Satoshi Nakamoto's P2PFoundation Accounts Posts for the First Time in Over 4 Years

Francisco Memoria

The P2PFoundation account of Satoshi Nakamoto, the pseudonymous creator of bitcoin, the flagship cryptocurrency, has recently posted for the first time in over four years, after being hacked and having its details supposedly sold on the dark web.

The account’s most recent post says ”nour” and went live shortly after it added Wagner Tamanaha as a friend on the platform. Tamanaha, according to available information, is a marketing expert based in São Paulo, Brazil.

Satoshi Nakamoto's account on P2PFounation

Back in 2016, Tamanaha claimed to have understood “almost nothing” of bitcoin and blockchain technology when he first heard about it in 2011, but that he then started participating in the network and ended up forgetting about it.

The account’s connection to the Brazilian bitcoiner is, at press time, unclear. As for the word, “nour,” some have pointed out on social media that it means “light” and is used as a unisex name in Arabic.

Shortly after Satoshi Nakamoto’s P2PFoundation account made the post, self-proclaimed Satoshi Nakamoto Craig Wright, a supporter of Bitcoin Cash Satoshi’s Vision (BSV) started posting in Arabic on social media. The sentence below translates to “the light of the world in trade.”

Notably earlier this month, a fraudulent tweet posted in the name of Nakamoto himself claimed there was an “issue with SegWit” that, if left unfixed, would mean he had failed. As proof, it signed a message associated with one of the first blocks on the bitcoin blockchain.The account that posted the tweet has since been suspended.

Bitcoin developer Jimmy Song later on proved the signature was fake, by reproducing it with an example of his own.

Satoshi’s Hacked Account

It’s well-known in the cryptocurrency community that Satoshi Nakamoto’s P2PFoundatin account was hacked in late 2014, as it was revealed the email account associated with it, [email protected], started sending out uncharacteristic emails.

In a Bitcointalk thread Theymos, a prominent bitcoin community member and an administrator of, revealed he received an email saying “Michael, send me some coins before I hitman you,” which made it clear the account had been compromised.

At the time, Motherboard reported it spoke with the person behind the hack, and revealed the person managed to get in touch with Nakamoto himself. The pseudonymous bitcoin creator’s personal information and passwords were, at the time, supposedly leaked.

A P2PFoundation post made through Satoshi Nakamoto’s account at the time stated:

Dear Satoshi. Your dox, passwords and IP addresses are being sold on the darknet. Apparently you didn't configure Tor properly and your IP leaked when you used your email account sometime in 2010. You are not safe. You need to get out of where you are as soon as possible before these people harm you. Thank you for inventing Bitcoin.

At press time, links redirecting to the post seem to point us to the beginning of the thread, indicating the post itself has been deleted. An online search for the term yields no results from Satoshi’s account.

The last time the world has heard from Satoshi Nakamoto himself was earlier that year, when he posted on the account to claim he wasn’t Dorian Nakamoto, a man various mainstream news outlets claimed was behind the pseudonym. Earlier, Satoshi Nakamoto was active on the Bitcointalk forum, but mysteriously disappeared in late 2010.

Cryptoglobe has reached out to Tamanaha. This piece will be updated once we hear back.

Hacked Exchange Cryptopia Enables Trading in 40 Different Currency Pairs

New Zealand-based digital asset exchange, Cryptopia has reportedly resumed trading on its exchange as it is now allowing 40 different trading pairs. This, after Cryptopia recently experienced from several different security breaches.

Support For Bitcoin, Litecoin, Dogecoin Pairs Added

Cryptopia’s management announced (via Twitter on March 18th) that it is planning to expand its list of coins which will again be supported on its trading platform. As noted on Cryptopia’s official support website, the exchange has enabled several different trading pairs (as of March 19th, 2019) with major cryptocurrencies. These include bitcoin (BTC), litecoin (LTC), and dogecoin (DOGE).

In response to Cryptopia’s announcement, Twitter user @dgb-chilling, a supporter of DigiByte (DGB), a cryptocurrency that uses five different mining algorithms, said that he had emailed the exchange’s support team to inform them regarding the coin’s latest update (version 6.17.2). He added that “an upgrade was recommended but not mandatory.”

Meanwhile, Chuck Norris (@CryptoTweet6) remarked: 

Now this is good news! Let’s hope the rest of the coins will be released for trading swiftly.

Other users also considered it “good news” that the compromised cryptoasset exchange was gradually resuming its operations. However, one social media user asked when Cryptopia would start enabling deposits while another inquired about why his ARK coins were still not recoverable from the trading platform. He claimed that he had deposited 1,000 ARK, currently valued at around $628, (a popular proof-of-stake based coin) on Cryptopia. The user also complained that his coins were missing “missing because [the exchange] did not update the ARK wallet."

Tens Of Millions Of Dollars Stolen In Hack

On February 27th, 2019, Cryptopia’s management announced that it was “assessing the impact incurred as a result of the hack” which led to the theft of tens of millions of dollars in cryptocurrency. Last month, Cryptopia’s support team had also estimated that the total loss incurred due to the security breaches was of around 10% of its total holdings (in the worst-case scenario).

Notably, the exchange’s official Twitter account had been silent for several weeks (since Feburary 14th). However, it released several announcements, starting in late February, in which it revealed that its staff members were working on securing each customer’s account individually. Cryptopia’s management also noted that it was taking the appropriate measures to ensure that its trading platform is secure when it is officially back online.