Pages:
Author

Topic: [GUIDE] Use this for identifying Scam/Phishing Websites & Exchanges in Crypto (Read 966 times)

sr. member
Activity: 896
Merit: 272
OWNR - Store all crypto in one app.
I discovered some cool tips from this post since I am disregarding some significant step about quite a while. I’ll start looking into the things you have proposed. From this, my newbie-friend will learn the fundamental law of crypto environment and much more. Nobody is to be trusted in nowadays. Do your very own research and avoid those scammers.

 
It's the reason why we should carefully analyze the possible outcomes of our actions and decisions because we can't easily guarantee that their real intention was good. People these days tend to trust and believe someone/something without even doing their own research to determine if it's legit and worth it. Some of you may think that it's a bit laborious but it's definitely beneficial because it will help you identify every single information and even experiences of other people about that specific site. Well aside from that, people don't learn from their past experiences, knowing that it can guide them on making the right decision to avoid doing the same mistake. We should realize that scammers will always look for an opportunity to deceive and take advantage of us, they will make you believe on their words and promises that's why we should be fully aware. Newbies usually fall for this trick because some of them doesn't even have an idea about the possible problem they may encounter and they get easily derived by sweet lies. Anyway this post is pretty helpful especially these days because it will be much easier to determine if a site is a phishing site.
legendary
Activity: 2338
Merit: 1354
I just found a thread that is helpful and also about on this thread : Steps to check potential phishing links by lobcmt2. This is also a helpful guide on how to identify some phishing websites.
legendary
Activity: 2338
Merit: 1354
I saw there are lots of members in my crypto Facebook groups fell into the traps and complained about it. Of course, they lost their money, most of them lost, so it is a key lesson for someone who usually careless with their acts in the Internet space.
Facebook is full of trash spammer, especially last bull run 2017, lot of facebook groups that have spammers, not only on their referral links but also they are spreading some phishing links or malware such as bitcoin doubler software. I also remember before on our local facebook groups, that lot of people from our country victim of phishing site of our local exchange where you can convert your bitcoin to national currency directly.
hero member
Activity: 2366
Merit: 838
Please be aware, I already a victim of this with before, especially some cryptocurrencies exchange.
I have never been a victim of such phishing sites, but years later (in late of 2017 or early of 2018), there was a phishing site, that was created to steal information of Poloniex users. I saw there are lots of members in my crypto Facebook groups fell into the traps and complained about it. Of course, they lost their money, most of them lost, so it is a key lesson for someone who usually careless with their acts in the Internet space.
For important sites, I suggest to save them (by any mean you can use, speadsheet or bookmark) for later use. It will efficiently help you to stay away from phishing sites.
legendary
Activity: 2338
Merit: 1354
I just added on #6 the one of the dangerous move by the hackers by contacting you through email and using some look-a-like link, so that you can enter your information on such particular website. Please be aware, I already a victim of this with before, especially some cryptocurrencies exchange.
legendary
Activity: 2338
Merit: 1354
Now it's up again, it's just updated its host today Shocked
Yeah, it's still up today  Huh Anyone can help to resolve this problem? Like how they can prevent it to host to another hosting?

Please update with newest ones.
⚠⚠️⚠~Beware on active phishing Electrum websites~⚠⚠️⚠ (Collection list updated)

It is not strange efforts and new topic, but I believe the GreatArkansas can find something has not presented in the OP to update it with more details.
Electrum wallet is a big, and popular wallet due to its convenience, hence it is a most wanted targets from attackers.
I think it's ok to not add this anymore, it's on other thread also and once you installed one of the extensions on the OP, this kind of phishing site is blocked.

Thanks for info's and tips mate this is very useful, you might want to add Anti Miner or similar extension to prevent and to stop coin miners on our browser, cryptojackers and block mining scripts from our CPU.
But if it is relevant, for cryptojacking these are a few that we would suggest:
- No Coin (Chrome, Firefox, Opera)
- minerBlock (Chrome, Firefox, Opera)
We can also add these kinds of extension. Since there are some websites now putting some mining scripts to mine using visitors of their websites.
member
Activity: 126
Merit: 22
Vraie analyse d'airdrops
Hi there, this is for sure a major issue that people need to be aware of.

