvFjmQfUyf9qvZEshyRCTkfY

https://blockchain.info/pl/tx/f838fecd9310c8e3b4ffc82c6e440f3ef9824c5419f0a27bb52279596f678296

this is the transaction ! https://blockchain.info/pl/ip-address/54.246.85.246 and i think this is IP of this person... today he stole about 30BTC !!!

Im curious how it is possible to do that ? wallet is secured by long password.

Can you tell me what happened ? it is possible someone did this ?? how ? only im using my laptop. no one knows my passwords.

Regards Marek Niewiarowski

[gary-rowe]

Can you verify that you have not exposed your laptop to bitcoin-stealing malware? This type of attack vector is on the increase and can often include keylogging software. The only defences are multisig and external hardware wallets and we are currently working to create support for both in MultiBit HD.

The relay node may simply be a well connected node in your peer group. Typically a malware attack will send the private keys of a wallet directly to a command and control server which will then decide what to do with them. In some cases they will bide their time waiting for more funds to arrive, in others they will steal the funds immediately.

[Zeuss1980]

it was be perfect if you can do confirmation by SMS. it can be paid monthly for using this or transaction fee 0.0002 or bit more. But it was be safe. i lost just 1BTC bot i seen the transaction history of thief walet ant someone lost 25BTC !

Do it fast please

[gary-rowe]

Rigging up a worldwide anonymous SMS 2FA system is not trivial and introduces a dependency on a third party. A better solution is an external hardware wallet (Trezor etc) or multisig. Both of these are in the pipeline for MultiBit HD.

Given that the funds are unrecoverable, I'll close this issue.

[Zeuss1980]

Yes but external hardware can be lost or damaged.. what then ? cex,io have SMS and it is ok i think

[gary-rowe]

In the case of a lost/broken Trezor you can purchase replacement hardware and enter the seed phrase to recover all of your bitcoins.

If you believe the seed phrase may be compromised (stolen device) you simply enter the seed phrase into a BIP44 compatible wallet (MultiBit HD will support this) to recover the bitcoins then empty the wallet into a freshly made wallet. Should the thieves break the Trezor they will find the funds have all gone. You then purchase a new Trezor and provide it with the new seed phrase to continue using your bitcoins.

All decentralised and no complex SMS infrastructure required.