Author

Topic: BitMit - is traffic being redirected for nefarious reasons? Phishing attack? (Read 2248 times)

hero member
Activity: 906
Merit: 1034
BTC: the beginning of stake-based public resources
CloudFail seems borked right now.  I can't get to Bitfunder or BTC Guild.


Ah, thanks for that. That could fit. Chrome's more detailed expliantion states:

Quote
...Another possible reason is that the server is set up to return the same certificate for multiple websites, including the one you are attempting to visit, even though that certificate is not valid for all of those websites. Google Chrome can say for sure that you reached ssl2305.cloudflare.com, but cannot verify that that is the same site as www.bitmit.[]net which you intended to reach. If you proceed, Chrome will not check for any further name mismatches.

Could simply be a configuration error on their part then...
hero member
Activity: 906
Merit: 1034
BTC: the beginning of stake-based public resources
legendary
Activity: 2156
Merit: 1072
Crypto is the separation of Power and State.
CloudFail seems borked right now.  I can't get to Bitfunder or BTC Guild.
hero member
Activity: 906
Merit: 1034
BTC: the beginning of stake-based public resources
Nefarious reasons. Google sucks. In the least possibly polite sense of the term "sucks".

Edit: possibly more to it than I thought, Firefox is flagging it as an "Untrusted Domain". Google still sucks, however.

Can you give more details on what you mean?

Internet explorer is also reporting issues with the site's security:

Quote
The security certificate presented by this website was issued for a different website's address.

Security certificate problems may indicate an attempt to fool you or intercept any data you send to the server.
legendary
Activity: 3430
Merit: 3080
Nefarious reasons. Google sucks. In the least possibly polite sense of the term "sucks".

Edit: possibly more to it than I thought, Firefox is flagging it as an "Untrusted Domain". Google still sucks, however.
hero member
Activity: 906
Merit: 1034
BTC: the beginning of stake-based public resources
Been having issues connecting to BitMit from a number of different locations over the last week. Now Chrome reports the following:

Quote
You attempted to reach www.bitmit.net, but instead you actually reached a server identifying itself as ssl2305.cloudflare.com. This may be caused by a misconfiguration on the server or by something more serious. An attacker on your network could be trying to get you to visit a fake (and potentially harmful) version of www.bitmit.net.

You should not proceed, especially if you have never seen this warning before for this site.

However downforme reports the site is up: http://www.downforeveryoneorjustme.com/bitmit.net. But I'm not sure if they are just testing for a ping response (or similar) from the domain.

Is someone trying to subvert traffic to the site? Possibly for nefarious acticvities such as phishisng. Or is it just down.

Can anyone better at diagnosing this type of issue provide some insight.
Jump to: