Originally posted by ShanghaiBeijing1
-
The email is the 2nd factor when it's a new device logging into 5D. In addition to entering a username and password (the first factor), 5Dimes will email a verification link the user has to login to their personal email to access and enter a one time verification code (the 2nd factor). Some places use a text message or requiring access to an authentication app, but 5Dimes uses an email sent to your personal email account. They're basically saying whoever got into his 5Dimes account also had access to his personal email account registered to his 5Dimes account whether it was a hacker, a "friend" who decided to mess around in the casino or the OP having buyers remorse after blowing their money in the casino and wanting a way to get their money back. The hacker explanation is the easiest way to avoid being accusatory to the OP while also telling him he's SOL getting anything from 5D.Comment -
Is 5Dimes still continuing with anti-security practices like requesting users to provide login passwords while reporting any issues to them?Comment -
No. They ask for a pin numberOriginally posted by MediterraneanComment -
Originally posted by HedgeHog
Agree. Don't change post titles. Terrible look for a supposed watchdog.Comment -
2FA should be a text to your phone, if someone has access to a password for one place with your password typically they have or can gain access for something like an emailComment -
What? And that't all that you can say here??? And SBR didn't even email me about the outcome. I am really disappointed with such service.
Please, give me the exact transcript with the 5D manager!
And this censorship, simply no words.. It seems to me that 5D is paying a lot to SBR to remain their rating.Comment -
It's important to correct claims of people if they are caught out like this.Originally posted by ramzess10
Bad for the industry not to..Comment -
Whaaat? And that comes from moderator. This forum is a total disgrace!Comment -
Disappointed w/ both sides here. OP, I don't think you've been treated fairly but SBR did not HAVE TO reach out to 5dimes. I have a 5dimes account that I opened just before sports were postponed so have a real interest in understanding what happened here so that I can better assess the risks associated with using 5dimes. I also just want to see you made whole or at least come to understand how you can better secure your accounts.
With that said, it's very disappointing how this has played out. SBR's response on 5dimes behalf comes off as if they are advocating for 5dimes. I get that SBR has to be neutral and that they need to maintain relationships with these books. But all this talk about "facts" and jumping to amend post and subject lines juwithout giving the OP the opportunity to provide feedback just confuses members and is also bad for the industry (not a dig @ Optional...i've come to respect you) and for the players SBR purports to advocate for in instances such as these.
I'll stay away from depositing at 5dimes. I don't believe they've done anything wrong here but it's not clear whether their security protocols are reasonable enough. Others members and future lurkers may not have the opportunity to understand this now that the title of this thread has been changed without reasonable context...Comment -
This type of hacking (or "transfer" as SBR now refers to them)happens all to often at the Betonline brand of books. Someone hacks into an account and then empties it out via casino or poker. This made me so concerned that I had BOL, Sportsbetting and Low Vig disable this option on my accounts. I don't use online casinos anyway, so it seemed the logical next step. Maybe I need 5D to disable my casino too, as this case is alarming. To their credit, BOL made innocent victims whole again eventually.Comment -
It is weird that if they are not actually stealing the funds somehow they would just play with someone elses money to lose it in the casino. Do they get their kicks out of purposely losing it ? If they won a big amount i would think they would be even more frustrated not being able to cash it out and steal it . Unless it is just an ex employee trying to just create havoc . Why waste your time in something that you cannot benefit from.Originally posted by HedgeHogComment -
Lots of people, which I think almost half of human beings take joy from screwing someone or watching someone suffer.Originally posted by captrobey
You can see that by going to youtube and just watch how many views, video like " Fail, accident, death " has.
Same here, this person gets satisfaction by knowing he caused someone nightmare and fak'd him in the ass.
lolComment -
For sure there are people like that hopefully not half like you say would like to say there is more good then bad in this world although i wonder sometimes. This just seems more personal doing this because like you said someone likes to watch someone suffer. But unless it is someone they know they will never actually see his reaction. I just wonder if it is more something like a pissed off employee. What better way to get back at them if they did this to a crapload of accounts.Originally posted by jedihyojuComment -
Originally posted by jedihyojuI'd never try to "guess" at what happened. But the facts are that his email was used to receive the verification code.Originally posted by captrobey
So a "pissed off employee" of 5dimes had this guy's email password too? LOL!
Remember, whoever did this had
access to the dudes email & password or they couldn't have gotten the verification code. So the "somebody" who did this
knows this guys email address & PW. Guy should answer How many people know his email password besides himself?
It was one of those people who did it.Comment -
I don't share my email password with anybody. I also checked all folders and didn't find this email asking for new device.
And I think that 5Dimes employees can access this code without accessing my email. This is what they did when I tried to login in this casino after discovering the THEFT - they gave me access code in chat, because I didn't receive email with code.
Also nothing said about the IP address and device used for this specific casino login.
I am definitely looking for more investigation, because now I have the impression that SBR just asked the 5D manager - hey, buddy, there was some case with casino, do u know anything? And got an answer - no, it is not possible to access without code sent to email and that's it.
Nothing, really NOTHING was checked or investigated.
If I am wrong, please provide me with more details & clarification! If not then I think it will be clear for everybody here that nothing was done.
Originally posted by JoeCool20I'd never try to "guess" at what happened. But the facts are that his email was used to receive the verification code.
So a "pissed off employee" of 5dimes had this guy's email password too? LOL! Remember, whoever did this had
access to the dudes email & password or they couldn't have gotten the verification code. So the "somebody" who did this
knows this guys email address & PW. Guy should answer How many people know his email password besides himself?
It was one of those people who did it.Comment -
This isn't a fact unless you have evidence of this. Maybe likely, but not a fact at this point.Originally posted by JoeCool20Comment -
There's a lot of blame to go around here. I agree with you that 5D has not provided any evidence that I'm aware of to counter your claim. Further, SBR compounded the problem by trying to sanitize your complaint with blatant censorship. Changing the title of this thread to a transfer issue was an obvious attempt to minimize your serious accusation. They should be ashamed.Originally posted by ramzess10
However, all this could have been avoided if you simply withdrew your funds in the past 2 years. Who leaves over $700 sit idle offshore that long? In November of last year, it appears you were all set to finally collect, but couldn't be bothered to verify your ID at that time. Another half year goes by and you discover your funds are gone, apparently getting hacked just a few weeks earlier. Certainly you share some, if not most, of the responsibility in this mess.Comment -
Did they say which slots were played and in what denomination? Also, the slot play should’ve generated comp points, did they cash in the comp points and lose those as well or can you at least cash those in? It’s under the cashier section. I was wondering what happened to this thread because I couldn’t find it, now I know why. Remember SBR is obviously not an independent third party but they are the best shot you got. Welcome to the Wild West of unregulated sportsbooks.Comment -
Something else that got me thinking more about this case. Why would a hacker choose the grand casino to blow the balance in? Much easier to drain a balance in the bonus casino or jackpot casino, no additional account numbers or passwords required after login and plenty of video slots. On the other hand, to transfer a balance to the grand casino is a HUGE pain in the ass. Plus, on my account the password I use to log in to 5dimes.eu and the grand casino are two totally different passwords. The only reason I can think of that someone would use the grand casino would be because Real Time Gaming (Grand Casino) at 5Dimes has a download version as well as the web based version. I’m willing to bet dollars to donuts the download version does not have 2FA or DBA as 5Dimes calls it. I’ve played at plenty of RTG download clients and none of them had it. My question would be, were the funds lost in the download version or the mobile version of the grand casino. It makes a huge difference. What is 5Dimes stance on what happened, are they saying OP lost the money or did a hacker lose the money?Comment -
I guess when it comes right down to it, every theft is a mere "transfer" of funds/goods.
But somehow "Bernie Madoff Transfers Billions of Dollars" doesn't quite have the same ring to it...Comment -
One thing that is clear is 5Dimes needs legitimate two factor authentication, not this homegrown device based authentication app. If support can actually access the codes from DBA there are issues. Also if I want 2FA with each and every login I should be able to secure my account in this way, whether it’s Authy, Google Authenticator or a sms text.Comment -
So 5 dimes answer to SBR about sending a verification code to your email address was a lie then?Originally posted by ramzess10
Well, OK. I don't know how you can prove that they didn't, and they are lying about it, but good luck.Comment -
Originally posted by ramzess10It seems you have so little honor you think everyone else must be a scammer.Originally posted by ramzess10
In my experience those that jump so fast to say others are scammers with no evidence, usually do that as they know they themselves would act like a scammer in the reverse position. So you can't help but suspect/accuse others..Comment -
That is exactly what YOU are doing now. YOU are accusing me to be a scammer now.
Would be interesting what would be your reaction if you personally were scammed, wouldn't you think about all the possibilities?
Then please provide me the results of the investigation if you are the man here. If you can't do it then it is proof that you (or your colleagues at SBR) did nothing.
Originally posted by OptionalComment -
Careful there sonOriginally posted by ramzess10
I wouldn't accuse Optional, he is here just trying to help us out and be on our side against sportsbooks.
Come on manComment -
I tend to agree with others that the lack of transparency in your case is frustrating. But you're not going to get anywhere with this tone. I don't know if the principles have anything more to offer, but it definitely won't happen if you start throwing around baseless accusations.Originally posted by ramzess10Comment -
Originally posted by ramzess10
Originally Posted by ramzess10
I don't share my email password with anybody. I also checked all folders and didn't find this email asking for new device.
OK if you don't have any "received" emails about verification codes, then ask them to provide the "sent" email
where they sent the code to your email. If you prove that you asked, and they don't provide it, then we have a case.
If not then cut out the B.S.Comment -
Thanks for this idea - I asked support and they say an email was sent 2 days before the case happened; however, they are not able to prove that. Also they can't tell if any software was used. Don't know what I can do with this info now..
Here is the chat transcript:
Hi, I need to know details about my login in April 14 Tanya 05:16:47 pm What do you mean with the details about the login? 05:17:04 pm Can you please send me the new device confirmation email if it was sent? Tanya 05:18:00 pm Those emails are submitted automatically by the system when there's additional verification required 05:18:33 pm Ok, and can you check if such email was sent to me at this exact date? Tanya 05:18:41 pm Not on april 14th There was one on April 12 and another one on the 30th None on the 14th 05:21:10 pm Ok, is it possible to see my login history with IP & devices used from April 12-April15? Tanya 05:21:26 pm Oh, we don't have that much information 05:21:49 pm What info do you have? Tanya 05:22:38 pm I don't see any changes on the IP on those dates, the IP used on the 12 was 159.148.186.185 and that one is the same one that was being used until a new one was used on April 30th, which is the next time we asked for device verification 05:26:23 pm Ok, can you please send me the login history of April? Tanya 05:27:01 pm we don't have that specifically. like a login hitory report History* 05:28:32 pm And this confirmation email sent on April 12, can you resend it? Tanya 05:28:40 pm We don't have access to that to resend it It's like any other DBA email that we send you 05:29:33 pm Yes but I need proof if it was really sent.. Tanya 05:29:42 pm I am telling youthat it was. 05:29:53 pm That is not a proof Tanya 05:30:17 pm I understand, however I don't have another way to prove it to you Check your old emails or deleted ones
Originally posted by JoeCool20Originally Posted by ramzess10I don't share my email password with anybody. I also checked all folders and didn't find this email asking for new device.
OK if you don't have any "received" emails about verification codes, then ask them to provide the "sent" email
where they sent the code to your email. If you prove that you asked, and they don't provide it, then we have a case.
If not then cut out the B.S.Comment -
Thanks for providing the transcript of your chat with 5dimes CS.Originally posted by ramzess10
Your initial post states that the transfer occurred on April 12th so i'm a bit confused with what you've just stated in your last post.
At this point, i'm pretty convinced that this is as far as you are going to get with this issue.
Lastly, a bit of advice: When you are experiencing an issue such as this - i.e. you have little to no leverage and rely on others for resolution - try to be a bit more tactful in your approach.Comment -
5Dimes doesn't seem to be making much of an effort to prove anything here. Yes, it's true that their system automatically sends these emails. But some system administrator must have access to those emails if they really wanted to investigate instead of assuming everything worked as expected.Comment -
Tanya 05:22:38 pm I don't see any changes on the IP on those dates, the IP used on the 12 was 159.148.186.185 and that one is the same one that was being used until a new one was used on April 30th, which is the next time we asked for device verification
Thank you. Is the IP address they stated on here YOUR I.P. address or not?
If not then it is the IP address of the person who logged in and gambled the money right?
Can that be tracked to a country or location?Comment -
No, that is not my IP. However, it is from my home country, Latvia. That's why I asked them if any VPN or other software was used to access.
I also found it in some database for hack attacks:
Originally posted by JoeCool20Comment -
Compare this first statement of your first post to your last post. In reality, 5D did not steal your money, some hacker stole your funds and pissed it away in the casino. This should have been your position from the start.Originally posted by ramzess10Comment -
How could I know what happened from the start, come on. I still don't know, hacker is best guess. What would be your reaction in such situation when you see your funds stolen? If you really are so scrupulous then the censored title of this thread should be changed to "5D account hacked".
Anyway, I think 5D should have shown more courtesy regarding this case, so I don't feel any sorry from this statement. And it's beyond my understanding how a sportsbook which used to ask clients passwords in live chats can be top rated here and even above Pinnacle.
Originally posted by HedgeHogComment -
Originally posted by ramzess10
So you are saying that 5 dimes stating to you and SBR that they emailed a "a secure link and security code" to your registered email address is a lie and you never got one sent to your email? And instead you are saying that a hacker from latvia used this IP address and got a verification/security code through live chat instead of email, then gambled your money away?Originally posted by ramzess10
Well since SBR believes 5 dimes, and even posted 5 dimes response on here, (which you say is a lie) then I'd say there is no use posting about it on here anymore because SBR isn't going to help you any further! Do it yourself and tell 5 dimes yourself that they lied to you and to SBR when they said they sent a secure link and security code to your email. And ask then to please provide proof of the sent email, and see if they prove that they sent it to your email address. I am interested to see whether 5 dimes proves that they sent it, or what reason they give if they say they can't give proof of the sent email. Let me know. But unfortunately If 5 dimes is lying to you & SBR and they won't prove that they emailed the security code to your registered email address, & they won't return the money either, then you're screwed.Comment
