What should we do with stolen bitcoins?

Thousands of bitcoins have been stolen from users since the virtual currency started, and yet we can see all of these thefts happen, in real time, on the block chain. We know which addresses the stolen coins are sent to, and which ones they are stolen from. We can track the life of a bitcoin through the network.
Why, then, can’t we simply take those stolen coins out of commission?
A UK-based digital forensic services firm, Systech, has begun offering a recovery service for lost and stolen bitcoins. The service is twofold: firstly, it will use its traditional forensic data recovery techniques to salvage coins from damaged hard drives. Secondly, it has also announced a tracing service for stolen bitcoins, which it hopes will enable victims to find out who tries to exchange stolen coins for fiat currency.
Tracing stolen coins should, theoretically, be relatively easy on the bitcoin network. It is paradoxically one of the most private and transparent decentralized networks in existence.
On the one hand, you can register a bitcoin address instantly, at no cost, that has no links to your real-world identity. There’s the privacy.
On the other hand, the transparency of the block chain means that everyone can see every activity conducted by any bitcoin address, including the amount of bitcoins that it holds, where they came from, and where they go when it sends them on somewhere else.
This has led to some controversial actions on the part of bitcoin exchanges in the past. In 2012, over 43,000 bitcoins were stolen from Zhou Tong’s Bitcoinica leveraged trading platform, which subsequently shut down.
Mt Gox then began freezing accounts containing bitcoins that could be traced to the theft, and demanding that account holders submit identification. This was before KYC rules demanded that account holders register proof of identity.

“What we do is carry out an analysis and parse the block chain for all transactions. We can then follow a transaction even when the coins are split up into multiple transactions and wallets, or aggregated into one wallet,” said Systech spokesperson Simon Lang.

Because exchanges are now subject to KYC and AML rules, it should be easier to obtain the identities of people trying to exchange bitcoins linked to a theft, Lang added.
There are challenges, though. The taint of a coin can help investigators to track the relationship between two addresses, making it harder for thieves to hide their stolen coins simply by sending them to lots of different addresses. However, the more an output is used in subsequent transactions, the more difficult it is to prove that it is stolen, say experts.
“The taint remains definitive while subsequent transactions disperse the funds, but it gets diluted if aggregated with coins from other sources,” said Tamás Blummer, founder and CEO of BitsOfProof, a company that sells commercial-grade bitcoin servers.
Jeff Garzik, a core developer of the Bitcoin protocol, said the ability to prove that a coin is stolen falls drastically after the first subsequent transaction.

“At its most basic level, the Bitcoin protocol destroys each coin when it is spent, and creates brand new coins for the recipient. Sending 1.0 BTC to me might involve destroying coin #1111 (0.5 BTC) and coin #1112 (0.5 BTC), and creating coin #6789 (1.0 BTC).”

So, a ‘coin’ may be made of several inputs, some of which might be stolen, and some of which might not. “Thus, beyond a single transaction, you cannot say that a coin is 100% stolen.”
Blummer points out another problem: a smart thief will try to cover their tracks using a laundry transaction, which obfuscates the inputs and outputs entirely. One way of doing this is via a mixing service.
These services receive bitcoins, and mix them with bitcoins from many other users, before resending the same amount back to the sender from the mixed pool of inputs. This obfuscates the inputs and outputs stemming from a theft, making it far more difficult to trace them.
It isn’t always foolproof, however, said Lang:

“The liquidity of these sites is still so low that it is sometimes still possible to follow out.”

The question is, what should be done with stolen transactions that can be followed? You might think it’s a no-brainer not just to identify stolen outputs, but also to stop them being spent altogether. In fact, we could go further, and simply build something into the bitcoin protocol that stops transactions being mined if they are based on outputs from stolen coins. After all, the transparency is built right into the system.
Not so fast, says Garzik. If the technological challenges above don’t make it difficult enough, the legal and economic considerations should dissuade us.
‘Victims’ may claim a theft, even if they have stolen their own bitcoins. Even if a victim can be proven honest, police reports from jurisdictions around the world must then be reviewed and authenticated and matched to bitcoin transactions, to try and find a perpetrator of a theft. Then, a community consensus would be needed to upgrade a transaction blacklist. And if the person running the blacklist got it wrong, they could be legally liable.
Garzik asserts:

“It is not the place of engineers to sort through police reports, and pronounce judgements on each transaction as good or evil.”

Any such pronouncements will be subjective, he says. “Businesses and exchanges receiving bitcoins are in the best position to know their customer, and make some sort of judgement about that.”
At least some payment processors, too, are wary of building mechanisms into the Bitcoin protocol to stop stolen coins from being spent. BitPay, Garzik’s employer and a processor of bitcoin payments, says that such a move would alter the certainty of transactions. Far better to build some sort of transaction reversibility into the layers atop the protocol rather than the protocol itself, the firm says.
The final concept is perhaps the most important: fungability – the idea that one unit of a currency should always be equivalent to another unit of the same currency.
“It is important that the value of one bitcoin is the same as the value of another bitcoin,” Garzik concludes, arguing that failing to preserve the fungability of coins would change bitcoin’s underlying economic principles. “Otherwise it becomes impossible for software and average users to figure out which bitcoins they should hold, and which they should avoid.”
So, yes, we can follow stolen coins – or parts of them, in subsequent transactions – through the network. But officially besmirching those coins based on fraudulent transactions in the chain is a bad idea, say experts.
While exchanges and merchants may be able to make some qualitative judgements about the validity of a transaction with a relation to stolen outputs, trying to codify this into the protocol itself is fraught with difficulties. For the time being at least, the Bitcoin protocol will treat all coins as equal – stolen or not.

Bitcoin, Used to Purchase Illegal Things, Has Been Illegally Stolen

Bitcoin, the world’s first decentralized, open source electronic currency, loved by nerds and ne’er-do-wells alike for its novel (and convenient) way of facilitating the purchasing of goods online has taken the plunge from virtual reality to, er, reality reality. Which is to say: what’s a currency if it isn’t getting robbed off someone somewhere?
The first (and largest) ever bitcoin theft allegedly took place on Sunday, according to a bitcoin.org forum post by a user named “allinvain”:

I feel like killing myself now. This get me so f’ing pissed off. If only the wallet file was encrypted on the HD. I do feel like this is my fault somehow for now moving that money to a separate non windows computer. I backed up my wallet.dat file religiously and encrypted it but that does not do me much good when someone or some trojan or something has direct access to my computer somehow.


The transaction sent belongs rightfully to this address: 1J18yk7D353z3gRVcdbS7PV5Q8h5w6oWWG


Block explorer is down so I cannot even see where the funds went.

Allinvain claims that he lost 25,000 BTC, which at the current exchange rate (in the last week it’s been fluctuating between $20 and $30 USD per bitcoin), is over $600,000.

Pictured above: Amazon.com circa 1998.

According to his profile on the forum, allinvain has been a bitcoin user in some capacity since 2010. Which would probably explain the abnormally large amount of coins he was sitting on.
There are two interesting things about the way bitcoins are traded, though. Things that don’t necessarily help allinvain identify the culprit, but do prove his bitcoins were—if not stolen— removed from his computer. Bitcoins are mostly traded anonymously, but they’re also traded publicly. As members of the bitcoin.org’s forum became involved in tracking down allinvain’s coins, they could watch on Block Explorer as the funds transferred from one anonymous account to another.
The anonymous nature of the bitcoin market makes it very hard to really get a good handle on what’s going on though, so not only is it hard to figure out who robs you, it’s even harder to prove that someone has even been robbed. By the fifth page of allinvain’s forum post many users were calling fraud.
“Yeah, I know he has over 800 posts. But “Allinvain”? The whole story reads like a very hip joke, or a deep cover sleeper troll. “Allinvain” -— get it," Bitcoin.org forum member “indemnified” posted.
Suspicion on the bitcoin market is always fairly high.
Another user, under the name spyjai posted My MTGOX account is compromised on Reddit this morning. And luckily, thanks to the wonders of Reddit, a higher-up at mtGOX—the major bitcoin exchange who actively posts in /r/bitcoin, seems to be tracking down the funds for spyjai.

Oh God, not Hackers, anything but Hackers.

The security risks for bitcoins aren’t tremendous, but like everything on your computer, they’re easily stolen if a hacker can get access to your hard drive. There’s a chance that news of the theft will drop the price of bitcoins, which recently recovered from a drop last weekend. One Daily Tech writer called it a “Digital Black Friday,” which is kind of an insane given the actual market for these things. But apparently other sites agree with this hyperbolic fundamental misunderstanding too. The drop was far more likely the decline linked to a weekend outage of the bitcoin-based black market, The Silkroad.
Either that, or the community over at Something Awful succeeded in trolling the market by creating a doubt storm on forums where they self-congratulate and deny responsibility.
The lesson here: Want a stable economy? Don’t want to deal with uncertainty, possible theft, or a market that ebbs and flows based on the whimsy of anonymous trolls? Then maybe hold off on doing large-scale bitcoin trading just yet. Plus, if you’re not buying drugs, weapons, soliciting teenagers for Skype sex. or paying Polish teenagers to knock websites out for you, there’s very little reason you’d need that much to begin with.