Pages:
Author

Topic: Password changed / Woke up recently. Good signals to know potential scammers (Read 653 times)

legendary
Activity: 2324
Merit: 1604
hmph..
For now,  there is no visible indicator that the account shows just woke up unless you will going to check the user profile.
Yeah maybe no visible indicator, but we can check from security log pages to check every member who woke up or change his password. Or, you can visit BPIP website to see when the last change made by that members. Here an example from BPIP




Since the recently woke up and password/email change have a limit to shown on Trust Page, the BPIP page will help you to know security log history for every user.
full member
Activity: 686
Merit: 125
It is exactly being mention all the details and possibilities of the just woke up account. Who knows that you might be dealing with hack accounts and scammer offering you something which is really good. I know there are sold accounts here and some of them are being tagged already good for them. For now,  there is no visible indicator that the account shows just woke up unless you will going to check the user profile. As if one is not careful checking these details might not be able to aware who is he was dealing with. So a good practice is to watch always users profile account.
legendary
Activity: 1554
Merit: 1139
The message container in OP is obviously a vital and need to know one as far as security is concerned. It signals that your account has been tampered with which probably implies that your email maybe watched or is within the reach of a scammer.
For the rest of the users in the forum, it serves as a warning in contrast to the trust system as well. Though, we all love to think that we remain anonymous to each other but then, I'm sure a few users most have got to make true friendship and conducted a few successful businesses with each other hence, earning the trust of the other person. Hence, this signals the other party that, this might not be the regular user as the account portrays therefore, the user is warned by the system to apply caution in dealing with such account.
It's a good one @OP. I'm sure a lot of users don't know this.
hero member
Activity: 2366
Merit: 838
You may find at the moment with the world situation that people are returning to the Bitcoin forum (such as myself) or, they may have simply lost track of certain things such as their password for this forum and have needed to change their passwords, or reactivate their accounts.
It is normal if one reactivate their accounts after more than 6 months. Many people tend to abandon their accounts (not only account on the forum, but also account on exchange) when market is bearish for months; and reactivate their accounts when market turns to bullish. On the other hand, it is very abnormal if one user reactivate after months and instantly want to run a company, want to trade with the others. The same goes for passwords changed or reset.
I do not consider the case of changing the password or recently waking up as suspicious activity from profile account (like your account). However, in trading and lending they avoid your account because of potential fraud problems but if you can verify the old BTC address then avoid these accusations.
Without trading, reactivate account does not harm the others but sometimes, the forum has seen some massive accounts woke up and spammed.
member
Activity: 88
Merit: 13
Cheers!
You may find at the moment with the world situation that people are returning to the Bitcoin forum (such as myself) or, they may have simply lost track of certain things such as their password for this forum and have needed to change their passwords, or reactivate their accounts.
I do not consider the case of changing the password or recently waking up as suspicious activity from profile account (like your account). However, in trading and lending they avoid your account because of potential fraud problems but if you can verify the old BTC address then avoid these accusations.

I don't think I've got one of those, but I will take on board what you just said about trading.

Thanks for the information.
legendary
Activity: 2660
Merit: 1141
You may find at the moment with the world situation that people are returning to the Bitcoin forum (such as myself) or, they may have simply lost track of certain things such as their password for this forum and have needed to change their passwords, or reactivate their accounts.
I do not consider the case of changing the password or recently waking up as suspicious activity from profile account (like your account). However, in trading and lending they avoid your account because of potential fraud problems but if you can verify the old BTC address then avoid these accusations.
member
Activity: 88
Merit: 13
Cheers!
You may find at the moment with the world situation that people are returning to the Bitcoin forum (such as myself) or, they may have simply lost track of certain things such as their password for this forum and have needed to change their passwords, or reactivate their accounts.
hero member
Activity: 2366
Merit: 838
I have read your thread from the first to the last reply but havent found what to do with the account when someone gets it?
Give them redtrust or ignore them ?
If they woke up and don't do anything else, making new posts or running business or making offers with the others; it is not correct to take woke-up accounts. There are thousands of woke up accounts, and not all of them are scammers or bad ones.
I havent realized what the main goal of the OP was before, but you explained it well to me. Thanks
The topic title is clear, bro.
"Good signals to know potential scammers".
legendary
Activity: 1974
Merit: 1150
~snip
I havent realized what the main goal of the OP was before, but you explained it well to me. Thanks
But action can be taken when the account is proven to have been hacked and sold or changed ownership when someone has investigated. Maybe as has been done by Veleor, https://bitcointalksearch.org/topic/m.52678334.

legendary
Activity: 2338
Merit: 10802
There are lies, damned lies and statistics. MTwain
<...> Give them redtrust or ignore them ?
What the OP explains are simply features to watch out for when dealing with an account, especially if the dealing is related to trade, following a link, or interacting with them on a private basis. It is by no means cause for immediate call to action by means of Trust (with the ignore, one can do as they wish, since it is a private matter).

It is merely a caution one should have, and Trust should not enter the equation just because an account has woken-up and/or changed his password. Imagine doing that automatically to the account who’s Id=3, just because it woke-up … That would put us on alert to see what the account does, and act according to the account’s actions from there on.
legendary
Activity: 1974
Merit: 1150
~snip
I have read your thread from the first to the last reply but havent found what to do with the account when someone gets it?
Give them redtrust or ignore them ?
hero member
Activity: 2366
Merit: 838
Thank you, @SRF10. I added those details in OP.
If I come back to the forum after months, I don't see why do I  have to change my password, if I don't lose it.
Even if there's strange activity on your account while you were away? What will be your first step if the person that used your account, didn't change anything? Wink
Of course, I will change my password if I find out strange activities with my account (log-in IP, and strange PMs in my Outbox).

For one who don't know how to check your log-in IPs (for the last 30 days), visit that page after logging in your account: https://bitcointalk.org/myips.php
Make sure you choose the option: Limit your IP retentionn (Profile --- Account Related Settings --- Choose that option)
It's tricky to get email notifications right so that they're not too spammy. Maybe later.

For now, I added this page where you can see your IP logs for the past 30 days: https://bitcointalk.org/myips.php . You could pretty easily write a userscript to periodically check this and warn you if it's weird. (But don't scrape it on every pageload.)

I don't want to make older IP logs automatically accessible because that'd give a hacker a bunch of useful/sensitive information. But 30 days is probably not too harmful.
legendary
Activity: 2968
Merit: 3406
Crypto Swap Exchange
- Woke up recently (I don't remember the exact words).
Here you go: Direct link


The recently woke up or password changed warning can disappear after sometime from the profile's trust page making it hard to know if the account is now under control of someone else,
Correct...
- The following highlights, might come in handy:

A reset will be shown for 30 days, while a password change will be shown for 3 days.
You're considered to have woken up if your last login time is 180+ days ago, and the message remains for 30 days.

If I come back to the forum after months, I don't see why do I  have to change my password, if I don't lose it.
Even if there's strange activity on your account while you were away? What will be your first step if the person that used your account, didn't change anything? Wink
hero member
Activity: 2366
Merit: 838
Password change is normal but it will turn to be a potential issue if one user is inactive for months (more than 6) or years, then woke-up, reactive and instantly changes password.

If I come back to the forum after months, I don't see why do I  have to change my password, if I don't lose it. I guess most of you do it too. The most common reason of password change is forget password from initial account owners or hacked/ stolen accounts.

Combinations of two or three things aforementioned are issues.
legendary
Activity: 2324
Merit: 1604
hmph..
I don't think the "password changed" message is something meaningful. That is the widespread practice in password changing on regular basis to increase security of the account. Some services even force you to do that from time to time, IMO.

If you want to change your password for security reason but someone reporting you did something wrong (such as, hacked account, sell account) to bounty manager and makes you banned from campaign, you can create a clarification signature message with your staked Bitcoin address on this thread .

hero member
Activity: 2366
Merit: 838
I don't think the "password changed" message is something meaningful. That is the widespread practice in password changing on regular basis to increase security of the account. Some services even force you to do that from time to time, IMO.
There are some factors to consider potential scammers.
If you see one account (in Trust page) shows both of:
- "This user's password was reset recently."
- Woke up recently (I don't remember the exact words).
The title is "Password changed / Woke up recently." More exactly, it should be password change and/or woke up recently. If you want to add more email changed recently. In previous posts, people mentioned about BPIP, that I know too. Unfortunately, the site is in updating progress and we might see a totally new version of BPIP soon.

You can combine all three factors:
- Password changed
- Woke up
- Email changed
All done recently. However, in my opinion, only the first two factors are enough to be more cautious with such accounts.
hero member
Activity: 1358
Merit: 635

Password changed!



I don't think the "password changed" message is something meaningful. That is the widespread practice in password changing on regular basis to increase security of the account. Some services even force you to do that from time to time, IMO.
legendary
Activity: 2338
Merit: 1261
Heisenberg
The recently woke up or password changed warning can disappear after sometime from the profile's trust page making it hard to know if the account is now under control of someone else, therefore, I just wanted to add that Vod's Bitcointalk Public Information Project can also be a good tool in tracking and finding out if an account woke up and it's password was changed in the past [from mid 2018 when the BPIP was launched] even when seclog no longer has such information

copper member
Activity: 2114
Merit: 1814
฿itcoin for all, All for ฿itcoin.
Email change too could be added to the OP, I believe it could be a sign that the account has either been hacked, or sold(generallu changed hands). Once you click on a users trust page, you can see if the user changed email recently.
Email change is one of the strongest proofs that an account probably changed hands. But some scammers and account hackers are starting to become smarter. They don't change the password or email of the hacked account and then they will post scam ads around the forum or send scam PM to other members when the owner of the account is not aware( i have seen this kind of thing happen at-least a half a dozen times though at this time, am not able to retrieve at-least one thread to show some victims complaining about it.)

So bottom line is, one has to be very careful when trading with anyone round the forum whether the password or email was changed recently or not. Hackers/scammers sometimes hide in plain sight.
legendary
Activity: 2184
Merit: 1302
Email change too could be added to the OP, I believe it could be a sign that the account has either been hacked, or sold(generally changed hands). Once you click on a users trust page, you can see if the user changed email recently.

All these does not make such users scammers, but it's an indicator, a sign, most especially when all three are present, password changed, woke up recently and email changed, you must be careful with that user, and report them to the admin if you receive a pm from them.
Pages:
Jump to: