Topic: Cryptsy. IMPORTANT SYSTEM NOTIFICATION (Read 509 times)
in case of that, you would have to reset your 2FA, because the hacker would probably get the hash of your 2FA and gain the future code to access your accounts even if with the 2FA. that would need more caution.
They hacked into Cryptsy's servers and the phishing emails are coming from Cryptsy's actual email. Also people are getting the phishing link sent to them via SMS/text message to the phone numbers that they have listed for Cryptsy's 2FA.
The truth was thisQuote
Cryptsy has had problems for some time now and it’s time to let everybody know exactly why. These problems were NOT because of any recent phishing attacks, or even a ddos attack, nor does it have anything to do with me personally.
About a year and a half ago, we were alerted in the early AM of a reduction in our safe/cold wallet balances of Bitcoin and Litecoin, as well as a couple other smaller cryptocurrencies.
About a year and a half ago, we were alerted in the early AM of a reduction in our safe/cold wallet balances of Bitcoin and Litecoin, as well as a couple other smaller cryptocurrencies.
The full article you can read from here, http://blog.cryptsy.com/
They hacked into Cryptsy's servers and the phishing emails are coming from Cryptsy's actual email. Also people are getting the phishing link sent to them via SMS/text message to the phone numbers that they have listed for Cryptsy's 2FA.
Just because there is phishing attempt to their site doesn't mean they need to pause all withdrawal.
Only notifying user via email and give announcement in social media is enough to warn their user.
This is only they're reason to pause withdraw because they don't have money anymore imo.
Ps: I think this thread should be move into service discussion board.
Only notifying user via email and give announcement in social media is enough to warn their user.
This is only they're reason to pause withdraw because they don't have money anymore imo.
Ps: I think this thread should be move into service discussion board.
Quote
Important System Notification
Phishing Attempt:: There is a phishing attempt going around prompting users to go to a cryptsy-refund website. Do not go to this website or give your login details on any website other than the official Cryptsy website. There were two avenues of the Phishing attempt. One was via SMS, using our provider Twilio and gained entry into our logs and sending ability via a weak password on that account. The passwords on this account have been secured. The other avenue was via email using the same mailing service we use (Mailgun), but was not sent using our account. It is uncertain where the email list for this Phishing attempt was attained from, as we do not show any unauthorized access to our Mailgun account nor our internal systems. We are still investigating this matter. If you were a victim of this phishing, you should log into your account at Cryptsy immediately and do the following: 1. Change your password and enable 2fa if you don’t already have it enabled. 2. Check your pending withdrawals, we currently have withdrawals disabled so if you see one that shouldn’t be there you can request to have it cancelled. Regarding other issues that have been apparent at Cryptsy for the last couple months, I will be making another post to explain what has been happening in the next couple days. BigVern UNTIL WE ARE ABLE TO DETERMINE EXTENT OF THE PHISHING ATTEMPT, ALL WITHDRAWALS ARE PAUSED
Phishing Attempt:: There is a phishing attempt going around prompting users to go to a cryptsy-refund website. Do not go to this website or give your login details on any website other than the official Cryptsy website. There were two avenues of the Phishing attempt. One was via SMS, using our provider Twilio and gained entry into our logs and sending ability via a weak password on that account. The passwords on this account have been secured. The other avenue was via email using the same mailing service we use (Mailgun), but was not sent using our account. It is uncertain where the email list for this Phishing attempt was attained from, as we do not show any unauthorized access to our Mailgun account nor our internal systems. We are still investigating this matter. If you were a victim of this phishing, you should log into your account at Cryptsy immediately and do the following: 1. Change your password and enable 2fa if you don’t already have it enabled. 2. Check your pending withdrawals, we currently have withdrawals disabled so if you see one that shouldn’t be there you can request to have it cancelled. Regarding other issues that have been apparent at Cryptsy for the last couple months, I will be making another post to explain what has been happening in the next couple days. BigVern UNTIL WE ARE ABLE TO DETERMINE EXTENT OF THE PHISHING ATTEMPT, ALL WITHDRAWALS ARE PAUSED
Jump to: