Free Cloud Mining Free Bitcoin Mining

Roll your own Android-friendly Stadia in 12 steps

A lot of this comes from /cloudygamer, so go there and give them your clicks, but I've been cloud gaming now for months in a variety of ways, and I think I've settled on my happiest path. I rent a server from Paperspace, and simply use Steam Link Anywhere to play any game from my Steam Library from my house. Quality is very good, but not perfect, but my costs are $10/month for storage and $0.51/hr of streaming time. At my rate of about 1-2 hours/day, my annual spend rate is about $400. The benefits I see are as follows:
  1. Incredible portability - I can play on my phone, my laptop, or my Nvidia Shield on my TV.
  2. On-demand usage - If I'm not playing, I'm only paying the storage fee each month, so it sort of scales naturally.
  3. Excellent graphical fidelity - I'm generally able to play on excellent settings and stream at 1080p. I also find that the input lag doesn't bother me. I'm certain if I recorded myself playing in slo-mo, I'd notice input lag, but I've had great fun playing many hours of Rocket League, and I'm having a great time playing through Jedi: Fallen Order
  4. Excellent library - This method basically supports all PC games, and lets me play anything from Steam, Epic, etc, etc, down to indies and anything I want to play. If XCloud has 50 games, and Stadia has 22, I think this path compares rather favorably.
  1. Cost - I'm saving money versus keeping a comparable gaming PC running these games at these settings, but I'm probably losing money against just purchasing new Playstations as they are released. Also, the free tier of Stadia will be cheaper than this, although factor in the purchase of games. This method uses your Steam Library.
  2. Network costs - I assume that if I had anything less than bulletproof internet, my experience would rapidly degrade
  3. Framerate stuff - On occasion I'll hit a bit of lag or delay.

This is just my path through, and you may choose a different path. I picked Paperspace because the ease of use is just astounding compared to Google Cloud or AWS or Azure. However, they only have 3 servers from what I can tell - California, New York and Amsterdam. I would perform the majority of these steps on your PC:
  1. Create an account with Paperspace (
  2. Pick the server location closest to you
  3. Create a Windows 10 P4000 server
    1. At this point you may get stopped by a form that requires you to explain what you want to use the server for. I don't think they want people using them for Bitcoin mining, maybe? If you get that form, it usually takes a day for them to get back to you
  4. Choose a storage amount. If you only play one game at a time, you can save some cash here by choosing one of the lower priced storage tiers.
  5. Add your payment details and click "Create Your Paperspace"
  6. You'll be taken to a screen that shows you that Paperspace is provisioning and spinning up your server. Once it's ready, simply click on the box representing your server. You'll be dropped into the Windows environment.
  7. Now, install Steam and log in to your account.
  8. Having done that, enable the beta version of Steam by using the Beta Participation setting in Settings>Account
  9. Steam will restart.
  10. Install Steam Link on your phone (or Android TV device, or tablet, etc, etc). It will by default look for a PC on your home network. When that fails, it will prompt you with "Other Computer". Take the code it gives you, and return to your Paperspace tab in your browser, and navigate to the Remote Play entry in your Steam Settings.
  11. Click the "Pair Steam Link" button, and type in the code that the Steam Link app gave you.
  12. You're in business! Close your Paperspace tab (as it will consume bandwidth that you want to reserve for gaming). Your phone will launch into Steam Big Picture mode, and you can install and play games at will.
  1. You can use the on-screen controls in the Steam Link app, and that might be okay for some indie games or non-twitchy games, but I purchased one of these controllers and this clip for my phone.
  2. A quirk with Paperspace is that it uses the resolution of your browser as the upper bound for the display resolution. So to get higher than 1080p, I open my browser tab in full screen, and I use Chrome to zoom out, which causes the desktop to increase in resolution. Then I close my tab.
  3. If you leave on the auto-start with Windows setting for Steam, all you have to do to get things going is open Paperspace's website on your phone and start your machine. Don't open it on your phone, as that will mess up your resolution, just hit the start button.
  4. Always remember to shutdown your machine after use. Paperspace will kill it after a day of inactivity by default (you can adjust that setting), but you'll keep spending $0.50/hr until you turn it off.
  5. If a particular game requires you to fill out fields and move a mouse cursor around, you can open your Paperspace window and interface that way.

TL, DR: It's really quite simple to set up a personal cloud gaming service that beats Stadia in a number of ways using any number of cloud hosting providers and Steam Link Anywhere.
submitted by kad-air to Android [link] [comments]

Am I Operating on a Virtual Machine? Would that even be possible for someone to set up without my knowledge? Am I Crazy?

Long story short, I am friends with a programmer. He has had access to 2 of our computer's, and we've even done some minor work for him before to help him with a large project. He's a MS Enterprise user and I'm pretty sure he uses Azure in his business. He even helped us by using his card to buy us a Windows key when all we had was cash.
We've started to notice weird stuff like BIOS boot devices that appeared and disappeared shortly after we discovered them (Windows ToGo & a Linux device) & seems to post twice when booting. Suddenly we have unaccounted for differences in network traffic between the Resource Manager (logs a 1000kb+ spike) & the Task Manager(doesn't log this 1000kb+ spike). "Mouse Intercept" files in game folders. We can't make changes or disable some services we would be able to change before. Internal SATA configured as external SATA. NFC & Payments services, Hyper V & Azure services we didn't install. Unspecified TCP connections and loopbacks, & when we run traceroute the first hop is always " * ".
Today we tried to reinstall Windows again (we've done this fresh and re-flashed the BIOS many times) and it said there was only 16mb of space left on a 300GB hard drive even though we only had League of Legends and a browser installed.
TL;DR Is it possible that our friend has us thinking we have control, but we're really using virtual machines while he allocated our resources to himself for some reason (Bitcoin mining? Maybe?). Have we been hacked? Can we hack our way out? It's been a year of research and we've turned up nothing useful. I feel crazy.
submitted by RobotAnxietyAttack to HowToHack [link] [comments]

The importance of being mindful of security at all times - nearly everyone is one breach away from total disaster

This is a long one - TL;DR at the end!

If you haven't heard yet: BlankMediaGames, makers of Town of Salem, have been breached which resulted in almost 8 million accounts being leaked. For most people, the first reaction is "lol so what it's just a game, why should I really care?" and that is the wrong way to look at it. I'd like to explain why everyone should always care whenever they are part of a breach. I'd also like to talk about some ways game developers - whether they work solo or on a team - can take easy steps to help protect themselves and their customers/players.
First I'd like to state that there is no practical way to achieve 100% solid security to guarantee you'll never be breached or part of a breach. The goal here will be to get as close as possible, or comfortable, so that you can rest easy knowing you can deal with problems when they occur (not if, when).

Why You Should Care About Breaches

The sad reality is most people re-use the same password everywhere. Your email account, your bank account, your steam account, your reddit account, random forums and game websites - you get the idea. If you haven't pieced it together yet the implication is that if anyone gets your one password you use everywhere, it's game over for you - they now own all of your accounts (whether or not they know it yet). Keep in mind that your email account is basically the holy grail of passwords to have. Most websites handle password changes/resets through your email; thus anyone who can login to your email account can get access to pretty much any of your accounts anywhere. Game over, you lose.

But wait, why would anyone want to use my password? I'm nobody!

It doesn't matter, the bad guys sell this information to other bad guys. Bots are used to make as much use of these passwords as possible. If they can get into your bank they might try money transfers. If they get into your Amazon account they might spin up $80,000 worth of servers to mine Bitcoin (or whatever coin is popular at the time). They don't care who you are; it's all automated.
By the way, according to this post (which looks believable enough to be real) this is pretty much how they got into the BMG servers initially. They checked for usernames/emails of admins on the BMG website(s) in previous breach dumps (of which there are many) and found at least one that used the same password on other sites - for their admin account!
If you want to see how many of your accounts are already breached check out Have I Been Pwned - I recommend registering all of your email addresses as well so you get notified of future breaches. This is how I found out about the Town of Salem breach, myself.

How You Can Protect Yourself

Before I go into all the steps you can (and should) take to protect yourself I should note that security is in a constant tug of war with convenience. What this means is that the more security measures you apply the more inconvenienced you become for many tasks. It's up to you to decide how much is too much either way.
First of all I strongly recommend registering your email(s) on - this is especially important if your email address is associated to important things like AWS, Steam developer account, bank accounts, social media, etc. You want to know ASAP when an account of yours is compromised so you can take steps to prevent or undo damage. Note that the bad guys have a head start on this!


You probably need to have better password hygiene. If you don't already, you need to make sure every account you have uses a different, unique, secure password. You should change these passwords at least once a year. Depending on how many accounts you have and how good your memory is, this is your first big security vs convenience trade-off battle. That's easily solved, though, by using a password manager. You can find a list of password managers on Wikipedia here or you can search around for some comparison articles.
Some notable choices to consider:
Regardless of which one you choose, any of them is 100x better than not using one at all.

Multi-Factor Authentication / Two-Factor Authentication (aka MFA / 2FA)

The problem with all these passwords is that someone can still use them if they are found in a breach. Your passwords are only as strong as the website you use them on. In the case of the BMG breach mentioned above - all passwords were stored in an ancient format which has been insecure for years. It's likely that every single password in the breach can be reversed/cracked, or already have been. The next step you need to take is to make it harder for someone else to login with your password. This is done using Multi-Factor Authentication (or Two-Factor Authentication).
Unfortunately not every website/service supports MFA/2FA, but you should still use it on every single one that does support it. You can check which sites support MFA/2FA here or dig around in account options on any particular site. You should setup MFA/2FA on your email account ASAP! If it's not supported, you need to switch to a provider that does support it. This is more important than your bank account! All of the big email providers support it: GMail,, Yahoo Mail, etc.
The type of MFA/2FA you use depends on what is supported by each site/service, but there is a common approach that is compatible on many of them. Most of them involve phone apps because a phone is the most common and convenient "thing you have" that bad guys (or anyone, really) can't access easily. Time-based One-time Password or TOTP is probably the most commonly used method because it's easy to implement and can be used with many different apps. Google Authenticator was the first popular one, but it has some limitations which continue the security vs convenience battle - namely that getting a new phone is a super huge chore (no backup/restore option - you have to disable and setup each site all over again). Many alternatives support cloud backup which is really convenient, though obviously less secure by some measure.
Notable choices to consider:
Some sites/services use their own app, like Blizzard ( and Steam, and don't allow you to use other ones. You will probably have a few apps on your phone when all your accounts are setup, but it's worth it. You'll definitely want to enable it on your password manager as well if you chose a cloud-based one.
Don't forget to save backup codes in an actual secure location! If you lose your backup codes and your auth app/physical key you will be locked out of accounts. It's really not fun recovering in that situation. Most recommendations are to print them and put in a fireproof safe, but using some other secure encrypted storage is fine.
There is such a thing as bad MFA/2FA! However, anything is at least better than nothing. A lot of places still use SMS (text messaging) or e-mail for their MFA/2FA implementation. The e-mail one has the most obvious flaw: If someone gets into your email account they have defeated that security measure. The SMS flaws are less obvious and much less likely to affect you, but still a risk: SMS is trivial to intercept (capture data over the air (literally), clone your SIM card data, and some other methods). Still, if you're not a person of interest already, it's still better than nothing.

What Does This Have To Do With GameDev?

Yeah, I do know which subreddit I'm posting in! Here's the section that gets more into things specific to game development (or software development in general).

Secure Your Code

Securing your code actually has multiple meanings here: Securing access to your code, and ensuring your code itself is secure against exploitation. Let's start with access since that's the easier topic to cover!
If you're not already using some form of Source Control Management (SCM) you really need to get on board! I'm not going to go in depth on that as it's a whole other topic to itself, but I'll assume you are using Git or Mercurial (hg) already and hosting it on one of these sites (or a similar one):
First, ensure that you have locked down who can access this code already. If you are using private repositories you need to make sure that the only people who have access are the people who need access (i.e. yourself and your team). Second, everyone should have strong passwords and MFA/2FA enabled on their accounts. If 1 person on the team does not follow good security practices it puts your whole project at risk! So make sure everyone on the team is following along. You can also look into tools to do some auditing and even automate it so that if anyone's account becomes less secure over time (say they turned off MFA one day) they would automatically lose their access.
Additionally you should never commit secrets (passwords, API keys, tokens, social security numbers, etc) to your code repository. Probably 90% of cases where people have their AWS/Google Cloud/Azure accounts compromised and racking up huge bills for bitcoin mining is due to having their passwords/keys stored in their git repo. They either accidentally made it public or someone got access to the private repo through a compromised account. Never store sensitive information in your code repository!
Next topic: Securing your code from vulnerabilities. This one is harder to talk about for game dev as most engines/frameworks are not as susceptible (for lack of a better word) to these situations as others. In a nutshell, you need to keep track of the following:
A lot of these things cannot be solved automatically, unfortunately, but some of it can. If you are using Javascript for your game you likely will be using packages from npm - luckily they (recently) added security auditing for packages. For other languages you can look at tools like Snyk or some other alternatives to audit the libraries you use in your project. Unfortunately none that I know of are aimed at game dev in particular, but it's still important to use these tools when you can. In general, be aware of all of your code dependencies and what impact they can have on your game or your customers if there are security bugs. Impact can range from "can cheat in multiplayer" to "can get IP addresses of all players in the world" or even "can get all information I ever put on my server", etc.
In general you'll want to look into Secure Software Development Lifecycle (commonly SDLC) practices. Microsoft has some information on how they do it.

Secure Your Computer

I'm not going to go in depth on this one because at this point everyone should have a handle on this; if not there are limitless articles, blogs, and videos about the how/what/why. In summary: Keep everything updated, and don't open suspicious links.

Secure Your Website

I will have to add more to this later probably, but again there are tons of good articles, blogs, and videos on these topics. Hopefully the information in this section is enough to get you on the right track - if not feel free to ask for more info. Lots of guides can be found on Digital Ocean's site and they are relevant even if you don't use DO for your servers.
A lot of this will apply to your game servers as well - really any kind of server you expect to setup.

That's it, for now

I ran out of steam while typing this all up after a couple hours, but I may revisit it later to add more info. Feel free to ask any questions about any of these topics and I'll do my best to answer them all.

TL;DR (y u words so much??)

... in general... in general... in general... I sure wrote those 2 words a lot.

Why Should I Trust This Post?

Hopefully I have provided enough information and good links in this post that you can trust the contents to be accurate (or mostly accurate). There is certainly enough information to do some searches on your own to find out how right or wrong I might be about these things.
If you want my appeal to authority answer: I've been working at a major (network/computer) security company for almost 7 years as a software developer, and I've had to put up with pretty much every inconvenience brought on by security. I've also witnessed the aftermath of nearly every type of security failure covered in this post, via customers and the industry at large. None of the links I used are related to my employer or its products.
Edit: Fixed some typos and added some more links
More edit: added a few more points and links
submitted by exoplasm to gamedev [link] [comments]

My Beginnings


My Current Rack Setup

So, this is the first time I've ever done a post like this to homelab and I wanted to give as much detail as possible.
For this, i'm going to work my way left to right, top to bottom.
submitted by DevelopedLogic to homelab [link] [comments]

