Pages:
Author

Topic: [ANN] ChipMixer.com - Bitcoin mixer / Bitcoin tumbler - mixing reinvented - page 27. (Read 92891 times)

sr. member
Activity: 456
Merit: 956
https://bitcointalk.org/index.php?topic=1935098
At least one of .ru email does not accept protonmail emails.
This situation persists. If you have not received reply from us - please contact us with different email provider.
Please do not post multiple times after announcement has been made.

Status
.com is disabled and will be disabled for now.
.onion is working and not affected.
If you have active session and you have used .com - do not wait till it get enabled. Learn how to use Tor Browser and restore session over .onion.
Onion address is http://chipmixorflykuxu56uxy7gf5o6ggig7xru7dnihc4fm4cxqsc63e6id.onion/
Now almost every link you can find with google is scam.
legendary
Activity: 2366
Merit: 1272
Heisenberg
it has been over 24 hour now and I still receive no response from your support. can you please check?

i lost over 5 BTC on this and no one even say 1 word to me still...
Just hang in there. I know 5 BTC is such a huge amount to cause panic and worry, but as of now there's nothing to do except wait for a response from the chipmixer team. If anything wrong went on and the funds were stolen. I still believe they have the capacity to refund the Bitcoins to you.
newbie
Activity: 6
Merit: 0
Important announcement

Chipmixer.com is no longer under our control. Do not use it

What is happening?
Chipmixer com domain is pointing to our IP.
Attacker server is responding to requests made to this IP.
Attacker used it to create new SSL certificate https://crt.sh/?id=6604573658
Attacker is using it to serve altered website that changes deposit addresses and also displays invalid onion address.
Chipmixer com has been disabled till fix is found.

This has happened before with different service provider https://bitcointalksearch.org/topic/m.58026067

Tor / onion service has not been affected.
Any data sent to and received from .com on April 24 may be compromised. Sweep your chips and do not reuse session tokens.
Contact us at [email protected] if you have been affected.



it has been over 24 hour now and I still receive no response from your support. can you please check?

i lost over 5 BTC on this and no one even say 1 word to me still...

EDIT: the chipmixer admin has contact me now and said he will resolve. he could not respond to my email because my mail server was block.
newbie
Activity: 6
Merit: 0
This is a very good site for users that wants more privacy in their transaction...Best of luck

chipmixer has been great site for me, but do not use it right now. read a few post up, there was hack yesterday and user lost money including me.
newbie
Activity: 6
Merit: 0
have other user who lost fund received reply yet?

CM admin post on this thread, but i still receive no contact on my request for my lost funds

I'm sure he's more than busy working on the sec. the last hours. I'd say you can wait a few more hours. I mean, it's not like it's been three days.
ChipMixer will respond, of course. No worry

(I know it's easy to say 'no worry' when it's about your own money but he'll get back to you as soon as possible for sure)

i am trying to be patient, but i lose very large sum of money now, so i just want some reply... or at least know if any other victim got reply.
copper member
Activity: 2940
Merit: 4101
Top Crypto Casino
have other user who lost fund received reply yet?

CM admin post on this thread, but i still receive no contact on my request for my lost funds

I'm sure he's more than busy working on the sec. the last hours. I'd say you can wait a few more hours. I mean, it's not like it's been three days.
ChipMixer will respond, of course. No worry

(I know it's easy to say 'no worry' when it's about your own money but he'll get back to you as soon as possible for sure)
newbie
Activity: 6
Merit: 0
have other user who lost fund received reply yet?

CM admin post on this thread, but i still receive no contact on my request for my lost funds
newbie
Activity: 6
Merit: 0
Chipmixer.com is no longer under our control. Do not use it

What is happening?
Chipmixer com domain is pointing to our IP.
Attacker server is responding to requests made to this IP.
Attacker used it to create new SSL certificate https://crt.sh/?id=6604573658
Attacker is using it to serve altered website that changes deposit addresses and also displays invalid onion address.
Chipmixer com has been disabled till fix is found.

This has happened before with different service provider https://bitcointalksearch.org/topic/m.58026067

Tor / onion service has not been affected.
Contact us at [email protected] if you have been affected.



can you check email? i sent but still no reply, also sent pm.

sr. member
Activity: 456
Merit: 956
https://bitcointalk.org/index.php?topic=1935098
Important announcement

Chipmixer.com is no longer under our control. Do not use it

What is happening?
Chipmixer com domain is pointing to our IP.
Attacker server is responding to requests made to this IP.
Attacker used it to create new SSL certificate https://crt.sh/?id=6604573658
Attacker is using it to serve altered website that changes deposit addresses and also displays invalid onion address.
Chipmixer com has been disabled till fix is found.

This has happened before with different service provider https://bitcointalksearch.org/topic/m.58026067

Tor / onion service has not been affected.
Any data sent to and received from .com on April 24 may be compromised. Sweep your chips and do not reuse session tokens.
Contact us at [email protected] if you have been affected.

newbie
Activity: 6
Merit: 0
Hi! Someone withdrew my chip with 22,000 SATS fee!

How is this even possible? I had problems with my session and by the time I was able to get my private key, my funds were sent out....

This is an extremely high transaction fee, so what could have gone wrong?

I made all the http requests on the same IP address which belongs to a reputable VPN Service.

Expecting a solution... Thanks


EDIT: for those wondering; yes I used chipmixer.com, the official URL, and I can share proof of my deposits to a team member

i had issue today also on chipmixer. i sent transaction for mixing, but still shows 0 chips even after 3 confirm.

seems different from your issue, but also i have use chipmixer for 4+ years now and never had problem like this. I email him already so I hope he can resolve it.
newbie
Activity: 2
Merit: 0
How is this even possible? I had problems with my session and by the time I was able to get my private key, my funds were sent out....

Could you elaborate on the problems you faced with the session? Did anything feel like an adversary was in control of the machine or browser you were using?

Have you emailed your vpn provider to check there was no attack on their end?

I reloaded the pages few times, awaiting my deposit to hit the ChipMixer's system. When it finally went through, the page loaded without a stylesheet (no CSS). Then I refreshed the page again and took several seconds to load this time. Once the page loaded, my saved session token was not found, and my session shown a new deposit address, so I thought the logs of my transaction got purged from this website's database.

I kept refreshing and I was getting a new deposit address for the session I have previously saved.... until... I finally got the same deposit address I sent funds to minutes back ago.

So I proceeded to the step2 - mix --> and I had no options to split my chips, all of the chips were in a private key, so I said 'Well, let's just withdraw if I cannot split', so I went straightforward to the third step, and got my signed receipt. I copied and pasted this address with my funds on the blockchain explorer and.... funds were withdrawn like 5 minutes ago and obviously not by me.

Let me know if this is a deep enough explanation. I have saved down the receipt, the deposit address I have used and everything including sessions to prove this is not an "invented" story just to steal funds or any kind of misleading activity.

Thanks.
copper member
Activity: 2856
Merit: 3071
https://bit.ly/387FXHi lightning theory
How is this even possible? I had problems with my session and by the time I was able to get my private key, my funds were sent out....

Could you elaborate on the problems you faced with the session? Did anything feel like an adversary was in control of the machine or browser you were using?

Have you emailed your vpn provider to check there was no attack on their end?
newbie
Activity: 2
Merit: 0
Hi! Someone withdrew my chip with 22,000 SATS fee!

How is this even possible? I had problems with my session and by the time I was able to get my private key, my funds were sent out....

This is an extremely high transaction fee, so what could have gone wrong?

I made all the http requests on the same IP address which belongs to a reputable VPN Service.

Expecting a solution... Thanks


EDIT: for those wondering; yes I used chipmixer.com, the official URL, and I can share proof of my deposits to a team member
legendary
Activity: 3472
Merit: 1724
Funny how he also reported other phishing sites: https://lumendatabase.org/notices/25372739

Now on to the obvious question right now, can we simple users do something about this?
Reporting to google for fake misleading ads is one thing and I did that a lot of times, but here is something that I guess is a bit more complicated, so stick to reporting the xyz domain as a phishing website via the safebrowsing report tool or is there something else we can do about it?

Reporting phishing sites, DMCA reports and/or counter notices. I think it's first and foremost in Chipmixer's interest to hire someone to do it for them. Maybe one of those 'reputation management' companies could be of use.
legendary
Activity: 2212
Merit: 7064
For protection against this, I had an idea of using some filter for uBlock extension that would detect and update all fake chipmixer domains, and I even asked guys from chipmixer about this.
They said it would not had much effect because people who already know about this scams would probably be the only people who would use this filter.
Only way that something like this could work is if those scam website domains would be a part of some bigger uBlock filter lists:
https://github.com/gorhill/uBlock/wiki/Filter-lists-from-around-the-web
https://filterlists.com/

Google are your enemy. I've said this before many times. It boggles my mind people still trust a company which has proven consistently and repeatedly to be corrupt to the core.
It's not just google, because if you try using all other search providers you would get similar results, and they often use mixed
search results from google.
legendary
Activity: 2268
Merit: 18771
Google are your enemy. I've said this before many times. It boggles my mind people still trust a company which has proven consistently and repeatedly to be corrupt to the core.

Google don't care. You think a multi-billion dollar company like Google can't hire a couple of people on minimum wage to check the authenticity of ads which are submitted? Of course they could, they just don't care. Google are not your friend. They don't care about you, your data, your coins, your privacy, your security, your computer, your phone, your life, anything. They care about money. If a scammer is willing to pay money to advertise their scam, Google are quite happy to accept. If a scammer is willing to pay money to have their malware infected app listed on the Play Store, Google are quite happy to accept. As long as they make a profit, they don't care in the slightest if people lose their life savings to a scam ad they are showing.

This has been going on for years. Google have proven time and time again they are quite happy for users to have their lives ruined as long as they keep making those sweet, sweet profits. Still using Google products or trusting Google with anything is pretty much Stockholm Syndrome as this point.

People need to stop using Google products. I've long been anti-Google since it invades every inch of your privacy, tracks literally everything you do, builds a massive profile on you, and sells that data to third parties, advertisers, governments, etc. However, as time goes on, it becomes more and more clear that using Google isn't just a massive privacy risk, but a massive security risk too. They put ads to scams and phishing sites at the top of their search results, they do zero due diligence in to what shows up on the Play Store and frequently host and promote scam apps like this one, they leak data, their cloud storage is hacked repeatedly, they store passwords in plain text, the list goes on. If you care at all about either your privacy or your security, stop using all Google products.

Google doesn't care about you, like, at all. The sooner people realize that the better. Every Google product that exists - search engine, email, maps, Chrome, etc. - exists to harvest your data and make money from it. Why do you think they offer you all these services for free? Your data is the most valuable asset you own, and then can make a lot of profit from selling it.

Google are primarily a data harvester. They don't care if their app store is filled with scams, if their extension store is filled with scams, if their search engine returns scam sites. In fact, they will happily accept money from scammers to place adverts for said scams at the top of your results page. They don't care if you get scammed, as long as they can get your data.
legendary
Activity: 2912
Merit: 6403
Blackjack.fun
Now on to the obvious question right now, can we simple users do something about this?
Aren't we already doing a lot in our signatures?

Hmm, I don't think this has anything to do with our signatures.

The .xyz and the .online domains are scammers, a lot of users around here including myself have reported google ads, domains to domain registrars and hosting and even video on youtube for all type of possible scams, I don't think that doing 3 minutes of reporting is something that should be considered a task or should be restricted to an ongoing partnership or directly affected users.

If there is a chance that by writing an email or filling out a simple form a scammer will be stopped at least for a while and save somebody from a monetary loss I think that's some well-spent time.

I'm starting to think of adding this to /etc/hosts:
Code:
127.0.0.1       google.com

The users who know how to add that and know what it does aren't probably the ones that will fall for a phishing website in the first place.
As for the google suing part, as much as I would see it happening I give it some hell frozen over chances. 
legendary
Activity: 1512
Merit: 7340
Farewell, Leo
Now on to the obvious question right now, can we simple users do something about this?
Aren't we already doing a lot in our signatures?
legendary
Activity: 3290
Merit: 16489
Thick-Skinned Gang Leader and Golden Feather 2021
Am I reading this right, does this mean that Google received a complaint from the .online domain and it got the original .com domain removed from searches because of this?
That would be amazingly dumb! Does this mean Google just follows any BS claim without verifying anything? But when it's about taking down a reported phishing site, they don't seem to care? It doesn't make sense. The word "stupid" doesn't even cover it!
I would expect Google to have more than enough data to determine which site is the original creator of the data. They're a search engine, it's their core business to know these things.

Now on to the obvious question right now, can we simple users do something about this?
I'm starting to think of adding this to /etc/hosts:
Code:
127.0.0.1       google.com

Quote
Reporting to google for fake misleading ads is one thing and I did that a lot of times, but here is something that I guess is a bit more complicated, so stick to reporting the xyz domain as a phishing website via the safebrowsing report tool or is there something else we can do about it?
It would be interesting if a scammed user sues Google over this. They're actively promoting a scam, despite being reported to them many times. But I guess victims value their privacy too much for that.
legendary
Activity: 2912
Merit: 6403
Blackjack.fun
Now on to the obvious question right now, can we simple users do something about this?
Reporting to google for fake misleading ads is one thing and I did that a lot of times, but here is something that I guess is a bit more complicated, so stick to reporting the xyz domain as a phishing website via the safebrowsing report tool or is there something else we can do about it?


Pages:
Jump to: