Attention Phishing (Mtgox) | Bitcointalksearch.org

deslok

sr. member

Activity: 462

Merit: 250

It's all about the game, and how you play it

Quote from: Kluge on February 27, 2012, 06:43:05 PM

Quote from: deslok on February 27, 2012, 06:41:39 PM

Quote from: ?? on ??

I got my phishing stuff about a month ago, at least before Matthew had my address. I doubt that is the source.

Goat is there any need to implicate Matthew beyond some form of unreasonable animosity?

Ciphercoin brought him up, not Goat, who actually implied it was not Matt. (unless I misinterpreted it)

Valid point, well we know gox has been comprimised before them selling our emails wouldnt suprise me

Kluge

donator

Activity: 1218

Merit: 1015

Quote from: deslok on February 27, 2012, 06:41:39 PM

Quote from: ?? on ??

I got my phishing stuff about a month ago, at least before Matthew had my address. I doubt that is the source.

Goat is there any need to implicate Matthew beyond some form of unreasonable animosity?

Ciphercoin brought him up, not Goat, who actually implied it was not Matt. (unless I misinterpreted it)

deslok

sr. member

Activity: 462

Merit: 250

It's all about the game, and how you play it

Quote from: ?? on ??

I got my phishing stuff about a month ago, at least before Matthew had my address. I doubt that is the source.

Goat is there any need to implicate Matthew beyond some form of unreasonable animosity?

zer0

sr. member

Activity: 350

Merit: 250

I gave up on tracking gox phishing scams ever since one of my old emails was leaked I must get around a dozen per week of various pathetic nigerian attempts

Kluge

donator

Activity: 1218

Merit: 1015

Quote from: ?? on ??

Quote from: sveetsnelda on February 27, 2012, 03:10:52 AM

Quote from: ?? on ??

Quote from: drakahn on February 27, 2012, 01:53:26 AM

i wonder what site the people that got it are all a member of

That's the real question. What membership are they drawing from and how did they get that access?

When MTGox was hacked months ago, the user database was leaked. I'm sure it's still from that database.

my account was formed since then :/ i got the phishing stuff too. it is really why i do not want to deal with gox via email. on the forum or irc is the safest way.

Opposite, here, though same point implied. I had account prior to hack but did not get the phishing email (checked spam folder) - also subscribed to BTC Mag.

Not sure what other large BTC-related services remain which hold email.

Bro

full member

Activity: 218

Merit: 100

Quote from: sveetsnelda on February 27, 2012, 03:10:52 AM

Quote from: ?? on ??

Quote from: drakahn on February 27, 2012, 01:53:26 AM

i wonder what site the people that got it are all a member of

That's the real question. What membership are they drawing from and how did they get that access?

When MTGox was hacked months ago, the user database was leaked. I'm sure it's still from that database.

nope, I haven't receive any phishing attempt

cbeast

donator

Activity: 1736

Merit: 1006

Let's talk governance, lipstick, and pigs.

Besides MT Gox, I have only given my email address to Matthew. I hope his system isn't compromised. Although the mods/admins may have access to it as well.

sveetsnelda

hero member

Activity: 642

Merit: 500

Quote from: ?? on ??

Quote from: drakahn on February 27, 2012, 01:53:26 AM

i wonder what site the people that got it are all a member of

That's the real question. What membership are they drawing from and how did they get that access?

When MTGox was hacked months ago, the user database was leaked. I'm sure it's still from that database.

drakahn

hero member

Activity: 504

Merit: 500

i wonder what site the people that got it are all a member of

stick_theman

sr. member

Activity: 372

Merit: 250

I wonder how successful these phising emails are, giving the btc community is a lot more tech savvy.

dub0matic

full member

Activity: 182

Merit: 100

haha thats exactly why i came here today to make sure. lastweek i got it and width-drew all my my coins i would never verify my account mtgox anyway

jake262144

full member

Activity: 210

Merit: 100

Quote from: grue on February 26, 2012, 12:59:02 PM

i got noscript. problem?

That makes at least two of us... Cheesy

That "fuck you" attitude needed some sort of comment lest we see newbs catching up the idea and getting zapped. A week later "I lost my bitcoins" posts will crop up like a bad rash on one's behind.

Also, don't fall into the delusion of invulnerabillity. There have been exploits aplenty targeting various bugs in html parsing, completely orthogonal to JavaScript.
NoScript makes you a less desirable/expected target but it can't mitigate all attack vectors.

grue

legendary

Activity: 2058

Merit: 1431

Quote from: jake262144 on February 26, 2012, 10:47:25 AM

Quote from: ineededausername on February 26, 2012, 10:35:19 AM

I went and gave them this:
Username: fuck
Password: you
Grin

Not prudent - you can't tell what browser exploits the fake site might have been enriched with.
While your act of defiance is duly noted, never actually touching the attacking server is the way to go.

And *PLEASE* don't tell me that running justifies this attitude.

i got noscript. problem?

cbeast

donator

Activity: 1736

Merit: 1006

Let's talk governance, lipstick, and pigs.

Let's compare notes. Did anyone contact anyone in the bitcoin community by email shortly before getting this phishing email? Or did anyone post in a particular section or thread? I'm not asking for names, I'm simply looking for a pattern.

cypherdoc

legendary

Activity: 1764

Merit: 1002

Quote from: ineededausername on February 26, 2012, 10:35:19 AM

I went and gave them this:
Username: fuck
Password: you
Grin

why didn't you use your former avatar? aka The Bird.

marked

full member

Activity: 168

Merit: 100

Quote from: jake262144 on February 26, 2012, 10:47:25 AM

Not prudent - you can't tell what browser exploits the fake site might have been enriched with.
While your act of defiance is duly noted, never actually touching the attacking server is the way to go.

And *PLEASE* don't tell me that running justifies this attitude.

ha, they can't exploit my lynx running from my atari st that's running MiNT....

marked, now wondering what gui browser is available.

jake262144

full member

Activity: 210

Merit: 100

Quote from: ineededausername on February 26, 2012, 10:35:19 AM

I went and gave them this:
Username: fuck
Password: you
Grin

Not prudent - you can't tell what browser exploits the fake site might have been enriched with.
While your act of defiance is duly noted, never actually touching the attacking server is the way to go.

And *PLEASE* don't tell me that running justifies this attitude.

ineededausername

hero member

Activity: 784

Merit: 1000

bitcoin hundred-aire

I went and gave them this:
Username: fuck
Password: you
Grin

bitrain

sr. member

Activity: 462

Merit: 251

Just received an e-mail:

Quote

Dear Mt.Gox user,

Your account is currently pending review, please visit htps://mtgox.com/forms/verification (fake link)
For those users who have had their accounts marked for review, an explanation of why were are implementing these security measures can be found here:

Security Measures Explained

“Verified” Accounts are eligible for monthly/daily transaction limits of up to 5 times the monthly limit and 10 times the daily limit.

In order to apply for the “Verified” account status please attach a copy of the following documents:
- Your government issued photo ID (passport, permanent residence card or driver’s license) and
- A scan of either your monthly utility bill (power, phone, TV, gas, water, etc.) or a certificate of residency issued by your local government.

Thanks,
The Mt.Gox team

Typical phishing. Don't play with it.
All links drives to http://yhhr4.tmweb.ru . Message sent from Ukraine.

Topic: Attention Phishing (Mtgox) (Read 2099 times)