New message from LocalBitcoins support ticket #630194.
---
This account has been flagged as high-risk after receiving a support ticket submitted by another user regarding the following ad:
ONLINE_SELL #[redacted]
Please review and reply to this ticket as soon as possible to help us further investigate this matter. Failure to access this ticket may result in the suspension and/or revocation of your account until contact is made.
---
Best regards,
LocalBitcoins
---
To access this ticket, visit:
https://localbitcoins.us.com/support/reply/630194/
For security and privacy reasons this ticket may not be accessible without proper authentication due to the sensitive information involved.
Jesus, that's scary. I took a look at the site and it's pretty much just a perfectly mirrored version of LBC's login page.
Do you have any idea how they were able to get ahold of your email address, and also your username on Localbitcoins? If they just obtained one of these things it makes sense, but I can't fathom how they got their hands on both and somehow linked them together to send this email.
Anyways, this is the reason why 2FA is necessary. It makes it harder for phishers to be able to gain access to your account even if they somehow get ahold your username and password. But in general, make sure that the link you click on any of your emails is legit before you enter any details on there. Also, it might be possible to report them to us.com, since they're a subdomain of that site, essentially. They may be able to take their site down entirely (assuming that they are responsive).