Amid Domain Name Hijacking, CoinFire's Alleged SEC Source Is Revealed

Repeated attacks on the Bitcoin news site CoinFire today culminated with the theft of the domain and twitter account @coinfireblog. If the individual or group who took over the @coinfireblog twitter account is to be believed, the attackers have also gained access to CoinFire's email inbox and published the alleged name of their SEC source who leaked documents confirming that scammer Josh Garza and his string of shell companies are currently being investigated by the SEC.

As CoinFire readers began to question why the site now displayed a parked domain page, the @coinfireblog tweeted out that:

Yes, the rumors are true. Our domain was stolen. Our registrar says we likely can't get it back.

It's not known at this time if that tweet came from CoinFire staff or the attacker but it would appear that both were actively using the account prior to its quick suspension. Other tweets included:

Did you know our SEC articles were fake? We made them up.

Take over the domain…. take over the twitter. Fuck you coin fire.


From email: "We need to prepare for a major lawsuit from @gawceo."

With that last tweet hinting that the attackers had now gained access to CoinFire's emails, they tweeted out the alleged name of the source at the SEC:

The SEC source is named Michele Layne!

Michele Wein Layne, who joined the SEC in 1995, is currently the Regional Director of the SEC's Los Angeles office. If Layne is confirmed to have been the source behind CoinFire's damning reports on Garza and GAW Miners, it would suggest CoinFire's use of GPG and security was limited or absent. Layne's LA office has been contacted for comment.

This is not the first nor second time CoinFire has come under attack. In November of 2014, the site was defaced by an attacker who accused CoinFire of publishing lies. That attack was followed up a month later when the site was defaced yet again and threats to ruin the site operator's life were made. In addition to these defacements, CoinFire has come under repeated ddos attacks and with its domain name now stolen, the site's unknown future is sure to please numerous Paycoin bagholders.. at least for a short time.

Update – It appears @coinfireblog has been restored and further information is soon to come.

Update 2 – Mike from CoinFire has posted a response to today's drama on /r/bitcoin in which he denies that his source has been identified amongst other things.

One thought on “Amid Domain Name Hijacking, CoinFire's Alleged SEC Source Is Revealed

  1. Der. It should be trivial to get the domain back through UDRP. What a clown show.

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>