Author

Topic: [GUIDE] Use this for identifying Scam/Phishing Websites & Exchanges in Crypto (Read 968 times)

sr. member
Activity: 896
Merit: 272
OWNR - Store all crypto in one app.
I discovered some cool tips from this post since I am disregarding some significant step about quite a while. I’ll start looking into the things you have proposed. From this, my newbie-friend will learn the fundamental law of crypto environment and much more. Nobody is to be trusted in nowadays. Do your very own research and avoid those scammers.

 
It's the reason why we should carefully analyze the possible outcomes of our actions and decisions because we can't easily guarantee that their real intention was good. People these days tend to trust and believe someone/something without even doing their own research to determine if it's legit and worth it. Some of you may think that it's a bit laborious but it's definitely beneficial because it will help you identify every single information and even experiences of other people about that specific site. Well aside from that, people don't learn from their past experiences, knowing that it can guide them on making the right decision to avoid doing the same mistake. We should realize that scammers will always look for an opportunity to deceive and take advantage of us, they will make you believe on their words and promises that's why we should be fully aware. Newbies usually fall for this trick because some of them doesn't even have an idea about the possible problem they may encounter and they get easily derived by sweet lies. Anyway this post is pretty helpful especially these days because it will be much easier to determine if a site is a phishing site.
legendary
Activity: 2506
Merit: 1394
I just found a thread that is helpful and also about on this thread : Steps to check potential phishing links by lobcmt2. This is also a helpful guide on how to identify some phishing websites.
legendary
Activity: 2506
Merit: 1394
I saw there are lots of members in my crypto Facebook groups fell into the traps and complained about it. Of course, they lost their money, most of them lost, so it is a key lesson for someone who usually careless with their acts in the Internet space.
Facebook is full of trash spammer, especially last bull run 2017, lot of facebook groups that have spammers, not only on their referral links but also they are spreading some phishing links or malware such as bitcoin doubler software. I also remember before on our local facebook groups, that lot of people from our country victim of phishing site of our local exchange where you can convert your bitcoin to national currency directly.
hero member
Activity: 2366
Merit: 838
Please be aware, I already a victim of this with before, especially some cryptocurrencies exchange.
I have never been a victim of such phishing sites, but years later (in late of 2017 or early of 2018), there was a phishing site, that was created to steal information of Poloniex users. I saw there are lots of members in my crypto Facebook groups fell into the traps and complained about it. Of course, they lost their money, most of them lost, so it is a key lesson for someone who usually careless with their acts in the Internet space.
For important sites, I suggest to save them (by any mean you can use, speadsheet or bookmark) for later use. It will efficiently help you to stay away from phishing sites.
legendary
Activity: 2506
Merit: 1394
I just added on #6 the one of the dangerous move by the hackers by contacting you through email and using some look-a-like link, so that you can enter your information on such particular website. Please be aware, I already a victim of this with before, especially some cryptocurrencies exchange.
legendary
Activity: 2506
Merit: 1394
Now it's up again, it's just updated its host today Shocked
Yeah, it's still up today  Huh Anyone can help to resolve this problem? Like how they can prevent it to host to another hosting?

Please update with newest ones.
⚠⚠️⚠~Beware on active phishing Electrum websites~⚠⚠️⚠ (Collection list updated)

It is not strange efforts and new topic, but I believe the GreatArkansas can find something has not presented in the OP to update it with more details.
Electrum wallet is a big, and popular wallet due to its convenience, hence it is a most wanted targets from attackers.
I think it's ok to not add this anymore, it's on other thread also and once you installed one of the extensions on the OP, this kind of phishing site is blocked.

Thanks for info's and tips mate this is very useful, you might want to add Anti Miner or similar extension to prevent and to stop coin miners on our browser, cryptojackers and block mining scripts from our CPU.
But if it is relevant, for cryptojacking these are a few that we would suggest:
- No Coin (Chrome, Firefox, Opera)
- minerBlock (Chrome, Firefox, Opera)
We can also add these kinds of extension. Since there are some websites now putting some mining scripts to mine using visitors of their websites.
member
Activity: 126
Merit: 22
Vraie analyse d'airdrops
Hi there, this is for sure a major issue that people need to be aware of.

I would also suggest not to download everything on your smartphone. Especially APK files, there is a very dangerous malware named Gustuff going on and spreading quite fast. You can see tthis article.

I do use 3 smartphones (2 of my old ones):
- my main smartphone that i use for personnal stuff
- the 2nd one for only google auth (2FA)
- the 3rd for airdrops Apps

Another usefull tip, if you are doing airdrops, is not to use your same registered address on trusted exchanges.
full member
Activity: 168
Merit: 214
WhoTookMyCrypto.com
Thanks for info's and tips mate this is very useful, you might want to add Anti Miner or similar extension to prevent and to stop coin miners on our browser, cryptojackers and block mining scripts from our CPU.

Wanted to suggest those previously but the OP mentioned Scam / Phishing. Cryptojacking didn't seem to fall into that category.

But if it is relevant, for cryptojacking these are a few that we would suggest:
- No Coin (Chrome, Firefox, Opera)
- minerBlock (Chrome, Firefox, Opera)

Also, you may consider using a browser that blocks cryptojacking like Opera and Firefox.

Useful site to check if you have fallen prey to cryptojacking: https://cryptojackingtest.com/

Stay safe.
hero member
Activity: 2366
Merit: 838
Please update with newest ones.
⚠⚠️⚠~Beware on active phishing Electrum websites~⚠⚠️⚠ (Collection list updated)

It is not strange efforts and new topic, but I believe the GreatArkansas can find something has not presented in the OP to update it with more details.
Electrum wallet is a big, and popular wallet due to its convenience, hence it is a most wanted targets from attackers.
copper member
Activity: 2142
Merit: 1305
Limited in number. Limitless in potential.
Now, I'm just amazed by how diligent the owner of the .TO extension of bitcointalk to continue his business. Now it's up again, it's just updated its host today Shocked
full member
Activity: 1176
Merit: 162
Thanks for info's and tips mate this is very useful, you might want to add Anti Miner or similar extension to prevent and to stop coin miners on our browser, cryptojackers and block mining scripts from our CPU.
legendary
Activity: 2506
Merit: 1394
I just received an email from them that they terminate all the IP address connected with the phishing site and now it's down as host error in cloudflare's error 522.
Glad to hear that  Smiley . I'm thankful because they made an action immediately about that phishing website.

UPDATE:
I added one new browser extension on the list, which are Malwarebytes Browser Extension and a great desktop & mobile browser called Brave.
copper member
Activity: 2142
Merit: 1305
Limited in number. Limitless in potential.
Just to update about the phishing website of the forum, seems the registrar works great and they just hear me out with my report after contacting cloudflare and redirecting me to contact the registrar which is the AbeloHost.

I just received an email from them that they terminate all the IP address connected with the phishing site and now it's down as host error in cloudflare's error 522.
legendary
Activity: 2506
Merit: 1394
If you're going to report any fake or phishing website, just report it to their registrar or hosting site to terminate the whole account.
Search their domain name in whois website and you can see their registrar records. Then report it as fake website, once proved, they will suspend that account, only if the registrar care.
Noted. There's a lot of fake websites nowadays, hoping that registrar will notice this kind of reports and they will take action if they are proven a fake or phishing website.
copper member
Activity: 2142
Merit: 1305
Limited in number. Limitless in potential.
If you're going to report any fake or phishing website, just report it to their registrar or hosting site to terminate the whole account.
Search their domain name in whois website and you can see their registrar records. Then report it as fake website, once proved, they will suspend that account, only if the registrar care.
legendary
Activity: 2506
Merit: 1394
I have a news for you @GreatArkansas

⚠️ BITCOIN-TALK FORUM PHISHING WEBSITE! BE AWARE!! ⚠️
The well-known phising site has come back, and it should be added into your list.
The ".to" Bitcointalk site has been back online for over a month now, after a few months of being off-line. This is how it performed when I gave it a cautious deliberate try (with fake data) a month ago:

Beware!!!!

It seems that the .to phishing version of Bitcointalk is back online today, after being down for a few months. That is likely one of the main sources for hacked accounts around here.
The crazy thing is that it now displays a gambling site popup screen, which is obviously not forum policy. Data is nearly up-to-date with forum, and is barely a day off.

I never ventured to try to log onto the .to site before, but for the sake of it, I tried now with fake data. What it does is capture your login/password, and then immediately redirect you to the proper .org version of the forum, where you are back to the login screen. The impression you get is that you are on the correct site, but suffered a connection glitch that made the site ask you for your credentials twice. The fuckers …

Good news, I think this site will be taken down soon, and this can be considered not adding to the list. I already reported it to EtherscamDB and Report Phishing Page by Google, so they can mark this a phishing website.
and
hero member
Activity: 2366
Merit: 838
I have a news for you @GreatArkansas

⚠️ BITCOIN-TALK FORUM PHISHING WEBSITE! BE AWARE!! ⚠️
The well-known phishing site has come back, and it should be added into your list.
The ".to" Bitcointalk site has been back online for over a month now, after a few months of being off-line. This is how it performed when I gave it a cautious deliberate try (with fake data) a month ago:

Beware!!!!

It seems that the .to phishing version of Bitcointalk is back online today, after being down for a few months. That is likely one of the main sources for hacked accounts around here.
The crazy thing is that it now displays a gambling site popup screen, which is obviously not forum policy. Data is nearly up-to-date with forum, and is barely a day off.

I never ventured to try to log onto the .to site before, but for the sake of it, I tried now with fake data. What it does is capture your login/password, and then immediately redirect you to the proper .org version of the forum, where you are back to the login screen. The impression you get is that you are on the correct site, but suffered a connection glitch that made the site ask you for your credentials twice. The fuckers …

legendary
Activity: 2506
Merit: 1394
You can also use Etheraddresslookup and Cryptonite (if i remembered correctly). They both works like Metamask IMO. But I personally use Metamask and double checking every address that I visited, and ignoring any malicious emails.
I saw that @riritsurya1202 mentioned about EtherAddressLookup, but you didn't list it (Idk if you missed).
Oh, sorry. I didn't noticed riritsurya1202's post, this EtherAddressLookup could be like free version of Cryptonite, since Cryptonite have subscription fee after 30days trial, this is better alternative for it. Already added it on OP, thank you so much for this.

What any new users should know is that there is no free money, and any offer that seems too good is very likely the scam. Using brain and common sense is still the best defense.
Exactly! Even these kind of browser extensions/software didn't exist, we should know what scam/phishing websites look like or how it works. These browser extensions are just third parties, we can avoid them if we are careful.
legendary
Activity: 3234
Merit: 5637
Blackjack.fun-Free Raffle-Join&Win $50🎲
I agree that main targets in cryptoworld are beginners, inexperience and inadequate knowledge make them very easy targets. Automatic solutions as MetaMask is something that can save many of them, but they need to be able to protect themselves in time, before and not after something bad happens.

Phishing is usually carried out via e-mail, but also in Telegram, Twitter or Facebook, but many users are victims of search engines and pay adds which can be solved just by using adblock for any browser. What any new users should know is that there is no free money, and any offer that seems too good is very likely the scam. Using brain and common sense is still the best defense.

hero member
Activity: 1372
Merit: 647
I saw that @riritsurya1202 mentioned about EtherAddressLookup, but you didn't list it (Idk if you missed).

EtherAddressLookup Chrome Extension
Most common uses:
  • Linkify Ethereum Addresses
  • Block you from malicious domains
  • History Checker
  • Twitter Trust Badges

There's also "Bookmark your favourite domains" and "Custom RPC node", but I haven't tried that. For more info and detailed descriptions visit their website. The last three features given above are really helpful, I can say based on experience.

1. Block you from malicious domains : They have a record of blacklisted domains and if you visited one, you'll see this:


2. History Checker : You can check your browser history anytime (last 500 only), this helps in checking if you've visited a site before that has been recently blacklisted. Just go click "More Settings" in your EAL Extension and you'll see all the details there / perform the action.

 

3. Twitter Trust Badges : They are providing 3 types of badges in twitter. I'm seeing this, but I chose to provide the info and images they have provided [source here >Twitter Badges]

     a. Verified/Whitelisted : This means CryptoInfluencers or EtherScamDB have whitelisted your Twitter ID.
              

     b. Blacklisted : This means the account is an imposter or tweeting in way to scam or phish users of their funds.
              

     c. Neutral : This means the the Twitter account has not categorized.
              



If you want to report a domain via EAL - you'll be redirected to etherscamdb too.
hero member
Activity: 2128
Merit: 532
FREE passive income eBook @ tinyurl.com/PIA10

Yeap, Cryptonite (if free) would be brilliant. They do not just allow you to identify scam websites. It also allows you to find scam accounts on social media. An example is as follows. Notice how the Twitter accounts look similar at first glance. But the green shield is turned off for the second post.



I always love how the original accounts stressed on not giving away crypto, yet the alts suddenly appear with a 180-degree twists Cheesy
legendary
Activity: 2506
Merit: 1394
Yeap, Cryptonite (if free) would be brilliant. They do not just allow you to identify scam websites. It also allows you to find scam accounts on social media. An example is as follows. Notice how the Twitter accounts look similar at first glance. But the green shield is turned off for the second post.
<>image<>
Yes. They can also detect some fake twitter accounts, this is really great for some crypto giveaways on twitter, last 2017 bull run lot of fake twitter accounts roaming around twitter. I already installed in on my chrome's browser with 30 days trial Tongue

Good Guide bro!


Most of the people here would don't know but Google has its own Safe Browsing Detector named Google Search Console.

I would suggest adding this to the OP as it could be one of the most trusted scam detector out there and it is FREE.

You could get more info about it here

https://transparencyreport.google.com/safe-browsing/overview
Oh, there is also from Google, this detector is for general, not only for crypto, but this is still helpful for everyone. They have also different data for phishing or malware websites all over time. This is a really big help for everyone to be more aware, thanks for sharing this.
sr. member
Activity: 1288
Merit: 415
Good Guide bro!


Most of the people here would don't know but Google has its own Safe Browsing Detector named Google Search Console.

I would suggest adding this to the OP as it could be one of the most trusted scam detector out there and it is FREE.

You could get more info about it here

https://transparencyreport.google.com/safe-browsing/overview
full member
Activity: 168
Merit: 214
WhoTookMyCrypto.com
Just checked out the Cryptonite and I found this is also good and helpful for identifying phishing websites, or scam websites. Just like Metamask, but they have just free 30 Days trial for non-subscriptions and the fee is quite huge for me. But Cryptonite works great based on some reviews I saw.
Added it on first post, thanks!

Yeap, Cryptonite (if free) would be brilliant. They do not just allow you to identify scam websites. It also allows you to find scam accounts on social media. An example is as follows. Notice how the Twitter accounts look similar at first glance. But the green shield is turned off for the second post.

legendary
Activity: 2506
Merit: 1394
You can also use Etheraddresslookup and Cryptonite (if i remembered correctly). They both works like Metamask IMO. But I personally use Metamask and double checking every address that I visited, and ignoring any malicious emails.

Cryptonite works great. Liked it alot. But stopped using them after they began charging for it. Pricing is pretty steep.

https://www.metacertprotocol.com/cryptonite
Just checked out the Cryptonite and I found this is also good and helpful for identifying phishing websites, or scam websites. Just like Metamask, but they have just free 30 Days trial for non-subscriptions and the fee is quite huge for me. But Cryptonite works great based on some reviews I saw.
Added it on first post, thanks!
full member
Activity: 168
Merit: 214
WhoTookMyCrypto.com
You can also use Etheraddresslookup and Cryptonite (if i remembered correctly). They both works like Metamask IMO. But I personally use Metamask and double checking every address that I visited, and ignoring any malicious emails.

Cryptonite works great. Liked it alot. But stopped using them after they began charging for it. Pricing is pretty steep.

https://www.metacertprotocol.com/cryptonite
jr. member
Activity: 89
Merit: 6
You can also use Etheraddresslookup and Cryptonite (if i remembered correctly). They both works like Metamask IMO. But I personally use Metamask and double checking every address that I visited, and ignoring any malicious emails.
full member
Activity: 168
Merit: 214
WhoTookMyCrypto.com
Good stuff! Also wanted to add on some things.

Other links where you can check for scams

1. https://fried.com/crypto-scam-checker/

2. https://www.scamadviser.com/

This is an example of what happens when you run a scam website through the second link.



Also, do not just rely on these sites for assurance on the legitimacy of a website. These websites are updated manually and scammers could create fraudulent sites faster than these sites can update for them. So always be on the alert.

Other methods of checking for scams

Given that the above websites rely on manual updating (eg. fried.com's database was last updated in Jan 2018). Even the Cryptonite extension which is mentioned by the OP requires manual updating.

Ideally, you should also consider adopting a more proactive approach to detecting scams. We have discussed an example of how to do this in another thread here.
legendary
Activity: 2506
Merit: 1394
Common victims of scam or phishing website over the internet are the beginners in crypto. There's a lot of bad people nowadays are taking advantages to our newbies.
There's a lot of people that first impressions on crypto are scam/fraud or full of scammers, they are wrong, it's on how they use crypto or how they treat it. Even how powerful technology nowadays, we still need to think twice, we need to ask questions if there are any suspected things you saw on the internet.
To avoid these kinds of scam or phishing, we need to learn and explore things. We should know basic securities of surfing into the internet.


Look at this chart by Google, every year, Phishing sites are increasing. (This data is for general Phishing sites, not only for crypto)

A very simple tips on how to protect yourself and your funds:
Most common uses:
  • Linkify Ethereum Addresses
  • Block you from malicious domains
  • History Checker
  • Twitter Trust Badges

There's also "Bookmark your favourite domains" and "Custom RPC node", but I haven't tried that. For more info and detailed descriptions visit their website. The last three features given above are really helpful, I can say based on experience.

1. Block you from malicious domains : They have a record of blacklisted domains and if you visited one, you'll see this:


2. History Checker : You can check your browser history anytime (last 500 only), this helps in checking if you've visited a site before that has been recently blacklisted. Just go click "More Settings" in your EAL Extension and you'll see all the details there / perform the action.

check the quoted post

3. Twitter Trust Badges : They are providing 3 types of badges in twitter. I'm seeing this, but I chose to provide the info and images they have provided [source here >Twitter Badges]

     a. Verified/Whitelisted : This means CryptoInfluencers or EtherScamDB have whitelisted your Twitter ID.
              

     b. Blacklisted : This means the account is an imposter or tweeting in way to scam or phish users of their funds.
              


If you want to report a domain via EAL - you'll be redirected to etherscamdb too.
Also thanks to riritsurya1202

4.Cryptonite - Online Identity Protection
Only 30 Days free trial if you don't want to pay  Embarrassed
This browser add-on is the most effective security and compliance solution for protecting your personal identity across every channel including the web, email, cloud, team collaboration and social media.
How the visual indicator works:
✔️ Green Shield = Safe
✔️ Black Shield = Unknown so proceed with caution
✔️ Warning Page = Dangerous


Thanks to whotookmycrypto for this.

5.Malwarebytes Browser Extension
This kind of extension is more likely the same with Metamask/EtherAddressLookup extensions. Creator of this extension has also software for anti-malware. This extension is also good for preventing to access some websites contains malware, link for mozilla add-ons add-ons



This is where Malwarebytes Browser Extension can help you:
Protection from tech support scammers: Blocks browser hijackers, and browser lockers, which are used by scammers to drive victims to call centers that use scare tactics to sell expensive technical support (that you don’t need).
Read more here: https://blog.malwarebytes.com/malwarebytes-news/betas/2018/07/introducing-malwarebytes-browser-extension/

5.Brave Browser - Mobile and Desktop
Here comes one of the best project of crypto, created by the Basic Attention Token(BAT). This is quality browser, not only for desktop but they already have on Android and IOS. This kind of browser is also the best for Adblocker, such as different ads about crypto, which some are lead to a phishing website or scam websites. If you hate ads, then this browser is good for you and bonus you can get rewarded for browsing.☺



♦Browse up to 3x faster
♦Block ads & trackers that follow you around
♦Get rewarded for browsing

Read more here: https://brave.com/features/



How to report suspected phishing website?
You can use the Report Phishing Page of Google
Link: https://safebrowsing.google.com/safebrowsing/report_phish/
Or if you discovered phishing website about crypto, you can use EtherScamDB
Link: https://www.etherscamdb.info/report

6.Email Phishing (Be aware)
As what I experienced before, I get randoms emails from some email address (most are imposter of exchnages).
Be aware of those emails that include a phishing link that includes a link contains phishing site.
Like this:

Image: https://www.hackthissite.org/forums/viewtopic.php?f=38&t=14605&sid=3141f06f1b909e702c2821d34ec91ebe

And:

Image: https://media.kasperskydaily.com/wp-content/uploads/sites/92/2015/03/06041121/facebook-phishing-example-en.png

As you can see, it contains suspicious email as seen by the image.
(most of that kinds of emails can be found on your spam folder of your email)

Just always check every link given to you by e-mail.


Do you have more information or tips about phishing/scam websites? feel free to post it below.
Let's help our newbies to be free of scammers/hackers in the cryptoworld..
Jump to: