Bitcoin Forum>Economy>Marketplace>Service Discussion
Author

Topic: BitMit - is traffic being redirected for nefarious reasons? Phishing attack? (Read 2246 times)

No_2
hero member
Activity: 905
Merit: 1033
BTC: the beginning of stake-based public resources
BitMit - is traffic being redirected for nefarious reasons? Phishing attack?
July 20, 2013, 08:10:30 PM
#6
Quote from: iCEBREAKER on July 20, 2013, 08:08:38 PM
CloudFail seems borked right now.  I can't get to Bitfunder or BTC Guild.


Ah, thanks for that. That could fit. Chrome's more detailed expliantion states:

Quote
...Another possible reason is that the server is set up to return the same certificate for multiple websites, including the one you are attempting to visit, even though that certificate is not valid for all of those websites. Google Chrome can say for sure that you reached ssl2305.cloudflare.com, but cannot verify that that is the same site as www.bitmit.[]net which you intended to reach. If you proceed, Chrome will not check for any further name mismatches.

Could simply be a configuration error on their part then...
No_2
hero member
Activity: 905
Merit: 1033
BTC: the beginning of stake-based public resources
Re: BitMit - is traffic being redirected for nefarious reasons? Phishing attack?
July 20, 2013, 08:08:43 PM
#5
Ok, posted about this to their support here:

https://bitcointalksearch.org/topic/m.2770719
iCEBREAKER
legendary
Activity: 2156
Merit: 1072
Crypto is the separation of Power and State.
Re: BitMit - is traffic being redirected for nefarious reasons? Phishing attack?
July 20, 2013, 08:08:38 PM
#4
CloudFail seems borked right now.  I can't get to Bitfunder or BTC Guild.
No_2
hero member
Activity: 905
Merit: 1033
BTC: the beginning of stake-based public resources
Re: BitMit - is traffic being redirected for nefarious reasons? Phishing attack?
July 20, 2013, 07:35:07 PM
#3
Quote from: Carlton Banks on July 20, 2013, 06:16:34 PM
Nefarious reasons. Google sucks. In the least possibly polite sense of the term "sucks".

Edit: possibly more to it than I thought, Firefox is flagging it as an "Untrusted Domain". Google still sucks, however.

Can you give more details on what you mean?

Internet explorer is also reporting issues with the site's security:

Quote
The security certificate presented by this website was issued for a different website's address.

Security certificate problems may indicate an attempt to fool you or intercept any data you send to the server.
Carlton Banks
legendary
Activity: 3430
Merit: 3079
Re: BitMit - is traffic being redirected for nefarious reasons? Phishing attack?
July 20, 2013, 06:16:34 PM
#2
Nefarious reasons. Google sucks. In the least possibly polite sense of the term "sucks".

Edit: possibly more to it than I thought, Firefox is flagging it as an "Untrusted Domain". Google still sucks, however.
No_2
hero member
Activity: 905
Merit: 1033
BTC: the beginning of stake-based public resources
Re: BitMit - is traffic being redirected for nefarious reasons? Phishing attack?
July 20, 2013, 06:11:20 PM
#1
Been having issues connecting to BitMit from a number of different locations over the last week. Now Chrome reports the following:

Quote
You attempted to reach www.bitmit.net, but instead you actually reached a server identifying itself as ssl2305.cloudflare.com. This may be caused by a misconfiguration on the server or by something more serious. An attacker on your network could be trying to get you to visit a fake (and potentially harmful) version of www.bitmit.net.

You should not proceed, especially if you have never seen this warning before for this site.

However downforme reports the site is up: http://www.downforeveryoneorjustme.com/bitmit.net. But I'm not sure if they are just testing for a ping response (or similar) from the domain.

Is someone trying to subvert traffic to the site? Possibly for nefarious acticvities such as phishisng. Or is it just down.

Can anyone better at diagnosing this type of issue provide some insight.
Bitcoin Forum>Economy>Marketplace>Service Discussion
Jump to: