Welcome to the Bet Angel Professional Community

[hgodden]

Someone got into my account last weekend. I had excluded myself from everything apart from the sportsbook. Whoever it was bet my entire bank on a basketball game at 3 in the morning - fortunately the bet won at 1.1. They then withdrew the 'winnings' via a moneybookers account they'd added, though they left the rest of the bank untouched. Fortunately I noticed and betfair reversed the withdrawl (I got to keep the 'winnings' but if the bet had lost of course I wouldn't have been refunded) and they sorted me out a new account etc.

The troubling thing is that I really can't be sure if I was the source of the leak. It is possible but I haven't found any key logging stuff on my PC. I change my password relatively regularly. Since this happened a couple of other people who heard about it have told me similar things have happened to them. Having said that, the timing of the attempted withdrawl leads me to believe that they weren't too familiar with how the betfair withdrawl process works (without wanting to give too much info for anyone who might be reading.)

The only way I can think that betfair can combat this sort of thing completely is to allow an option whereby you can exclude yourself from the entire site until a time of your choice, so that you don't wake up to any nasty surprises. I'm doing this by phone now, but an option on the website would surely be easy to implement.

[to75ne]

im sorry to hear that this as happened to you as well. good that you have not lost any money though.

can i suggest that you find the time to re-formate, and reload windows, ba and anything else you need on the machine that you trade with. just in case there is something nasty on your machine that is allowing these thieving scumbags to rob you.

its seems that the speed these bastards can break security systems, exploit weak code etc, is quicker than the various anti virus manufacturers and microsoft can find them and cure them.

[hgodden]

Thanks yes I've already done that. Am now using a seperate PC soley for trading and any secure transactions

[Euler]

I'm starting to worry that there is an internal issue at Betfair, not necessarily fraud by an inidividual, though that's a possible, but maybe a loophole or error that is causing these incidents. I don't like the way Betfair wash their hands of these incidents and blame the customer and make them liable.

Betfair should definately beef up security.

[LeTiss 4pm]

I'm starting to worry that there is an internal issue at Betfair, not necessarily fraud by an inidividual, though that's a possible, but maybe a loophole or error that is causing these incidents.

I think that is almost certainly the case.

There seems to be a lack of urgency by their fraud team to investigate these matters, they're more interested in PC avoidance. I think if they tackled this subject correctly, they would find the source.

I'm convinced the source is an individual, a BF employee, or a former one. Somebody who knows how their systems work and how to exploit them

[Ethanol]

These stories happen all too often, and as I've said before, I believe this problem lies with Betfair's security, not the users'.

If NASA, Sony, and the CIA systems can be hacked, then do we really think it'd be that hard to believe that someone has found a flaw with the Betfair systems? The amount of bugs I've come across on their site is ridiculous. A security flaw would really not surprise me. Earlier in this thread I posted some simple precautions, one of which we know they do not implement (HTTPS encrypted web requests).

Betfair have acknowledged being hacked once before (albeit, their admittance was somewhat late). The chances of them being hacked again, or already having been? Very likely. To the hackers, these people are like a bank - and banks are always being targetted. The reason is obvious: these sites hold money.

Until these security issues are investigated, these problems will continue. In my opinion, they will never be investigated (and thus fixed), as long as Betfair continue to blame their customers for the issues.

[Boing]

If Betfair can let a £600m liability through the system I reckon the chance of a bet ended up on the wrong account is quite high. Did they confirm that somebody logged in?

[Ethanol]

Did they confirm that somebody logged in?

Yes, this is a good point. hgodden: Check your IP history ASAP. Ignore the 10.x.x.x values, as these are Betfair's internal network.

[hgodden]

I've been given a brand new account so I can't check that now, though from memory I think I remember seeing
a strange IP address. Tbh I wasnt taking notes as soon as I found there was a problem I rang betfair to suspend the account. Whoever it was changed the registered email to theirs, which would only alert me to it (if I'd checked my email) so like I said before I can't imagine they are someone that work within betfair or have any great knowledge of how the website works

[Alpha322]

I've been given a brand new account so I can't check that now, though from memory I think I remember seeing
a strange IP address. Tbh I wasnt taking notes as soon as I found there was a problem I rang betfair to suspend the account. Whoever it was changed the registered email to theirs, which would only alert me to it (if I'd checked my email) so like I said before I can't imagine they are someone that work within betfair or have any great knowledge of how the website works

The best souloution is if you want to trade with a £5000 bank work out your maximum liability say 20% pre race markets and leave say £1200 in Betfair and the other £3800 on a deposit card you use with BF and top it up every time you have a bad drawdown or withdraw to your card when in profit, at least your not keeping a big attractive balance for hackers