Author

Topic: Just a bit of forewarning for people who have wallets stored at blockchain (Read 487 times)

full member
Activity: 140
Merit: 110
bitcoinnaire
Yeah the adword is still up as of this morning early, I did an inspection of the ad and it looks like it sends you straight to another site. I must have clicked on it sometime late at night or something because well obviously now I don't have that BTC. I guess that'll teach me not to trust links I click.

Oh, thats not good that google still has it up.

And sorry about what happened to you. As far as phishing attacks go this one is a pretty good one I think. Being the first result on a google search that says it's taking you to www.blockchain.info is something that's going to trap a lot of people for sure.

Yeah, I definitely should learn not to click and I don't know how it got to the front page result especially with there being so much knowledge about it. You'd think google would have done something by now to try and remove it and the try and remove the person but I guess not.

Apparently , the creator of this phishing site has reuploaded it on many domains and used AdWords for it multiple times. That is , whenever it is taken down , the creator just reuploads

This has been up for over a month , http://www.reddit.com/r/Bitcoin/comments/240rlg/press_on_the_fake_blockchain_ads/


This makes me wonder then, because 2 weeks ago a small amount was stolen from my BTC wallet (it was only like 30 cents) but at the time it was all I had once again. When you first go to google after searching blockchain, at least I don't usually mind clicking the ads although I've had trouble a couple times before with the "winrar" first link. I guess I should learn not to click ads unless I really trust them.
legendary
Activity: 1120
Merit: 1038
Apparently , the creator of this phishing site has reuploaded it on many domains and used AdWords for it multiple times. That is , whenever it is taken down , the creator just reuploads

This has been up for over a month , http://www.reddit.com/r/Bitcoin/comments/240rlg/press_on_the_fake_blockchain_ads/
legendary
Activity: 826
Merit: 1000
amarha
Yeah the adword is still up as of this morning early, I did an inspection of the ad and it looks like it sends you straight to another site. I must have clicked on it sometime late at night or something because well obviously now I don't have that BTC. I guess that'll teach me not to trust links I click.

Oh, thats not good that google still has it up.

And sorry about what happened to you. As far as phishing attacks go this one is a pretty good one I think. Being the first result on a google search that says it's taking you to www.blockchain.info is something that's going to trap a lot of people for sure.
full member
Activity: 140
Merit: 110
bitcoinnaire
Yeah the adword is still up as of this morning early, I did an inspection of the ad and it looks like it sends you straight to another site. I must have clicked on it sometime late at night or something because well obviously now I don't have that BTC. I guess that'll teach me not to trust links I click.
legendary
Activity: 826
Merit: 1000
amarha
I'll keep my blockchain but I will back it up and keep an offline wallet because cannot happen again. That money was really needed. More than I think anyone will ever know, but at least now I learned my lesson not to click on random google ads anymore.

So it was that same google adwords ad in the picture that when clicked on took you to the fake blockchain.info site? I assume google has dealt with this already. Because from that picture I could see a lot of people clicking on that ad because it says that the url is www.blockchain.info in green there.

I'm surprised that google would allow an ad like that to go to a different url than the one shown in green.
full member
Activity: 140
Merit: 110
bitcoinnaire
I'll keep my blockchain but I will back it up and keep an offline wallet because cannot happen again. That money was really needed. More than I think anyone will ever know, but at least now I learned my lesson not to click on random google ads anymore.
global moderator
Activity: 3794
Merit: 2615
Join the world-leading crypto sportsbook NOW!
They don't and can't check all the millions of ads they put up. You or I could pay to put a similar one there. They only care about the money but will remove it if it's a phishing site. And if you have 2-factor set up and a second password on your account then your funds are pretty safe. Keep a back up of your wallet offline and a blockchain.info wallet could be safer than a desktop one for you.
full member
Activity: 140
Merit: 110
bitcoinnaire
Just turned on 2factor and passphrase? At any rate I also moved to an offline wallet just in case because I'll be danged if 36 bucks or whatever is going to get hacked again. I need that money, how did something like that get past google is what I want to know, and I wish I knew who it was so I could find out how to get to them.
global moderator
Activity: 3794
Merit: 2615
Join the world-leading crypto sportsbook NOW!
If you had 2-factor set up this wouldn't've happened. I prefer to get a code texted to my phone. If you have a keylogger or your password is the sane as your email then email 2-factor is probably useless. Maybe bc.info should include three factor though. I would use that if available.
legendary
Activity: 3654
Merit: 1217
No unfortunately I didn't, I know this means that that money is gone forever now probably, but I didn't think I clicked on that link. Perhaps I did I don't know, I flush my history and passwords about twice in the past week for various reasons

Great, that means I'm probably not gonna get any response eh? Damn.

1. 2FA is a must for using online Bitcoin wallets. At least enable email notification and confirmation with Gmail. It makes very difficult for the hackers to steal your coins (Gmail checks the IP from where the user is logged).

2. You will get an automated reply. Don't expect much more than that.  Angry
full member
Activity: 140
Merit: 110
bitcoinnaire
You should have the site bookmarked and always double check when you're clicking on links from google. Did you have 2-factor set up?

No unfortunately I didn't, I know this means that that money is gone forever now probably, but I didn't think I clicked on that link. Perhaps I did I don't know, I flush my history and passwords about twice in the past week for various reasons

This has been going on for more than a month now. Many people had contacted the Google and reported this ad. But no action was taken. The Blockchain.info guys are also not much supportive.

Great, that means I'm probably not gonna get any response eh? Damn.
legendary
Activity: 3654
Merit: 1217
This has been going on for more than a month now. Many people had contacted the Google and reported this ad. But no action was taken. The Blockchain.info guys are also not much supportive.
global moderator
Activity: 3794
Merit: 2615
Join the world-leading crypto sportsbook NOW!
You should have the site bookmarked and always double check when you're clicking on links from google. Did you have 2-factor set up?
full member
Activity: 140
Merit: 110
bitcoinnaire
I had my entire wallet cleaned out by some address on blockchain, the address is 17PCx28iJC6UATwc4KahXEFonVfmjUEnEN, apparently they got into my wallet and made it look like I was sending them my entire amount (wasn't much but 32 bucks worth of BTC) however I just wanted to let you know.

Also https://twitter.com/blockchain/status/474990449762246658

Code:
Blockchain.info ‏@blockchain

RT @juanjblog: Be aware! @blockchain phishing attack using Google Adwords pic.twitter.com/LL4LTFsJbZ

Just watch out and change passwords, or whatever it is you need to do if you do have an account with these guys, I just switched to a normal wallet using the bitcoin-qt.
Jump to: