Originally Posted by
QuantumLeap
Agreed. If Nitrogen were running software that allowed their staff to view passwords they would open themselves up to liability.
Here's my take on the situation-
From Nitrogen's investigation:
-There were no failed login attempts before the transfer was made so someone would have to know both my username and password.
-Nitrogen provided the logs of my account to SBR with my permission and it was shown that the IP address of the user logging in matched the IP address of previous logins to my account where bets were made.
From my investigation:
-When I made the bets from the IP address that matched the IP address of the bitcoin transfer, I was connected to Nitrogen via a VPN.
-The IP address matched the geographical location I was connected to via VPN.
-The VPN software uses 256-bit encryption so no detection of username/password would be possible through that route.
-I used only 1 device to connect to Nitrogen using VPN, my main computer at home.
Therefore, the easiest explanation would be to surmise that someone used my computer remotely when I was not logged into it and had a keylogger installed to detect my username and password.
However, here are the steps I performed to disprove that:
-I ran a deep rootkit scan to detect any keyloggers using Spybot Search & Destroy and none was found.
-I ran Malwarebytes to detect any malware that may have granted access to my computer and none was found.
-I checked my Windows logs for any activity during the time of the transfer and there was no activity.
Here's the kicker, I had changed the geographic location I connected to using my VPN. If someone were to remotely control my computer they would not only know they had to run VPN to get the IP address to match but they would have to know which geographical location I connected to at the time. Simply starting the VPN software would give them a different geographic location. Not only that, even if I connect to one geographic location I get different IP addresses when I log in.
I've been working with computers for over 20 years and this still baffles me.