Hi,
Today, I was playing Muli-BTC as usual and then after some time my account has been locked.
I have only one account, I was not using any VPN and I was not using any bots.
I'm highroller and premium user since the beginning of this program. I'm active FBC user.
As normal I was just using built-in feature "auto-bet" and that's all.
In my history I made a lot of deposits and withdrawals and I've never had a problem.
Now when I'm logged in, I have just a blank page with a message:
"Your account is locked. Please contact @hallohap_1 on telegram or
[email protected] email. Failure to comply will result to a lost of funds."
After some time, e-mail address has changed and at present it is:
Your account is locked. Please contact @hallohap_1 on telegram or
[email protected] email. Failure to comply will result to a lost of funds
https://www.talkimg.com/images/2024/04/09/VeLqf.pngThat's very disturbing.
I've just got a response from this email.
"Your browser is hacked. Send 0.5 btc to bc1qhrdvuxrealra5xm7qsu9tyh06k3frcrzuvsms7 to unlock it. Why trust me? I cant withdraw your money because it needs otp and email. Ill wait 1hr before I drain it"
https://www.talkimg.com/images/2024/04/09/Ve7Sw.pngWhat the heck?
don t send nothing, you need an new device that you dont used on your internet, and try open your account on other device out of your internet provider. , if they have your email address, , i think you need care of too, open your email on another device out of your internet provider, and cahnge your passs keys, enable 2fa in your email, wrote the key of 2fa on paper, and disable phone recovery of your accounts...dont send any bit for anyone.
Yeah, I know. Like I said before I managed to withdraw all BTC funds from my account.
I have also some quite big bag of FUN token there, but it's locked. I will try to use them when FUN savings matured.
Now, fbc page is working as normal, but in case that my account can be compromised I will not use it anymore.
Pity, because I have unlocked all premium benefits and I will have to start over again.
Anyway, it could have ended much worse.
I checked this on different clean device which was never used for fbc (different OS, different browser, different DNS servers) and still my session was somehow hijacked.
It's also possible that my router is compromised but it's highly unlikely.
From my point of view.. I know it's hard to believe and even I have doubts, but it looks like fbc had some security breach or some 3rd party service they were using. Attackers were targeting only some small group of users (including me) and they managed do inject malicious script only for some accounts.
For a week or so I was also getting notifications about change in deposit address (change to P2SH segwit addresses started with 3...), but I ignored that because I didn't plan to make deposits.
Everything was looking legitimate. This message was looking exactly the same as any other notification on fbc site. Same fonts, same colors, etc.
Now everything works as usual, so I guess I will never know what happened.
