Luno Exchange Phishing scam | Bitcointalksearch.org

shasan

copper member

Activity: 2338

Merit: 1293

Need a Bounty Manager? t.me/shasan32

Quote from: Kakmakr on August 10, 2021, 01:24:39 PM

A friend of mine send me a SmS he received from his exchange or rather a fake (Luno.com)... stating the following...

"LunoBTC Trader: your LunoBTC account will be De-activated today - 10 August, if not verified on the 2021 API 2FA panel tap=> (Then it gives a link shortener Url) & verify now."

It re-directs to a fake page, where they want you to enter your KYC verification documents. Please do not fall for these phishing Sms's or emails... they just want to use those documents to steal your identity and to signup at other sites to commit fraud.

Be Safe out there. Wink

This type of scam attempt can be happen not only for the site luno but also for any sites. If anyone think they should verify their account according to the page then there might have several problem. As they will be able to collect mobile number, email, kyc document. By which they may commit fraud and also they may take control of the user who will provide such an information. So, we should not click on any link if we do not get instantly for asking it. Also, we should double check if we still click the link to avoid any fraud/scam.

Potato Chips

hero member

Activity: 2786

Merit: 902

yesssir! 🫡

Quote from: khaled0111 on August 12, 2021, 01:53:47 PM

Quote from: Kakmakr on August 10, 2021, 01:24:39 PM

they just want to use those documents to steal your identity and to signup at other sites to commit fraud.

But the real question your friend should ask is how they know he has an account on that exchange and from where they did get his phone number? It's either someone he knows or his information got leaked from one of the services he uses.

It's also possible that the scammers were mass sending to randomly generated numbers and betting on the chances there might be some who has an account. I remember there were times I received scam messages in a new phone number I've never used nor given out to anyone yet.

It's unfortunate that we can only minimize getting phishing attacks which is why educating oneself on how to distinguish one from another is a must. Reading articles/guides + taking phishing tests would be a good start.

khaled0111

legendary

Activity: 2520

Merit: 2853

Top Crypto Casino

Quote from: Kakmakr on August 10, 2021, 01:24:39 PM

they just want to use those documents to steal your identity and to signup at other sites to commit fraud.

There is many bad things they can do with those documents and a little bit of social engineering! But the first thing they will attempt is to access your friend's Luno account with his login credentials and if he has 2fa enabled, they will request disabling it using his documents since they will be required to confirm personal information.

But the real question your friend should ask is how they know he has an account on that exchange and from where they did get his phone number? It's either someone he knows or his information got leaked from one of the services he uses. In both cases he should be careful and reset all his passwords as a precautionary measure.

SFR10

legendary

Activity: 2968

Merit: 3406

Crypto Swap Exchange

Quote from: noorman0 on August 11, 2021, 01:02:42 PM

Its phishing site is what you have shown,

No, I believe there's another one ^{[unless I misunderstood that part]}. @Kakmakr mentioned LunoBTC gave a URL from one of those link shorteners and that redirected to another page:

Quote from: Kakmakr on August 10, 2021, 01:24:39 PM
(Then it gives a link shortener Url) & verify now.

It re-directs to a fake page, where they want you to enter your KYC verification documents.

Quote from: JeromeTash on August 11, 2021, 05:32:16 PM

Archived since the Google cached version is temporary.

Thank you, I totally forgot about that part. Not sure why the part that shows the date, goes away as soon as everything has completely loaded:

sunsilk

hero member

Activity: 3038

Merit: 634

Thanks for this.

It could also happen for the other exchanges that we use. This scheme gets to the traders if their numbers are leaked or they've used it to sign up to a fishy website.

JeromeTash

legendary

Activity: 2254

Merit: 1236

Heisenberg

Quote from: SFR10 on August 11, 2021, 02:41:22 AM

If you were referring to the one with a ".com" extension, their account recently got suspended ^{[last "cached version" that google shows is for last month]}.

Archived since the Google cached version is temporary.

I don't know if they will be back after the suspension or not, but at least they are not operational as of now.

The message alone sent to OP is more than enough to make someone suspicious Cheesy

noorman0

hero member

Activity: 1764

Merit: 696

[Nope]No hype delivers more than hope

Quote from: SFR10 on August 11, 2021, 02:41:22 AM

-snip-
If you have the link, we could help to report it as well ^{[it'll speed up the process for taking it down]}.

Its phishing site is what you have shown,
phishing site: www.lunobtc.com
official site: https://www.luno.com
and it seems to have been successfully taken down by the hosting provider, and the twitter account @lunobtc has also been suspended (the only social media faked). Looks like the official Luno did have issues verifying customer identity in the past as someone revealed via tweet, then scammers started using the fake account asking for email and phone numbers.

Quote from: Kakmakr on August 10, 2021, 01:24:39 PM

-snip-
they just want to use those documents to steal your identity and to signup at other sites to commit fraud.

It's worse than that. The scammer will use the victim's KYC to reset the account from the original site. I think the safest way to complain is to contact support privately via the official complaint page instead of expressing frustration on social media.

michellee

hero member

Activity: 2604

Merit: 816

🐺Spinarium.com🐺 - iGaming casino

As far as I know, the exchange will not send announcements or news on our mobile phone instead of sending emails to their members related to the updated news. Maybe it is a new model of scam in some places, but I do not see the importance of checking on the link from the message instead of checking directly on their website. I prefer doing that instead of clicking from the SMS because I see many offers or a tricky way to scam many people every day. But thanks anyway for telling us about the SMS message.

SFR10

legendary

Activity: 2968

Merit: 3406

Crypto Swap Exchange

Quote from: Kakmakr on August 10, 2021, 01:24:39 PM

LunoBTC

If you were referring to the one with a ".com" extension, their account recently got suspended ^{[last "cached version" that google shows is for last month]}.

Quote from: Kakmakr on August 10, 2021, 01:24:39 PM

It re-directs to a fake page,

If you have the link, we could help to report it as well ^{[it'll speed up the process for taking it down]}.

condoras

legendary

Activity: 3024

Merit: 1104

This is what I do. I drink and I know things.

Quote from: Kakmakr on August 10, 2021, 01:24:39 PM

A friend of mine send me a SmS he received from his exchange or rather a fake (Luno.com)... stating the following...

"LunoBTC Trader: your LunoBTC account will be De-activated today - 10 August, if not verified on the 2021 API 2FA panel tap=> (Then it gives a link shortener Url) & verify now."

It re-directs to a fake page, where they want you to enter your KYC verification documents. Please do not fall for these phishing Sms's or emails... they just want to use those documents to steal your identity and to signup at other sites to commit fraud.

Be Safe out there. Wink

I didn't use and I don't even know this exchange. It's good though to share that information to save anyone that might have an account there and prevent others from their phishing attempts.
Perhaps, you should move your topic to Service Discussion > Exchanges for better viewing. Cool

Kakmakr

legendary

Activity: 3514

Merit: 1963

Leading Crypto Sports Betting & Casino Platform

A friend of mine send me a SmS he received from his exchange or rather a fake (Luno.com)... stating the following...

"LunoBTC Trader: your LunoBTC account will be De-activated today - 10 August, if not verified on the 2021 API 2FA panel tap=> (Then it gives a link shortener Url) & verify now."

It re-directs to a fake page, where they want you to enter your KYC verification documents. Please do not fall for these phishing Sms's or emails... they just want to use those documents to steal your identity and to signup at other sites to commit fraud.

Be Safe out there. Wink

Topic: Luno Exchange Phishing scam (Read 126 times)