All Usernames

Popularity Number Tried Usernames
1 root
2 admin
3 guest
4 supervisor
5 Administrator
6 user
7 tech
8 ubnt
9 default
10 support
11 service
12 888888
13 admin1
14 mother
15 666666
16 test
17 oracle
18 ftpuser
19 usuario
20 test1
21 test2
22 123456
23 test123
24 123
25 321
26 password
27 [email protected]
28 postgres
29 dev
30 testuser
31 tomcat
32 git
33 dspace
34 nexus
35 zabbix
36 teamspeak
37 ftpuser1
38 ubuntu
39 ts3
40 www-data
41 ldapuser1
42 minecraft
43 ghost
44 butter
45 redis
46 ts
47 teamspeak3
48 hadoop
49 tonyeadmin
50 pi
51 odoo
52 mysql
53 contador
54 cron
55 wp
56 ftp
57 weblogic
58 backup
59 ftp_user
60 ts3bot
61 1234
62 bin
63 student
64 user1
65 tom
66 ts3server
67 nagios
68 duni
69 test321
70 e8ehome
71 telecomadmin
72 db2fenc1
73 bitcoin
74 a
75 deploy
76 nginx
77 db2inst1
78 hdfs
79 abc123
80 jenkins
81 web1
82 dasusr1
83 operator
84 anonymous
85 csgo
86 camera
87 passw0rd
88 baikal
89 tplink
90 cssserver
91 tt
92 admins
93 tst
94 osmc
95 prueba
96 fulgercsmode123
97 y
98 odoo9
99 zookeeper
100 mahdi
101 wordpress
102 www
103 billing
104 111111
105 ftp_test
106 flw
107 b
108 redhat
109 steam
110 ohh
111 ops
112 abc123456
113 user8
114 ScryptingTh3cod3r~F
115 ts3user
116 centos
117 svn
118 user9
119 postgres123
120 vagrant
121 gituser
122 enable
123 elastic
124 user2
125 daemon
126 user3
127 walter
128 VM
129 havanaloca
130 csgoserver
131 demo
132 CUAdmin
133 servercsgo
134 css
135 spark
136 ftptest
137 data
138 localadmin
139 wangjc
140 ispadmin
141 1
142 adam
143 Accept-Language: zh-CN,zh;q=0.8
144 web
145 client
146 xuelp123
147 workpress
148 openssh-portable-com
149 cacti
150 zs
151 cubie
152 informix
153 Contact:
154 conf
155 hbase
156 ranger
157 msn
158 bot
159 spark1
160 radio
161 xc3511
162 pass
163 dev123
164 maven-assest
165 noah
166 linktechs
167 query
168 bot1
169 informix123
170 gzw
171 tss
173 es
174 oracle123
175 user123
176 mcserver
177 ftpadmin
178 linuxshell
179 app
180 optiproerp
181 wangshaojie
182 knox
183 org
184 nmstest
185 elasearch
186 Xinjiang
187 aticara
188 555
189 [email protected]
190 wwwdata
191 sh
192 jenkins123
193 henry
194 licongcong
195 crontab
196 oldbody
197 tez
199 zhang
200 Shaanxi
201 nobody
202 cf46e3bdb4b929f1
203 ethereum
204 aa
205 Jay123
206 ionhasbeenidle13hr
207 mysql-data
208 system
209 localhost
210 [email protected]
211 dzldblog
212 linuxprobe
213 bdos
214 raid
215 jira
216 zhouh
217 amx
218 wanjm
219 MPE
220 aaa
221 NISECTC5002
222 ec2-user
223 sandiego
224 iptv
225 shell
226 confluence
227 matthew
228 bizf
229 backupdb
230 hive
231 dell
232 tornado
233 zhou
234 blender
235 user0
236 c
237 @Huawei123
238 net
239 cat1
240 watch 'sh'
241 haohuoyanxuan
242 administrador
243 text
244 dell123
245 wybiftp
246 share
247 yanss
248 squid
249 kafka
250 db2as
252 bitcoinj
253 user01
254 cc
255 [email protected]
256 12345
257 azureadmin
258 duanhw
260 zhangfei
261 easton
262 geoeast
263 lwx
264 ldd
265 aws
266 gv1
268 useradmin
269 tlah
270 walletjs
271 ccc
272 user4
273 solr
274 chef
275 python
276 GET / HTTP/1.0
277 12345678
278 customer
279 sss
280 geminiblue
281 ausftp
282 Chongqing
283 nologin
284 username
285 mining
286 user11
287 news
288 2
289 muiehack9999
290 user5
291 ubuntu123
292 docker
293 nexxadmin
294 wq
295 OPTIONS / HTTP/1.0
296 gpadmin
297 test5
298 kuangwh
299 nagios123
300 ams
301 gfs1
302 vsb_pgsql
304 carl
306 nvidia
307 wallet
308 [email protected]
309 3
310 db2fenc1123
311 user6
312 www1
313 andy
314 assest
315 OPTIONS / RTSP/1.0
316 azure
317 webftp
318 tab3
319 aliyun
320 smartworldmss
321 hcat
322 walle
323 zhangfeng
324 openlgtv
325 User-Agent: Go-http-client/1.1
326 wangw
327 kelly
328 usuario1
329 [email protected]#
330 x
331 Huawei1234
332 user7
333 sysadmin
334 video
335 tmp
336 GET /nice%20ports%2C/Tri%6Eity.txt%2ebak HTTP/1.0
337 dianzhong
338 clfs
339 wangk123
340 rsync
341 livy
342 xuezw
343 hduser
344 testing
345 HEAD HTTP/1.1
346 bitcoind
347 matrix
348 cassandra
349 xx
350 F
351 backups
352 ktuser
353 barbara
354 sunxinming
355 OPTIONS sip:nm SIP/2.0
356 ftpuser123
357 michael
358 jiang
359 wangh
360 wolf
361 ikan
363 monitor
364 Proxy-Authorization: Basic Og==
365 pentaho
366 rootadmin123
367 wildfly
368 xxx
369 nobodymuiefazan123456
371 www2
372 serial#
373 From: ;tag=root
374 cat2
375 alice
376 robot
377 wowza
378 visitor
379 tab2
380 elasticsearch
381 gbase
382 motorola
383 superuser
384 User-Agent: Mozilla/5.01688858 Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/62.0.3202.75 Safari/537.36
385 sara
386 Jaydell123
387 linuxacademy
388 vps
389 xbmc
390 software
391 Call-ID: 50000
392 felix
393 portal
394 backupdb140
395 bdos123
396 greenplum
397 sshd
398 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,/;q=0.8
399 daemond
400 qwe123
401 webmaster
402 [email protected]#
403 web13
404 bpadmin
405 ligh
406 leo
407 Max-Forwards: 70
408 password123
409 vivacom
410 dbvisa
411 tab
412 mongo
413 ggg
submitted by Admir4l88 to Admir4l88Data [link] [comments]

Are we INSANE?! Can this EVEN HAPPEN?! I feel crazy.

I feel like we're going insane and I just need to know if this is possible.
My husband and I used to live with roommates who would have had access to our computers and the knowledge and resources to REALLY mess with us if they wanted to. For the past year our performance has been crap, and suspicious stuff has happened on our computers.
It's almost like we're using virtual machines while our resources are allocated somewhere else. There's Hyper V processes running in Windows 10 and boot devices we didn't install popping up in our BIOS.
Theoretically, is it possible for someone to set up our machines/phones/network to allocate our resources without our knowledge? Maybe to mine Bitcoin or something? We've reinstalled everything, even replaced the router and re-flashed the BIOS and it seems to be fine for a few hours and then back to bad.
Can this happen? Or have we become the crazy old couple just an update away from claiming them thar compoopers is wachin' us?
In all seriousness, I've considered checking us both in to the loony bin. It's that bad.
EDIT: It looks like someone set themselves up to be our OEM? They've set up something to deploy and install drivers after we install Windows. If that's the case, how would we fix that?
Edit 2: Azure services are also running. We haven't installed Azure, but we know our former roommate is an Enterprise customer who uses Azure.
submitted by RobotAnxietyAttack to techsupport [link] [comments]

Is A Hack Like This Even Possible? I Might Actually Be Crazy.

For a year my husband and I have noticed a decrease in our computers performance. There's a lot we can't explain. We also have a friend who has the knowledge, resources, time and access to pull something like this off. Our theory is that he's using our computers to mine bitcoins with our resources without our knowledge. It has to be profitable to be going on this long. OR some of this stuff is perfectly explainable and were just extremely paranoid and delusional. It has literally effected our mental health and I'm terrified for my husband's well-being. Any help on this would be appreciated more than you know.
For those interested in what we think we've found here is a list: 1. Our computers speakers will start buzzing or cracking at the same time. Computers are off and not connected together. At one point shortly before this started, we noticed one computer's sound was messed up and the headphones speakers were configured as a mic. This suddenly fixed itself. 2. Random network traffic that is not shown on the Task Manager view of the Ethernet connector. It seems to happen only if League of Legends is open. The RM shows a spike but the TM shows nothing. 3. We noticed that one computers internal SATA ports were configured as external SATA ports. 4. Strange things in the BIOS that weren't there before like a Windows ToGo device, a Linux device, even after flashing the BIOS. It seems like it posts twice. TPM settings popped up after re-flashing. 5. Lots of Bluetooth services with seemingly random letters and numbers after them that we can't change settings for or disable. We don't have Bluetooth devices on our computers. 6. NFC and Payment service on a PC? 7. strange hash files and GPU cache 8. Hyper-V services we didn't install 9. Running traceroute to anywhere, the first hop is always "*" 10. Network boot settings we can't change. 11. Routers Firewall blocking weird packets and weird firewall settings we haven't added in windows firewall. 12. Unspecified TCP connections and loopbacks in the resource monitor.
He also used his card to buy our windows key and is an Enterprise user who uses Azure. Another theory is that he's registered as our OEM to install the software automatically that does this for him.
Is this even theoretically possible or should we seek out a doctor and start taking antipsychotics?
submitted by RobotAnxietyAttack to hacked [link] [comments]

DEVCON2 report: Day Three - Final day

previous days
Question: the 3 days of devcon are over. Are people interested in reports on the next 3 days of international Blockchain week (demo day + 2 days of global Blockchain summit)
Event update
The buzz during the day was around the "stick puzzle" that Bok Khoo was giving out to people. It is just a stick, with a loop of string. He gets you to turn away, he uses "the trick" to put it onto your bag and then you try to get it off.
The WeChat channel was just filled with everyone asking where they can get it, and the screaming that they can't figure it out. Only about 5 people reported they were able to solve it (I haven't yet)
I'm biased, but I thought the announcement from Microsoft with the update of cryptlets was a big deal. The morning sessions covered a few different oracle systems, the afternoon had lots of IPFS sessions.
Microsoft - A Lap around Cryptlets
Microsoft was a sponsor of Devcon1 & 2 Ethereum is a 1st class citizen Support for community & partners - Bizspark, Meetups, Workshops
Announcing: Bletchley v1 Distributed Ledger stack V1 is a private Ethrerum consortium, that you can spin up for your own enterprise / group
Cryptlets are being developed to help with security, identity, etc. How do you get trusted external data feeds injected into the Blockchain? Doing things on a specific interval (every 15 mins) When price of something hits a threshold (oil goes above $40/barrel) Secure IP protected algorithms, but still share with blockchain network. Use libraries for common platforms (.Net, Java, etc)
Cryptlets vs Oracle Cryptlets will have a marketplace on Azure that will allow you to purchase and utilise
Use case: Trigger on an event Wake up on 4pm, if market was open that day, then give me the price of gold for that day.Get signature of attested server, attested sender.
Use case: Control Using smart contract like a traditional DB. Declare data you are keeping track of, and the functions/"stored proc" to update that data. Cryptlet runs off chain, and can be scaled up.
Utility cryptlet. Use an attribute in solidity contract with cryptlet details Developer references at design time the cryptlet they want the contract to call Contract cryptlet, deploy the cryptlet at same time as contract.
Why would you want Azure to do this? SGX allows you to create "secure enclaves", can have complete isolation on the hardware chip where it is not modifable. Provides a secure enclave at the CPU level. Can give full attestation right down to the silicon. Will be provided as a enclave container on Azure. Will be released for .NET core CLR first, then other languages. Can create cryptlet libraries that you can scale and put into the Azure marketplace. An ecosystem for developers & ISVs to consume and publish.
Bletchley v1 released today will let you spin up a private consortium. Before today, it took a long time to try and deploy a private consortium (can take weeks to read doco, Now takes 5 minutes to deploy! Creates a private consortium, puts each member in its own separate subnet
Mist Vision and Demo I was too busy sharing the release posts of Microsoft project bletchey v1, missed this talk. It did look interesting, I will watch this one later. Idea: Reward for bandwidth. Providing connection could replace mining as entrance point for desktop computers. Allow you to have a trickle so you can trigger smart contracts. Standardised backends, so that you can swap out the underlying node between geth, blockapps, etc.
Web3.js Etehereum JS API Smart conracts are EVM opcodes, Helps translates calls to JSON RPC calls. Helps do the ABI encoding when sending data from JS to EVM It kept on growing, many different utility functions being thrown in. Is time to clean it up and be refactored.
They are now building a NEW web3.js The communication will be socket based, will enable subscriptions. Everything will be based on promises to subscribe to events, like log events. Bunch of other newer cleaner methods and ways to do things like deploying contracts.
Smart contract security
Was a very good postmorteum of The DAO and things that could be done to mitigate it in the future.
An issue with The DAO was trying to do a massive jump from centralisation all the way to full decentralisation. Meant no one could step up and make a decision on how to save it. We need to make smaller steps towards full decentralisation as we learn as a community how to do this. Same security patterns as yesterday's talks: check invarients, beware 1024 call stack depth, reentry exploit (update state BEFORE executing calls), timestamps are manipulatable. Updateable contracts. Who can update it? Community multisig? We need better rools: formal verification, compiler warnings, improved IDEs, trusted libraries, excape hatches
Conclusion: It is still very early days in this space, be careful.
A Provably Honest Oracle Model: Auditable Offchain Data Gathering & Computations
Oracalize is the most widely used oracle (until everyone starts using Microsoft Azure cryptlets ;-) ) Contract calls Oracalize contract with the data they want, off chain they see this get the data, Oracalise then trigger their contract externally, which does a callback to your contract with the data. Can use external notary servers. Can get proof from multiple external services to get a higher level of confidence about data (e.g. stock price from a few feeds). Off-chain (auditable_ computation) AWS sandbox 2.0. Put the execution package onto IPFS, AWS gets it and executes it, signs it. Fully Distributed Cloud Thanks to the Ethereum Blockchain Provides blockchain based execution environments Global market for computing resources. Idea is to do what we did before with "grid computing" use the idle capacity of computers. But this time do a trickle of micropayments. Allows people to harness this global power to execute their tasks in a global "distributed cloud".
The Final frontier: The company smart conract Helping companies to incorporate on the blockchain.
Smart oracles Connecting to external resources is difficult. Hard to try and use external currencies (like a bank account / fiat money) to make transactions. Could hook in paypal, HSBC, wells fargo, etc. Can provide your own payment services as an API to a smart oracle for smart contracts to consume. Do off chain data storage by calling smart oracle API Roadmap: more data sources & more payment methods
IPFS & Ethereum: Updates IPFS is AMAZING, seriously go watch the full 1 hour talks Juan has given in previous years.
Current web has current issues. Centralisation, etc. IPFS is a new hypermedia transfer protocol Content can be retrieved not from specific servers, but instead via it's hash so that it can come from anywhere in the network (maybe from the person next to you who has cached it). It is highly modular, all of the transfer protocals, routing, naming, etc. are all swapable Is available as GO-IPFS & now JS-IPFS Means now you can run IPFS in the browser IPFS was great for static content, but not so great for dynamic content. Low latency pub/sub protocol will help with dynamic data. Created a distributed peer to peer chat app using this new dynamic content protocol. IPLD a common link-tree hash format Will be able to use IPFS to retrieve ethereum blockchain blocks DIRECTLY Can use IPFS as a package manager to retrieve them in a distributed manner.
Many projects are using Ethereum & IPFS Uport, Digix, Infura, Ujo, Eris, Blockfreight. Filecoin was created as a way to try and incentivize nodes to keep files longer time. People rent out hdd space to earn filecoin. Exchange bitcoin/filecoin. Use filecoin to store files in network. Filecoin is going to be built on top of the public Ethereum blockchain, as a virtual blockchain / token.
IPFS Libp2p & Ethereum networking
Network connectivity between any 2 nodes can be difficult. Censorship, bandwidth, network issues, etc. Having to deal with different networking topologies and access. Libp2p & Devp2p is different. Devp2p is for Ethereum. LIbp2p is modular, can swap out components to change network access, encryption methods, etc. Can build up a MEGA mesh network, by utilising traditional wired internet, radio, bluetooth between some nodes. Web browser using web socket, to a node, which routes across network, to zigbee to a IoT device. Libp2p & Devp2p could merge and augment each other. Could create the libp2p components to replace the devp2p bits Any 2 nodes that speak the same protocol can communicate and be a part of the network chain. Experiment. They took the browser based version of EVM. Then used Libp2p to talk to the Ethereum network. Had a complete ethereum node running in a browser.
Uport Universal identity platform Current challenges: key management. Ux for average person. Dapps via mobile. Identity and data ownership. How do you keep a consistent identity, even if you lose a key. Have some multisig contracts that you can use to keep track. Social recovery, use your friends to attest it is really you. Keep private key on mobile, do transactions on the desktop, scan a QR code to sign the transaction on your phone and send it off.
A Deep Dive into the Colony Foundation Protocol
It is an open source governance protocol built on Ethereum Problem with voting is how to prevent Sybil attacks. Votes are weighted by a reputation score. Reputation is non-transferable that can only be earned. Total weighted voting helps mitigate this.
Chain orchestration tooling & smart contract package management
Eris is tooling for developers. Package manager to build your own blockchain. Can compose a chain, e.g. geth + tendermint consensus. Init, install, do. Can easily install on Mac/bew, linux/apt-get, Windows/choco
The Golem Project: Ethereum-based market for computing power Anyone can make an offer to sell computing power. e.g. Distributed rendering Want to create a standard framework that anyone can use to submit and process jobs.
Status: Integrating Ethereum Into Our Daily Lives Want to get ethereum everywhere. "Mist for Mobile" Everyone is using their mobile phones for everything, but mostly using instant messaging. What would Ethereum in a IM window look? Created a IM mobile app that has a local geth node. tart up, it asks you to create a password, it generates a pub/private pair. Then can send messages via whisper, and the messages are signed with your public key. Can load Dapps up in the local webview and interact with them. Allows you to create "chat Dapps", that you interact with via text. Like chatbots
Maker Ecosystem Overview Dai: seeking stability on blockchain. Stablecoin engine: smart contract that holds collateral reserves and controls the Dai lifecycle. MKR: open source community managing risk of the system In the last year, investing in a solid technical core. More slow and audit things. Moving into the next phase of stablecoin development. Their latest project is the "Simplecoin project" Meeting Thereum community's need for stability. An independent platform for creating centrally administered simple stablecoins. Issues create their own rule sets: Collateral types, participant whitelists, security parameters. Example: Shrutebucks. The only people who own it are Dwight, Jim & Pam. They backed it with 1/3 ETH 1/3 DGX 1/3 DUSD.
Orbit. A distributed peer to peer app on IPFS Created a full distributed chat room, itself distributed through IPFS. It is integrated with uPort for identification Using uPort allows you to verify that you are talking to the correct person in the chat channel. All their messages are signed with their public keys He also created a full distribited twitter clone, using uport for the identity as well. Orbit-db key value store DB that stores its data on IPFS. Eventually consistent Appends data to the DB, an event is sent to those subscribed on pub/sub so they can see the latest root hash. Based on CRDT Ethereum + Pubsub + CRDTs + IPFS = super power primatives to build dynamic distributed apps
Development considerations with distributed apps. Need to ensure that apps work offline. No centralised servers. No data silos. Provide integration path.
Future work: could you use uPort for ACL like permissions? Mobile use cases, how to make it work nicely on mobiles
Building scalable React Dapp architecture React + Ethereum He has a configured boilerplate template. Has contract scaffolding. Enforced contract Linting/testing. Wallet generation/identity. Preconfigured web3 instance. UI: Mature react arhitecture "react boilerplate". Prices listed in USD with ETH/btc via kraken api. A basic multi-contract example Dapp. Offline first, dapp runs without internet. Uses Redux. State models in UI & blockchains work well. PostCSS, CSS Modules, sanitize.cs. Redux, immutableJS, reslect, redux-saga, i18n, redux-router. Web3, ethdeploy, dapple, solium, eth-lightwallet, chaithereum, ethereumjs0-testrpc Enforced contract testing in 2 languages.
Ethereum for Enterprise (BlockApps Strato)
Trying to make sure that Ethereum stays relevent to enterprise development. Why do you need a blockchain WITHIN an org, shouldn't they trust each other? Well different departments may not, they may reconcile differently, and can help automate/orchestrate between them. Blockchain is the "killer app" for cloud financial services. Legacy infrastructure, batch prossing, etc are all restricting fintech from progressing. Blockchain can happen in real time, can replace legacy. Ethereum is very flexible and programmable, works well. There are others based on Bitcoin (like Hyperledger). Ethereum + Blockapps = Extreme productivity + Proven Technology. Blockapps is extending Ethereum for Enterprise. Runs very well on Azure Enterprises don't want all their data exposed on public chain. Blockapps helps solve data privacy and scaling with multichain fabrics.
submitted by DavidBurela to ethereum [link] [comments]

Dash is a planned instamine, it wasn't an accident

The official story about the instamine:
Evan Duffield:“The instamine happened, there is no one disputing that fact. The crypto-community at large has no problem with this except a few who think it’s trying to be hidden in some way. In fact, I posted multiple times about the instamine, first in “The Birth Of Darkcoin” which is an account of the first few weeks of the launch and the mistakes that were made. Recently I also posted spoke about the Instamine in the video “Virtual Corporation”, which considers the concept that it might have been key to Dash’s success, which I believe now.
It’s also important to note, I was working a very challenging day job while working on Dash in the first couple weeks. So I was putting out fires every night, keeping tabs on Dash during the day (while getting yelled at by my boss when he caught me a couple times). Eventually I quit when I got Dash stable enough to work on full time and decided I really wanted to explore what I could do with it. “
In my opinion, it was a planned instamine. This wasn't mentioned before launch.
The features of this coin were also not public at launch.
=> Nobody was really interested in the coin at launch, making this instamine more a kind of "stealth launched premine". In my books, that's a scam. Please don't ignore the facts:
2 guys from Hawk Financial Group, Evan & Kyle, are asking on the Bitcoin Dev mailing list for "1 or 2 really good C++ programmer that is familiar with the bitcoin internals to help with a for-profit startup". They are planning to build a unique coin that is "not just a clone of the original Bitcoin code" but in stead "a merge-mined altcoin that will provide a very useful service to the whole crypto-coin ecosystem". They claim to have "detailed plans on how to implement it".
There were some issues at launch, so Evan said he would postpone the launch and would "definitely not" launch it in the next hours. But he did launch it a few hours later.
Xcoin was launched. This was the emission in the first 72 hours of the coins existence: This was the emission of the first 100 days:
At the moment, there are about 6 million DASH in circulation. There would be 84 million Xcoins eventually. ( Note that in the first hour, 500k Xcoins were mined. Due to the "quick fix" of the bug, not many people expected to launch a few hours after Evan said he would "definitely not" launch in the next hours.
Right after the launch, there were problems with the window binaries. Evan clearly was mining right from the start, as he offered 5000 Xcoin as a bounty for compiling the binaries.
After the emission of almost 2 million coins, Evan said that "now that everything is stable, I'll be posting later about the vision of this project and milestones!". Up until this point, only the "X11 hashing algoritm" was a known feature. According to him, it was "time to move on to actually implementing what I set out to do".
Evan releases his plans for XCoin. At this point, more than 2 million coins were mined.
Xcoin rebranded to Darkcoin and eventually to DASH later on.
Later on, some contradictions surfaced:
  • Evan isn't acting alone, he had/has a team behind him right from the start. It wasn't a hobby. he had a plan to make a profit.
  • Evan had plans for his coin right from the start, but didn't release them until after the instamine
  • 1.5 million coins were mined in the first 8 hours. Most of these coin ended up in his (and his friends) hands. It's very likely the 500k in the first hour were only mined by him with cloudhosting services.
  • He lowered the emission later on, to make his relative share of coins bigger.
How can this be all an accident (like Evan is always saying) and NOT be intentional? Evan was looking for c++ devs for a "for profit startup" at the end of 2013 for the launch of an altcoin.
How can you make a profit by launching an altcoin (and be sure to be able to pay your devs)?
by premining and/or instamining.
How he did it is pretty easy:
  • telling people the release would definitely not be in the next couple of hours and after that do launch it a few hours later
  • buggy windows binaries
  • a "code error" creating 500k coins in the first hour, >1.5 million in the first 8 hours.
=> DASH was clearly a planned premine/instamine.
submitted by dnale0r to CryptoCurrency [link] [comments]

[Guide] No hardware to mine? How to net 6,000+Ð/day using Windows Azure

Inspired by lleti 's free guide for using Amazon Web Services. However, from what I understand due to rental costs, it is more efficient to buy doge directly than use AWS. This guide is based on utilizing the $200 credit that comes with the Windows Azure cloud computing free trial, so you will not pay anything.
This is targeted at shibes with poor hardware that can only mine 50-200 doge per day, but it will work for everyone.
Disclaimer: Doge rate is an estimate based on current difficulties and market. Windows Azure trial may be US only (?)
Overview / How it works
You will not be mining doge directly with this method. Mining doge effeciently requires a GPU, which aren't found in traditional servers. Instead, we will be using the powerful CPUs provided with Windows Azure servers to mine a CPU based crypto-currency, such as QuarkCoin or SecureCoin, and convert those to doge.
1) Install your QRK or SRC wallet
Ideally if you are reading this, you have installed a dogecoin-qt wallet for yourself before. We will need to do the same for either QuarkCoin or SecureCoin. This is the wallet where will will send the coins you mine with your Windows Azure servers.
These are not the only CPU coin options, but QRK and SRC are very similar (same hash function) and simple to mine.
Once you have installed the wallet, it should look very similar to your DogeCoin wallet. If you have trouble downloading the blockchain ('out of sync'), look at these threads respectively to see which nodes you need to add to your config file. Config files are located at C:\Users\UserName\AppData\Roaming\CoinName.conf on Windows.
2) Set up a mining pool account
If you have joined a mining pool for DogeCoin, it will be a very similar experience for other alt coins. See the following bitcointalk threads which have a list of mining pools:
If you would like a pool recommendation, I can recommend and; this is from personal experience, I am not affiliated with them.
Once you are logged in you should also create 3 workers, as we will be setting up 3 servers, one for each server. So you should have 3 worker names, and a password set up for each worker.
3) Sign up for Windows Azure free trial
You will have to provide a valid credit card and verify your account with a cell phone so they know you are a real person. This is a Microsoft product so they are reputable. Once you sign up, you will receive a $200 to use in 30 days. Remember to cancel when your credits are running out so they don't charge you.
4) Create Windows Server instances
I would recommend you watch this video which walks you through the UI of the Windows Azure management site to set up the virtual machines we need. Essentially we are going to do the following:
Thus we have a total of 20 CPU cores to mine QRK / SRC with. We want the the most CPU power we can get without excessively burning our $200 credit. That's why 2008 R2 is used, and only 3 instances of it.
5) Remotely connect to servers and download miner
This section is also covered in the video from section 4, watch it for a visual walkthrough.
Once the servers have been initialized on Microsoft's end, we should be able to access them under 'Virtual Machines' at You should see each host name and a status, and when selected there should be an additional 'Connect' button - click it.
You should now be prompted to download a .rdp file. Download this for each of your 3 virtual machines to a folder you will remember. You will open this .rdp file and use the login credentials you previously specified to connect to each server.
Once you are remotely connected, you should see the desktop. Open up the first icon on the taskbar that looks like a server, this is your server manager. We need to open up the 'Configure IE ESC' setting that's visible on this pane. Make sure 'Off' is selected for both admins and users on the IE ESC configuration.
Now, open up the IE browser and navigate to Press Ctrl + S to download the entire zip to the desktop, and un-zip it.
6) Configure and start miner
Again, this is pretty much covered in the video from section 4, if you prefer watching.
You should now have a folder on your server's desktop named quark-v2_w64. This is the miner for both QRK and SRC. We are going to be using minerd64_sse4.exe. Create a shortcut to minerd64_sse4.exe within the same folder. We now need to add the parameters for your miner.
Right click on your minerd64_sse4.exe shortcut -> Properties. Look at the target field, it should look like this:
We are going append the following format to this target field
-a quark -t 8 -o stratum+tcp:// -u user.worker -p password
-a: algorithm, both SRC and QRK use 'quark'
-t: number of cores (so either 8 or 4 for our purposes)
-o: mining pool information (url and port).
-u: account you have for your mining pool, then a period, then a worker name
-p: password that you created for the worker in step 2
So here is an example of what the target field of your shortcut should look like when you are done:
C:\Users\Nexic\Desktop\quark-v2_w64\minerd64_sse4.exe -a quark -t 8 -o stratum+tcp:// -u Nexic.worker1 -p pass1
7) Profit!!
If you set up your miners correctly on each Windows Server VM (I prefer to assign a separate worker to each one), you should be able to run them and see an output like this: You can close your remote sessions without interrupting it.
How do you get the doge, you ask? Well, using the above setup I have earned 10 SecureCoins in the past 2 days. These are worth 0.00094 bitcoins (BTC) on Cryptsy at present. A doge is worth 0.0000007 BTC at present, so if I go from SRC -> BTC -> DOGE, I can turn 5 SRC to 6,642 DOGE on Cryptsy. There are also other exchanges, I won't go into how to exchange coins on this post. Remember, this is every day for about a week, for free!
Also, you can CPU mine on your own personal computers as well, not just the servers.
Mine QuarkCoin / SecureCoin using Windows Azure free trial, use Cryptsy (or other exchange) to convert to DOGE. Much more efficient than CPU mining Doge.
submitted by Nexic to dogecoin [link] [comments]

Bitcoin faucets, free VPS trials, mining, and altcoin trading has earned me ~0.34 BTC in the last 11 days, ~$380, while spending nothing.

I began with the bitcoin faucets for about a week, I also posted threads about them here and here too.
After about a week using those I decided that I wan't going to have much profit if I kept accumulating bitcoins like that, there had to be a better way.
So I decided I should mine something. I began with applecoins being mined with GPU and protoshares with my CPU.
I started looking at free VPS trials. I posted the first $10 trial I found on here for people wanting to mine as well. After that I read about a $100 Amazon trial and a $200 Windows Azure trial, both can be found by googling very easily.
After a while reading on bitcointalk I found a currency that interested me, Quark.
I went on Crypsty and traded all of my BTC I had earned from faucets into Quark and started the Windows Azure trial and set up 3 servers mining Quark for free.
I then posted about Cryptsy on here and how if you are willing to risk your faucet earnings you can make tons of money buying coins before they rise.
Since then traded my protoshares I accumulated for BTC to Quark, let the windows azure servers run without input, and even mined on my desktop.
Bitcoin is a pretty safe investment at this point, but you also won't see extremely high returns like you do with altcoins. While there is always a risk in altcoins crashing no never risk more than you feel safe with, which if you just use faucets is $0. And cash into bitcoins when you reached a value you feel good with and the fear of a drop is too much.
Links to altcurrency exchanges:
Cryptsy is the one I have been using most. They have been running into some issues since they are getting such trade volume now. Referrals for this one give Cryptsy points when I am unsure what they are for
Cryptsy Non-Referral
Bter I mostly use to check price of Quark at another exchange but they also have plenty of altcoins you can trade there. The referral program here gives the person being referred gets 10% off the fees for 6 months and the person who referred them gets 30% of the fees charged for 6 months.
Bter Non-Referral
Btc-e isn't an exchange I have used personally, I just like to hear people argue in the chatbox and give each other bad advice.
If you end up making a decent bit of money and feels generous.
Quark address: QWZtu6GfPsfMNvv7Q8cuoTqFVgosi9AeRZ
Bitcoin Address: 15DkqPFEjBd7H2RsoQqgXbTFWitazncc66
submitted by 75000_Tokkul to beermoney [link] [comments]

New cloud threats as attackers embrace the power of cloud

When Apple Inc. launched its iCloud service in 2011, cloud threats didn’t include the Chinese government. Apple changed its policy in February of this year and conceded to Chinese authorities’ demands to store mainland residents’ encryption keys in data centers in the People’s Republic of China. Housed on local servers, run by state-backed Guizhou-Cloud Big Data Industry Co. Ltd, experts fear the Chinese government could gain access to users’ private data. Apple may be one of the wealthiest company’s in the world, but even it cannot guarantee data security in the cloud.
Consistent security for all data from third-party partners and cloud providers is what many consider the next evolution of cloud. Even when the risks associated with cloud threats are high, the cost benefits — in Apple’s case, access to a market with the world’s largest purchasing power — outweigh the risks. This matters more and more as use of cloud services grows.
Enterprise spending for public cloud services worldwide is expected to reach $160 billion in 2018, according to International Data Corporation, up 23.2% from 2017. In the U.S., discrete manufacturing, professional services and banking industries are forecast to spend the most this year on public cloud services.
Software as a service continues to have the highest growth as Microsoft, Oracle and SAP migrate their on-premises enterprise customers to subscription services in the cloud. Spending on infrastructure as a service — AWS, Microsoft Azure and others — is next, followed by platform as a service (PaaS) offered by Amazon, Microsoft, Salesforce, Google App Engine, Heroku Enterprise and more. Companies are using PaaS — operating systems and hardware — for rapid development, testing, deployment and increasingly, data management.
More power in the cloud Most platforms take advantage of public cloud security features, but large-scale clouds don’t always mean large-scale threat protection. What cloud threats should you watch out for in 2018?
Malicious cryptomining is one of the leading types of attacks since September 2017, according to Malwarebytes Labs. With the volatility in the Bitcoin market — described as the next gold rush — it’s no surprise that hackers who need massive processing power to verify and confirm transactions to blockchain have found their way to cloud servers in an attempt to earn more digital currency.
Drive-by mining In February, hackers accessed an Amazon public cloud account, owned by electric carmaker Tesla, using credentials obtained through an unsecured administrative console in Kubernetes open source orchestration software. The Tesla breach had similarities to cryptocurrency mining malware detected in the Amazon and Microsoft public clouds of SIM card manufacturer Gemalto, and multinational insurance provider Aviva, according to RedLock, the cybersecurity startup that disclosed the attacks. But the Tesla hackers used different techniques to cover their tracks. Instead of using a public mining pool — groups of cooperative miners, largely based in China — they installed “mining pool” software, hid the IP address of the server behind Cloudflare and configured the software to a nonstandard port, according to security researchers. The attackers also accessed sensitive telemetry data and other nonpublic information Tesla stored in an Amazon Simple Storage Service (S3) bucket. Tesla addressed the security problems when RedLock notified the car company.
There’s a lot of money to be made in cryptocurrency, and it is so much easier to attack IoTs with Linux malware. Mounir Hahadhead of threat research, Juniper Networks
A Los Angeles Times website called The Homicide Report maps murders and homicides — 633 people were killed in the last 12 months — in LA County. In February, attackers discovered an unsecured AWS S3 bucket. They embedded the popular cryptojacking malware Coinhive into the website for drive-by mining of visitors’ browsers and PCs. Security researcher Troy Mursch discovered the embedded JavaScript, used specifically to mine Monero, an open-source cryptocurrency released in April 2014. Author of the Bad Packets Report blog, Mursch’s internet research tracks cryptojacking and internet of things (IoT) botnets.
Linux malware that attacks embedded systems to build botnets — similar to Rakos — is going to become more prevalent. “The reason we haven’t seen it in the past is because, by trade, the people who are writing malware and doing these intrusions are heavily Windows-based,” said Mounir Hahad, head of threat research at Juniper Networks Inc. in Sunnyvale, Calif. “But as it turns out, it seems like there’s a lot of money to be made in cryptocurrency, and it is so much easier to attack IoTs with Linux malware.” In December, Juniper Threat Labs discovered Linux malware on a popular home brand of DSL routers used to build an IoT botnet for cryptocurrency mining. Juniper notified the manufacturer. Hahad expects to see more IoT botnets used for Bitcoin mining because many IoT embedded systems are Linux-based.
Signing up botnets Data shows a rise in the number of attackers that consume public cloud services to host command-and-control servers for IoT botnets and ransomware. In January, the Spamhaus Project, a nonprofit based in Geneva, released its 2017 Botnet Threat Report. Researchers at Spamhaus Malware Labs identified more than 9,500 botnet command-and-control servers on 1,122 different networks. Botnet controllers, according to Spamhaus’ block listings, increased 32% in 2017, and that data does not include controllers hosted on the dark web, where servers can’t be identified. “What stands out in 2017 is the dramatic increase of botnet controllers hosted at cloud providers,” the researchers stated. Large botnet operators are cloud threats, deploying botnet controllers in public clouds such as Amazon Web Services and Google Cloud Platform (Compute Engine) using fraudulent signups. “While some of the cloud providers managed to deal with the increase of fraudulent signups, others are obviously still struggling with the problem,” researchers said.
submitted by SwitchKanun to hashflareinfo [link] [comments]

[Table] IamA (app developer doing a startup with my freind) AMA!

Verified? (This bot cannot verify AMAs just yet)
Date: 2013-12-22
Link to submission (Has self-text)
Questions Answers
Omeagle has basically become guys looking for girls desperately. How will you stop that from happening to your app? Is it something you have considered to be a problem? This is actually a huge concern of mine too, I really don't want it to end up like that. In the future we plan to have filtered receiving, that helps users find who they want to look for more easily. But its really just 2 of us coding, we're kinda limited in resources.
Some initial steps were taking include a reporting system that auto deletes. We launched 2 days ago, I'll definitely be transparent to the fact there was 2 incidents of users reporting and we instantly auto banned the users at the server end. Currently we have 650 ish people, growing now at a user every 3-7 minutes , most messages have been positive and in good fun.
I'll definitely give it a shot Thanks a bunch, any feedback would be sincerely appreciated.
What is something that looks simple to do but was a pain in the ass to code? Good question, I could go on for days. But push notifications stand out. The little red numbers on your apps actual take data to sync. Especially with messaging apps since they're constantly changing (increasing).
How will apps help people survive in the zombie apocalypse? You can trade bitcoin on mobile now, maybe that will help, like maybe you could buy a squirrel carcass for 0.0001BTC... otherwise they're pretty high on Maslows pyramid.
Let's ask the important Questions... is it free? You bet it is :), though since we're on such a shoestring budget, we limit how many time you can collect messages daily to keep down server costs. But chatting is unlimited. We plan to remove the limits later though.
Ads? Nope.
You sir or madam, have just got another person on Airogami Thanks for giving it a shot, hope you like it, well try to make it better from what it is now :)
Have you talked to any VC people or do you want to grow before you present yourself? Or is acquiring VC funds not part of your plan? If not, why? We talked to one fairly prominent VC in Silicon Valley. We had a good exchange in a hotel lobby. He went from being really excited... to not returning my calls or emails. o___o. [Edit:] without warning one day he just stopped*
Right now we're focused on growth and making our product better with feedback, but we're also starting to compile a spreadsheet of possible investors to raise a seed round.
Ok so I can't even begin to understand what you need to make an app like a compiler or something and also how does typing in code translate to a very detailed app and what code are you using. We used Apple's platform called X code it's like a drawing board that you use to make the functioning parts of the interface (or front end) Buttons, textboxes etc. (It's pretty much dragging and dropping images in to place then coding their functions.) Coded in OBJ C.
The backend is written in a Java framework (struts2). This determines all the connections between users, and the transferring of data from device to device.
You have to pay $100 to be a programmer don't you? What?
Ok say I'm an 18 year old male I know little to nothing about coding is it possible for me to learn coding what do I need to have to do this I'm homeless you can either give me $100 or teach me how to code say I pick that I want to learn how to code could you teach me the very basics could you ELI5 how to do this and give me some further sources to set me on my way to someday make my own app? This wouldn't be sustainable for either of us, I also don't have 20 dollars to spare let alone 100.
Haha sorry I guess you didn't read the story about the homeless guy who was offered $100 or the chance to learn how to code he made an app Haha, yeah sorry I didn't. (Much Confuse.) There's a bunch of online resources that are free. The Stanford ones are really good, and the pacing is fairly moderate, also unlike a lecture you can easily rewind, theres more like this one. The best part is they cover fairly specific topics.
Link to (theres a bunch on online resources available.)
What did you do before you began with this startup? I worked at as an employee at another startup, my cofounder just finished is masters in CS.
Was it a tough decision / transition? It' was a tough decision, because there's no guarantees of success or even stability. The transition was not that tough thug, we always liked to design and build stuff, we we're now just doing it on our own.
Is your cofounder a good friend? Any tough arguments / fights? My cofounder and I are good friends. He and I are very different thinkers and we come to realized it was good for our process, we have disagreements but we respect each others opinion. We often come up with better solutions in the middle of disagreements.
Financially how are you guys doing this? Did you have your own money saved up (if so rough order or magnitude ), investments from family / friends / Silicon Valley? Our costs are really lean, and we have some money saved up, we do contract work on the side too.
Is the application running on your own hardware, EC2 (or similar), or a PaaS? This is something I've been thinking about for a while. Currently running on ec2.
What AWS services are you using other than EC2? Dynamo, s3,
Thanks for your answer! I wish you guys all the best :) NP :)
How old are you guys? Do you plan to retire at age 25 as multimillionaires like Fuckerberg or what? 23-24. haha, a victory to us is a ton of people liking what we made. So we'll spend a long time refining this. I'd probably not retire as long as i was physically able to work :)
Do you like bagged milk? Also: app actually looks interesting, is there a mailing list to be alerted when it comes out on android. I don't really drink milk, we're setting up a mailing list now..
Do you fap frequently? No actually. (at least a sharp decline in these past months.)
Not sure if you're still doing the AMA, but do you plan to monetize it at all? Yeah still here, eventually but right now we're focused on growing our user base.
I love it. I really hope this gets popular. I've met a few really cool people on here already. Thanks! that means a lot actually, we hope to improve it in V2.
Edit: Is there a way to make it not make a sound? My phone is on silent and keeps sending me alerts. A bit unfortunate when I'm at work ;) Thats actually a UI mistake we made, if you go to where you edit your (in the home menu) profile, there's a gear, and you can use that to turn the sound off.
I've been over at kikpals but haven't had much luck. So far, this has actually been better for me than omegle. Good luck with it! They're almost like karma, but apparently no one seemed to get them we might need to explain them in the app.
What led you to think of this app? (prays it was a random drunken night with interesting story) My cofounder wanted to make a random chat app that felt like IM chat rooms in the late 90s. I thought we should add snapchat like picture sharing to the experience.
Where do you get your ideas? My cofounder got this idea from messing around in various AIM chatrooms in the late 90s, we wanted to create the modern day equivalent of how that felt on mobile.
Cool! Any plans for an Android release? We're working away at that right now :)
I too am an app developer so great job I know how tough it can get! My question is, do you attend school? If so, where? (if that's too personal I understand) I went to school in Los Angeles, I graduated about 8 months ago.
Apart from this post on Reddit, how have you been promoting your app? Mainly Friends, other posts on reddit. nothing much since we're stuck at home building.
I really wanted to try this out but could not get past the captcha verification. "Server busy please try again" constantly. A good thing perhaps? Too many people using it haha. Hey, sorry about that. We had this issue a few times now.
1) trying a different screen name and email.
2) quitting then reopening.
3) deleting then reinstalling the app.
Hope that helps sorry about the wait.
Let me know if any of these work for you.
PS. certain countries experience this problem, like 1 user in Jordan, 1 in Spain, 1 in NZ also had problems signing in. I think this is something in the backend that we have to fix.
Pretend I'm a rich, young, potential investor. Because people are intrinsically fascinated with other people's lives. Putting this experience on mobile means you can get a first-hand account of whats happening in a strangers life at that moment.
I'm a 26 year old male who doesn't know what snapchat or omegle is and I'm perfectly content with that. Why should I care about your product? We also have filters that let you designate the age location and gender of your messages recipients. Imagine getting first hand accounts of life in images and words from anywhere on the map.
Whats its like in the day of a developer? Get up, type stuff, Look at numbers in our analytics software, talk to users. We eat takeout at our desks. This week we've been trying to bring up user engagement by tuning our sorting algorithm so that more users find people to talk to.
I've actually started to answer questions on reddit while I'm on a exercise bike lol.
I graduated last year with a bachelors degree in information systems and other than a little coding in didnt learn too much on the coding side(to me a major problem with information systems degrees is it has no real concentration area and kind of skips around). I am about to go to a community college to pick up some programming classes and was wondering what your coding background was? I originally started in college so not that much earlier than anyone else.
I also seen that you said you originally worked for another company and was curious on how easy it was for you to find a job with your skill set. It was fairly easy to find contracting because theres a lot of people doing startups now. And most of them hire contractors to avoid full time staff. Which allows flexible workweeks, and some time to work on your own stuff.
Just like to add that until your app comes out on android I will not be able to try it but I think it is awesome that you and a friend took the initiative to do something like this. Hopefully after some more advance classes I will be able to get into something like this. Also thanks for the words of support.
So kind of like Facebook then? People can read information and view photos of whatever other people wish to share? Prospective employers? Current employers? Your school? People who can damage your future depending on what you choose to share? We're more about pseudonyms and anonymity, we designed it so people can easily edit who they are. One user described us as 'single serving friends'. Like a sugar packet or coffee creamer, where you just have a quick conversation with. Users don't even have to use set names, they can change them whenever.
Sounds more like reddit now. If that were the case, I just might offer you a deal if I were an investor. Privacy is a big issue today. If I felt safe enough, I'd support you. Thanks for your cordiality and patience. Anytime :)
Just downloaded your app, seems very elegant and simple (which is a good thing) how long did the app take to program and what programming language was it written in? It took about 5 months, the backend is j2ee (struts2) front end is obj.C (Xcode). Sorry for the wait.
(Xcode obj C front end)
Backend: written in a java framework: j2ee, jpa, struts2.
Who designed the website? I built it off a template, there's some custom CSS though. As well as other tools we built. Edit: If you're interested I can send you the template I built it with.
Are you thinking of hiring windows phone/winRT devs maybe? Maybe in the future, we don't have much budget, currently we're combing through the people we know looking for people to help with android.
I just had a very nice idea for a start-up a few days ago but now struggling how to start it properly. Basically, what should be the first steps if you want to launch a start-up? Is it a software startup? You can pm me and we can talk, though I'm by no means an expert. Are you have issues getting it built?
Hi! I was just going to comment! I love the website design. Is there anyway you can send me the template as well? Thanks! Sure! Link to we modified it a bit to fit our needs.
When do you plan on bringing the app to android? Yeah of course, I'm working on that now, its just the 2 of us coding so its gonna be some time, really sorry about the wait.
Also, is there a reason it seems to override the standard Apple type settings? For example, it doesn't automatically capitalize I or I'm and the autocorrect popups are non-existent. Would be nice to have. Yeah I messed up implementing the autocorrect, it's probably our top bug fix, its a huge headache for me too,
Thanks a lot, and good luck with your start up! Anytime:)
Understandable. How'd you get into App Development? I really just like building things that worked, and I wanted to make something that a lot of people like. (as sappy as that sounds) my cofounder and I take on these side projects as a hobby, its like woodworking or scale modeling to us.
I guess I'm late to the party, but what made you start on iOS over android? We just had more experience in Xcode. We thought we could push it out faster that way and get feedback earlier.
Any chance developing for windows phone? If it really takes off sure, but since its just the two of us we're really limited in resources.
Will there be a release for the windows platform? Possibly if we can be successful/survive. Right now we have our hands full with android.
Let's say in the future your app ends up being worth some decent money. At what cost would you sell the app? Say 1 million dollars or 1 billion! 'bout 3 fiddy. edit:tree fiddy.
In terms of quality how does the BB10 OS stack up realtive to iOS or Android? I actually haven't actually experienced BB10 in person. Do you use it?
that's when I discovered my partner was actually 500 feet tall and from the paleolithic era! Hahaha!
Are you a casual redditor? Kinda. I browse the design and programming sections a lot.
Yeah, I have used the z10 and have found it to be functional superior to my iPhone. I guess in your decision the blackberry ecosystem just can't compete. The majority of our work is building multiple front ends. With 2 people our dev speed is pretty limited.
Stack? (Xcode obj C front end)
J2ee, jpa, struts2.
You wann' be my frand? Anytime... frand.
Have you been trying to find more developers? Yeah, we're trying to build a team actually.
Check out windows azure notification hubs. Make push easy. Will do! they were such a headache...
Suggestion for collect box: make it infinite because I ran out of collects and most of them were 0 :( Sorry about that, we initially intended for them to be more, a lot of users complained about the same thing actually.
Initially our idea was that it would encourage people to write more messages, but didn't seem to work... I'll refresh our server later and they'll be more. We'll remove the limits on the next build. -thanks for taking the time to give feedback.
No, thank you for creating one of the FUCKING coolest apps out there. Am chatting with an Aussie girl right meow. Noice mate ;)
Ya..This looks better than snapchat. Also, I see it becoming a singles-sex-chat app. Thanks! We we're thinking of adding a tagging system to match users. Like there can be #nsfw,so people get matched with others who want to do that.
What is the quickest way to learn how to program ios apps for someone with zero coding skills. Stanford has free lecture guides available, I think there's one exclusively about app development. The pace is actually really manageable. I'll try to look for them and PM you.
Cool app, any plans of a Windows Phone release x_x. Since now it's just 2 of us coding, we're really limited. If it gets popular maybe. Currently our hands are tied up with android.
Not sure if you're still around, but as an early adopter (earlier this week via startups) please support landscape mode with the keyboard and please removed the sound notification override. Sorry about that, the sound thing was unintentional haha! It's actually a UI mistake for us, under your profile menu there's a round gear button and you can turn off the sound in that menu. (We definitely need to make that more prominent...) I think in the next build we're just gonna make it mirror the sound setting on your phone. Landscape mode might be a great option for the messaging actually, personally I like to type like that more.
My phone is on vibrate, but when I'm in the app I get a sound notification when I get messages. Getting a few in a row draws stares in a quiet room. When I'm not in the app I just get a vibration.
Also, it's kind of a lot of push notifications. I get that it's a growth hack to alert me when I have a new opportunity to respond to someone's message, but it's kind of annoying when it's combined with notifications for every time someone responds to my message, which is all I really care about.
Keep getting a server error while entering the captcha Someone else in this thread had the same thing, sorry about that. Some users in the past have had success with either of these: (resort to #3 last)
1) trying a different screen name and email.
2) quitting then reopening.
3) deleting then reinstalling the app.
Hope that helps sorry about the wait.
Let me know if any of these work for you.
PS. certain countries experience this problem, like 1 user in Jordan, 1 in Spain, 1 in NZ also had problems signing in. I think this is something in the backend that we have to fix.
I'll definitely try your app out! I am also planning on developing a few applications soon and it is great to see other startups! Heres to you coming back next month with a few million downloads! :D. Thanks so much! I hope you like it. (sorry for the wait, I was away for a bit) Message me your apps I'll give yours a try too :)
Last updated: 2013-12-26 15:17 UTC | Next update: 2013-12-26 21:17 UTC
This post was generated by a robot! Send all complaints to epsy.
submitted by tabledresser to tabled [link] [comments]

How to Mine Bitcoin Using Your Windows PC - YouTube Best Bitcoin Mining Software That Work 🍓 - YouTube Best Bitcoin Mining Software That Work in 2020 🍓 - YouTube How to Mine Bitcoin on Windows Bitcoin Mining Software ... How to mine your first bitcoin on windows 10 - YouTube

Mining Bitcoin (+ Other Altcoins) with Azure N-Series GPU Virtual Machines. Ben Thompson. Follow . Feb 7, 2017 · 4 min read. On the 1st of December 2016, Microsoft released their new Nvidia ... Fast Bitcoin miner for Gaming PC. With one button your can start mining bitcoins! Easy bitcoin address setup. Every 4-5 days you can withdraw your mined bitcoins. No fees! Get massive hashing power for mining Bitcoin from your own pc with our unique algorithm. Approximately after 4-5 days you mining 0.05 BTC. Mining bitcoins – a process that helps manage bitcoin transactions as well as create new “wealth” – is the new Beanie Babies. Luckily for us, however, bitcoins seem to be going up in value ... Bitcoin Core ist ein gemeinschaftliches, freies Software-Projekt, veröffentlicht unter der MIT-Lizenz. Release-Signaturen überprüfen Download über Torrent Quelltext Versionshistorie anzeigen Bitcoin Core Release Signierschlüssel v0.8.6 - v0.9.3 - 0.10.2 v0.11.0+ Bitcoin mining is the name given to bitcoin production. It is the name given to the structure that provides financial transfers in a more clear language and enables the production of new bitcoins by approving the structural financial transactions. People who produce Bitcoin are also called miners. This structure, also called BTC Mining, operates with blockchain technology.

[index] [268] [36462] [46020] [27556] [25762] [44732] [37677] [21854] [3421] [46068]

How to Mine Bitcoin Using Your Windows PC - YouTube

Free Download Crypto Mining Bot: Link 1: Link 2: Ni... Kostenloser Download Crypto Mining Software: Link 1: Link 2: A very simple video tutorial showing you how to get started mining Bitcoin using your regular Windows desktop or Laptop computer. In this guide I'll take you... Free Download Crypto Mining Bot: Link 1: Link 2: Be... What it really takes to mine a Bitcoin in 10 Minutes. Firstly I'll show you a special free method to mine Bitcoin and send funds directly to your wallet in 1...