I would also suggest not to download everything on your smartphone. Especially APK files, there is a very dangerous malware named Gustuff going on and spreading quite fast. You can see tthis article.

I do use 3 smartphones (2 of my old ones):
- my main smartphone that i use for personnal stuff
- the 2nd one for only google auth (2FA)
- the 3rd for airdrops Apps

Another usefull tip, if you are doing airdrops, is not to use your same registered address on trusted exchanges.
full member
Activity: 168
Merit: 214
WhoTookMyCrypto.com
Thanks for info's and tips mate this is very useful, you might want to add Anti Miner or similar extension to prevent and to stop coin miners on our browser, cryptojackers and block mining scripts from our CPU.

Wanted to suggest those previously but the OP mentioned Scam / Phishing. Cryptojacking didn't seem to fall into that category.

But if it is relevant, for cryptojacking these are a few that we would suggest:
- No Coin (Chrome, Firefox, Opera)
- minerBlock (Chrome, Firefox, Opera)

Also, you may consider using a browser that blocks cryptojacking like Opera and Firefox.

Useful site to check if you have fallen prey to cryptojacking: https://cryptojackingtest.com/

Stay safe.
hero member
Activity: 2366
Merit: 838
Please update with newest ones.
⚠⚠️⚠~Beware on active phishing Electrum websites~⚠⚠️⚠ (Collection list updated)

It is not strange efforts and new topic, but I believe the GreatArkansas can find something has not presented in the OP to update it with more details.
Electrum wallet is a big, and popular wallet due to its convenience, hence it is a most wanted targets from attackers.
copper member
Activity: 2142
Merit: 1305
Limited in number. Limitless in potential.
Now, I'm just amazed by how diligent the owner of the .TO extension of bitcointalk to continue his business. Now it's up again, it's just updated its host today Shocked
full member
Activity: 1176
Merit: 162
Thanks for info's and tips mate this is very useful, you might want to add Anti Miner or similar extension to prevent and to stop coin miners on our browser, cryptojackers and block mining scripts from our CPU.
legendary
Activity: 2338
Merit: 1354
I just received an email from them that they terminate all the IP address connected with the phishing site and now it's down as host error in cloudflare's error 522.
Glad to hear that  Smiley . I'm thankful because they made an action immediately about that phishing website.

UPDATE:
I added one new browser extension on the list, which are Malwarebytes Browser Extension and a great desktop & mobile browser called Brave.
copper member
Activity: 2142
Merit: 1305
Limited in number. Limitless in potential.
Just to update about the phishing website of the forum, seems the registrar works great and they just hear me out with my report after contacting cloudflare and redirecting me to contact the registrar which is the AbeloHost.

I just received an email from them that they terminate all the IP address connected with the phishing site and now it's down as host error in cloudflare's error 522.
legendary
Activity: 2338
Merit: 1354
If you're going to report any fake or phishing website, just report it to their registrar or hosting site to terminate the whole account.
Search their domain name in whois website and you can see their registrar records. Then report it as fake website, once proved, they will suspend that account, only if the registrar care.
Noted. There's a lot of fake websites nowadays, hoping that registrar will notice this kind of reports and they will take action if they are proven a fake or phishing website.
copper member
Activity: 2142
Merit: 1305
Limited in number. Limitless in potential.
If you're going to report any fake or phishing website, just report it to their registrar or hosting site to terminate the whole account.
Search their domain name in whois website and you can see their registrar records. Then report it as fake website, once proved, they will suspend that account, only if the registrar care.
legendary
Activity: 2338
Merit: 1354
I have a news for you @GreatArkansas

⚠️ BITCOIN-TALK FORUM PHISHING WEBSITE! BE AWARE!! ⚠️
The well-known phising site has come back, and it should be added into your list.
The ".to" Bitcointalk site has been back online for over a month now, after a few months of being off-line. This is how it performed when I gave it a cautious deliberate try (with fake data) a month ago:

Beware!!!!

It seems that the .to phishing version of Bitcointalk is back online today, after being down for a few months. That is likely one of the main sources for hacked accounts around here.
The crazy thing is that it now displays a gambling site popup screen, which is obviously not forum policy. Data is nearly up-to-date with forum, and is barely a day off.

I never ventured to try to log onto the .to site before, but for the sake of it, I tried now with fake data. What it does is capture your login/password, and then immediately redirect you to the proper .org version of the forum, where you are back to the login screen. The impression you get is that you are on the correct site, but suffered a connection glitch that made the site ask you for your credentials twice. The fuckers …

Good news, I think this site will be taken down soon, and this can be considered not adding to the list. I already reported it to EtherscamDB and Report Phishing Page by Google, so they can mark this a phishing website.
and
hero member
Activity: 2366
Merit: 838
I have a news for you @GreatArkansas

⚠️ BITCOIN-TALK FORUM PHISHING WEBSITE! BE AWARE!! ⚠️
The well-known phishing site has come back, and it should be added into your list.
The ".to" Bitcointalk site has been back online for over a month now, after a few months of being off-line. This is how it performed when I gave it a cautious deliberate try (with fake data) a month ago:

Beware!!!!

It seems that the .to phishing version of Bitcointalk is back online today, after being down for a few months. That is likely one of the main sources for hacked accounts around here.
The crazy thing is that it now displays a gambling site popup screen, which is obviously not forum policy. Data is nearly up-to-date with forum, and is barely a day off.

I never ventured to try to log onto the .to site before, but for the sake of it, I tried now with fake data. What it does is capture your login/password, and then immediately redirect you to the proper .org version of the forum, where you are back to the login screen. The impression you get is that you are on the correct site, but suffered a connection glitch that made the site ask you for your credentials twice. The fuckers …

legendary
Activity: 2338
Merit: 1354
You can also use Etheraddresslookup and Cryptonite (if i remembered correctly). They both works like Metamask IMO. But I personally use Metamask and double checking every address that I visited, and ignoring any malicious emails.
I saw that @riritsurya1202 mentioned about EtherAddressLookup, but you didn't list it (Idk if you missed).
Oh, sorry. I didn't noticed riritsurya1202's post, this EtherAddressLookup could be like free version of Cryptonite, since Cryptonite have subscription fee after 30days trial, this is better alternative for it. Already added it on OP, thank you so much for this.

What any new users should know is that there is no free money, and any offer that seems too good is very likely the scam. Using brain and common sense is still the best defense.
Exactly! Even these kind of browser extensions/software didn't exist, we should know what scam/phishing websites look like or how it works. These browser extensions are just third parties, we can avoid them if we are careful.
legendary
Activity: 3234
Merit: 5637
Blackjack.fun-Free Raffle-Join&Win $50🎲
I agree that main targets in cryptoworld are beginners, inexperience and inadequate knowledge make them very easy targets. Automatic solutions as MetaMask is something that can save many of them, but they need to be able to protect themselves in time, before and not after something bad happens.

Phishing is usually carried out via e-mail, but also in Telegram, Twitter or Facebook, but many users are victims of search engines and pay adds which can be solved just by using adblock for any browser. What any new users should know is that there is no free money, and any offer that seems too good is very likely the scam. Using brain and common sense is still the best defense.

hero member
Activity: 1372
Merit: 647
I saw that @riritsurya1202 mentioned about EtherAddressLookup, but you didn't list it (Idk if you missed).

EtherAddressLookup Chrome Extension
Most common uses:
  • Linkify Ethereum Addresses
  • Block you from malicious domains
  • History Checker
  • Twitter Trust Badges

There's also "Bookmark your favourite domains" and "Custom RPC node", but I haven't tried that. For more info and detailed descriptions visit their website. The last three features given above are really helpful, I can say based on experience.

1. Block you from malicious domains : They have a record of blacklisted domains and if you visited one, you'll see this:


2. History Checker : You can check your browser history anytime (last 500 only), this helps in checking if you've visited a site before that has been recently blacklisted. Just go click "More Settings" in your EAL Extension and you'll see all the details there / perform the action.

 

3. Twitter Trust Badges : They are providing 3 types of badges in twitter. I'm seeing this, but I chose to provide the info and images they have provided [source here >Twitter Badges]

     a. Verified/Whitelisted : This means CryptoInfluencers or EtherScamDB have whitelisted your Twitter ID.
              

     b. Blacklisted : This means the account is an imposter or tweeting in way to scam or phish users of their funds.
              

     c. Neutral : This means the the Twitter account has not categorized.
              



If you want to report a domain via EAL - you'll be redirected to etherscamdb too.
Pages:
Jump to: