Any one effected? | Bitcointalksearch.org

Jating

hero member

Activity: 2842

Merit: 772

Quote from: Juggy777 on October 30, 2017, 11:32:01 PM

This Is what I found in my mail box, Xapo is one of the most trusted wallet and if their wallet can be effected this is bad, do you think Xapo is at fault here? And most importantly has any one out here been effected, if yes how much you lost, is Xapo going to restore it? I was suggested to use xapo but I opted for other wallets, so I am safe but wanted to know what's happening to others.

We want to let you know that our security team has recently detected a series of phishing attacks and some of our users have already been affected. During these attacks, malicious sites impersonating Xapo’s platforms, requested crucial security information such as login credentials from our users.

At first glance, it is extremely hard to tell the difference between some attackers and a real site. This comparison below shows how difficult this can be.

Thanks for the heads up to the community.

Although I'm not a Xapo account holder, I think is becoming a common event now that there are a lot of phishing attempt or even a hack attempt that involves crypto so its really hard to protect ourselves from such attack. Use our common sense but sometimes its really hard to distinguished a attack from a legit email from exchanges. So I can only advise to be very careful and not to click on any links that we see specially in our email.

Idrisu

sr. member

Activity: 924

Merit: 260

I have never been effected and I pray to never be. We should also commend xapo for own up to this and this is a sign of maturity. There is no systems that is immune to hackers activities and we need to save our coin in offline wallet in other to be a bit safe. Many of us here did not have a paper wallet and we have never tried to take a step to learned how to safeguard our wallets and the coins inside it. If hackers can attack the great xapo then we should understand that no system is safe as far as online wallet is concerned.

shursight

hero member

Activity: 728

Merit: 500

It is fine for me, i dont think that those are bad news because they are letting know their users that probably they are receiving a pishing attack, i received that email too, but i am not using xapo at the moment.
It is good to hear from that, blockchain wallets are one of the most pished ones and i have never received a warning email like this one, so this is good for xapo because they are one of the first in saying this.
Anyway, i didn't opened that email, maybe it is another pishing email and my wallet can be compromised, those people are very smart nowadays.

bitart

hero member

Activity: 1442

Merit: 629

Vires in Numeris

Quote from: mk4 on October 31, 2017, 01:03:56 AM

Kudos to Xapo for being actually somewhat concerned about their users and sending out a warning message out to their users. Phishing attacks has been happening since lots of years ago, not only to Xapo and bitcoin/cryptocurrency service providers, but to almost every valuable online service out there. Unfortunately Xapo's statement can easily be misunderstood by people who aren't fluent in english, as they might think that Xapo is the one who got hacked, and not some of their users.

Phishing definition: https://en.wikipedia.org/wiki/Phishing
10 Ways To Avoid Phishing Scams: http://www.phishing.org/10-ways-to-avoid-phishing-scams

This message is a kind of everyday message if we talk about banks, they send out mails that there's an ongoing phishing attack, be prepared, etc... Usually, they include it on the login form of the internet bank site too.
This is needed, because most of the people are not technically prepared to spot a phishing mail, message or something similar, but if they were warned, it's more easy to realize.
XAPO has only sent out a normal warning message, but as it was above mentioned correctly, it can be easily misinterpreted in a stressful situtaiton...

ClvrGmr

full member

Activity: 322

Merit: 100

It all depends and goes down with the user. You are more secured if you surf the internet only with trusted sites. Unknown or untrusted sited can cause or be an opening to a hacker which can get your money.
Solution is to provide offline wallets in your home desktops. This secures your bitcoins the most unless someone will hack your pc directly only you can access it.

savioroshan

hero member

Activity: 770

Merit: 500

What ever wallet it may be,xapo, coinbase or any other online wallet , none of them are safe to use. Its always better to store your coins in a safe place like desktop wallet. I agree that online wallets are very convenient to use. But there are so many risks also. Why you want to risk your hard earned money. If its a small amount, then ok . But its not advisable to store big amounts in your online wallet.

hasmukh_rawal

copper member

Activity: 490

Merit: 105

★777Coin.com★ Fun BTC Casino!

There has been a lot of phishing attacks lately like the myetherwallet, btctalk.to and now xapo. The thing that astonishes me is people are falling for it. Why don't people take a look over the URL before doing any action. It is best to bookmark a site in which you have personal info and credentials.
Besides that, it is not at all recommended to use wallets without a private key. Paper wallets, offline wallets and hardware wallets are a clear choice when it comes to holding cryptos.
P.S: wallets like xapo and coinbase do have apps which can be installed in your phones. So it is better to use those apps than websites.

Nawaytes

sr. member

Activity: 476

Merit: 255

Quote from: Warkop on October 31, 2017, 12:41:11 AM

I guess I do not have to worry about all this, most importantly you have to keep your private key locked and enable 2-step verification in your email listed in your online wallet, if everything is done, I'm sure everything will be safe and there will be no problems with your wallet.

As long as you use online wallets like xapo, coinbase, and others, I think it can't guarantee everything will be safe. My friend has experience with it.
When you log in to a phishing site and give a sensitive information to it, you will know it later that your money will disappear even if you still have a private key or 2-step verification.

mk4

legendary

Activity: 2870

Merit: 3873

📟 t3rminal.xyz

Kudos to Xapo for being actually somewhat concerned about their users and sending out a warning message out to their users. Phishing attacks has been happening since lots of years ago, not only to Xapo and bitcoin/cryptocurrency service providers, but to almost every valuable online service out there. Unfortunately Xapo's statement can easily be misunderstood by people who aren't fluent in english, as they might think that Xapo is the one who got hacked, and not some of their users.

Phishing definition: https://en.wikipedia.org/wiki/Phishing
10 Ways To Avoid Phishing Scams: http://www.phishing.org/10-ways-to-avoid-phishing-scams

Kakmakr

legendary

Activity: 3542

Merit: 1965

Leading Crypto Sports Betting & Casino Platform

Here are some handy tips to avoid getting scammed by this :

It’s fine to click on links when you’re on trusted sites. Clicking on links that appear in random emails and instant messages, however, isn’t such a smart move. Hover over links that you are unsure of before clicking on them.

Install an Anti-Phishing Toolbar – Most popular Internet browsers have these plugins, so try them out.

Before submitting any money related information , make sure the site’s URL begins with “https” and that the site's security certificate is valid.

Get into the habit of changing your passwords regularly and make sure you type the URL to your most visited sites. Be wary of Pop-Ups – Pop-up windows often masquerade as legitimate components of a website and you would not expect that the pop-up might be the Phishing site.

Use Firewalls & Use Antivirus Software

Maveth13

full member

Activity: 336

Merit: 112

How can anyone still fall for phishing schemes. Just bookmark the page url and always check the url. Your browser also checks if the page is secure and checks the ssl certificate if its correct. Besides that, I'm sure everyone has a smartphone, just use the app.

Swenna

full member

Activity: 364

Merit: 106

I don't have any XAPO wallet but this is indeed alarming. News about phishing attack has been quite common these days especially for online wallets. Maybe this is because of the increase in the price of bitcoin that people had become interested in phishing and hacking, hoping they'll be able take whatever is stored in their targets wallet. After all, online wallets aren't that safe but there are some ways by which you cna increase the security of your own wallet.

Warkop

sr. member

Activity: 1302

Merit: 270

I guess I do not have to worry about all this, most importantly you have to keep your private key locked and enable 2-step verification in your email listed in your online wallet, if everything is done, I'm sure everything will be safe and there will be no problems with your wallet.

SUDARMONO

full member

Activity: 504

Merit: 100

we must be very careful to keep the bitcoin in large numbers, unfortunately it is difficult to find the right online wallet is safe, if you really want your bitcoin safe from thieving my suggestion you better use offline wallet.

pooya87

legendary

Activity: 3472

Merit: 10611

Quote from: natekim07 on October 31, 2017, 12:14:05 AM

what is this?

it is a "phishing attack"[1] which is for example when they create a website that looks just like a trusted website (XAPO here) and trick you into trying to log in or give your sensitive information to scammers so that they can s teal your money (bitcoin here).

this is just one of many risks of using a web wallet (a third party) for storing your bitcoins though.

[1] https://en.wikipedia.org/wiki/Phishing

fateh1313

member

Activity: 72

Merit: 10

In my personal view if u are using online wallet they are not safe so we should always apply some securities also , no i am not effected because i use security keys also at same time

natekim07

jr. member

Activity: 58

Merit: 10

what is this?

Caesar-Giulius

sr. member

Activity: 728

Merit: 250

Buy, sell and store real cryptocurrencies

Thank you for the information. I am not affect because I don’t believe in storing my coins in online wallets.

Such phishing attacks are getting more recently. It is really important to stay safe and not clicking on unknown links. From this event, Xapo can’t do much to protect the users since it is not an attack to Xapo’s wallets. The users have to learn how to protect themselves. Hope the impact is not big.

krauzzer02

full member

Activity: 378

Merit: 101

I think it is for the users who affected by visiting phishing sites that impersonates Xapo as the real website and then if they've login their account on a Xapo phishing sites, that's the time the account will be hacked and their btc will be stolen by the hackers, always look at the URL whenever visit a website most specially for your wallet accounts online, if the real website uses .com then they will just copy it and make their phishing website ended with .net the same URL name. always observe and read before entering your critical login details.

Juggy777

hero member

Activity: 2646

Merit: 686

This Is what I found in my mail box, Xapo is one of the most trusted wallet and if their wallet can be effected this is bad, do you think Xapo is at fault here? And most importantly has any one out here been effected, if yes how much you lost, is Xapo going to restore it? I was suggested to use xapo but I opted for other wallets, so I am safe but wanted to know what's happening to others.

We want to let you know that our security team has recently detected a series of phishing attacks and some of our users have already been affected. During these attacks, malicious sites impersonating Xapo’s platforms, requested crucial security information such as login credentials from our users.

At first glance, it is extremely hard to tell the difference between some attackers and a real site. This comparison below shows how difficult this can be.

Topic: Any one effected? (Read 411 times)