Wouldn't it be easy for someone to figure out who owned that url
and charge him with conspiracy to hacking and stealing?
Topic: Phishing Attempts to be aware of (Read 4234 times)
Other than being careful with all the links, you should enable 2FA on every sites in which the feature is available (eg. Coinbase, Bitstamp, btc-e, blockchain.info, etc) as a second protection to your bitcoin.
blockchain.info has it by default I think. On new computers, or if it has been a while I have to check my email to re verify my wallet. 
Other than being careful with all the links, you should enable 2FA on every sites in which the feature is available (eg. Coinbase, Bitstamp, btc-e, blockchain.info, etc) as a second protection to your bitcoin.
I`ve been hacked with Phishing method on btc-e.com
I saw people complaining about a phishing attempt on users on this forum too.
The person PM you, saying he has bad new or something, and post a link, that looks like a bitcointalk.org address, and if you click on that link, it prompts you to login. When you type in your username and password, your account is hacked.
The person PM you, saying he has bad new or something, and post a link, that looks like a bitcointalk.org address, and if you click on that link, it prompts you to login. When you type in your username and password, your account is hacked.
Yup, you need to be careful with all the links in posts, PMs, or emails.
Double check if the hyperlink is leading to the right site before clicking it, and be extra careful with redirecting links.
I saw people complaining about a phishing attempt on users on this forum too.
The person PM you, saying he has bad new or something, and post a link, that looks like a bitcointalk.org address, and if you click on that link, it prompts you to login. When you type in your username and password, your account is hacked.
Luckily, nobody wants a newbie account, like mine. ^smile^
The person PM you, saying he has bad new or something, and post a link, that looks like a bitcointalk.org address, and if you click on that link, it prompts you to login. When you type in your username and password, your account is hacked.
Luckily, nobody wants a newbie account, like mine. ^smile^
i already got an email from blockchain after i open the link its look phising website
and i close that link
You should be fine. I don't think its possible for a website to directly infect you without downloading anything. Even if it looks like a phishing website I still open it so that I know how it looks. and i close that link
yeah i still open for 5 minutes to see how it looks
and the i close that link and delete the email from my email
I personally always will manually type in "blockchain.info" into my browser but sometimes it will forget my identifier, so I go to my email, get a recent backup of my wallet and click on the link, if you have a random pishing link in your email you man accidentally click on it and actually enter your passwrod
i already got an email from blockchain after i open the link its look phising website
and i close that link
You should be fine. I don't think its possible for a website to directly infect you without downloading anything. Even if it looks like a phishing website I still open it so that I know how it looks. and i close that link
yeah i still open for 5 minutes to see how it looks
and the i close that link and delete the email from my email
I personally always will manually type in "blockchain.info" into my browser but sometimes it will forget my identifier, so I go to my email, get a recent backup of my wallet and click on the link, if you have a random pishing link in your email you man accidentally click on it and actually enter your passwrod
i already got an email from blockchain after i open the link its look phising website
and i close that link
You should be fine. I don't think its possible for a website to directly infect you without downloading anything. Even if it looks like a phishing website I still open it so that I know how it looks. and i close that link
yeah i still open for 5 minutes to see how it looks
and the i close that link and delete the email from my email
I personally always will manually type in "blockchain.info" into my browser but sometimes it will forget my identifier, so I go to my email, get a recent backup of my wallet and click on the link, if you have a random pishing link in your email you man accidentally click on it and actually enter your passwrod
(I'm posting about the invoice jars in this thread because it's the only thread on bitcointalk that mentions it)
It's not just cloudhashing.com, it seems as though somebody got into the mailing servers (or at least spoofed them, but it looks legit) of various large/largish bitcoin websites, i got one from btc-e.
I got an email from both btc-e.com and cloudhashing.com with this invoice_772.jar
Actually, cloudhashing.com was invoice_773.jar
It's not just cloudhashing.com, it seems as though somebody got into the mailing servers (or at least spoofed them, but it looks legit) of various large/largish bitcoin websites, i got one from btc-e.
I got an email from both btc-e.com and cloudhashing.com with this invoice_772.jar
Actually, cloudhashing.com was invoice_773.jar
The "From" header in an email is not authenticated in anyway.
These emails are being sent from compromised servers through the smtp.com email service.
Please forward the phishing email to [email protected]
The .jar file contains a packed (ie disguised) trojan.
Whoever is doing this is rapidly modifying their technique and constantly changing the packing format.
It takes about 2 weeks for major AV products to update their signatures each time the attacker updates it, which unfortunately makes them basically useless.
tl;dr dont execute email attachments ending in .jar antivirus cant help you with this one!
Phishing is the problem that cannot be controlled.It's the huge threat for many people around the internet every now and then.And also many people doesn't know about it or by ignorance they become a victim of it and loose money.
i already got an email from blockchain after i open the link its look phising website
and i close that link
You should be fine. I don't think its possible for a website to directly infect you without downloading anything. Even if it looks like a phishing website I still open it so that I know how it looks. and i close that link
yeah i still open for 5 minutes to see how it looks
and the i close that link and delete the email from my email
haha me too, sometimes we want to know how the phising looks like
there are many types of phishing that used by the bad guys
i already got an email from blockchain after i open the link its look phising website
and i close that link
You should be fine. I don't think its possible for a website to directly infect you without downloading anything. Even if it looks like a phishing website I still open it so that I know how it looks. and i close that link
yeah i still open for 5 minutes to see how it looks
and the i close that link and delete the email from my email
i already got an email from blockchain after i open the link its look phising website
and i close that link
You should be fine. I don't think its possible for a website to directly infect you without downloading anything. Even if it looks like a phishing website I still open it so that I know how it looks. and i close that link
i already got an email from blockchain after i open the link its look phising website
and i close that link
and i close that link
Thanks for the info. The more the better, we gave to spread the word of all these scams.
I also got a Coindesk phishing attempt and later on a CryptoCoinsNews phishing attempt.
Set a second password on your blockchain wallet. If a hacker gets your credentials they need this second password t actually get any money out.
Thank you for posting this. We can all have those moments were we lose concentration for a few seconds and can accidentally click on something not realising but seeing posts like this is a stark reminder of just how bad things can be if we did and what do look out for.
hey guys, yesterday i clicked that jar file ( yes I am an Idiot). Good thing I have last line of defenses (2-Factor Authentication, encryption) on every coins related programs and websites. I deleted the file right away, but I am still worried something hidden program is still there on my pc. could you guys please help me how to scan and remove it? i ran anti-virus programs like malware bytes and AVG and they showed that file is "clean". I am confused now. please help.
I am paranoid, and I suggest you to format the hard disk after backing up the important files.
For anti-virus programs, they can't catch 100% of the malware.
But still it is good to have a good anti-virus program as they can probably catch 90% of the malware.
Jump to: