Author

Topic: Phishing wallet by Steller!! (Read 500 times)

hero member
Activity: 928
Merit: 531
April 19, 2019, 10:07:37 AM
#16
Thanks for the info I received similar email last week, but when I saw the google spread sheet link and did fine another link to a website on the spreadsheet I became suspicious of the whole thing I did not go further again, I run a virus check on my system to make sure am safe. Community need to be careful scammer are all out with this airdrop of a thing.
You take perfect action to safe your money, you are a wise person so you could save yourself.
always download wallet and any important information only from direct SOURCE! Any other provider could be a potential scam and why risk?
Yes, if it is from any untrusted source then that can be a lot of risk it may steal the balance from the real account as they can take necessary info.
legendary
Activity: 3276
Merit: 3537
Nec Recisa Recedit
April 16, 2019, 03:58:12 PM
#15
always download wallet and any important information only from direct SOURCE! Any other provider could be a potential scam and why risk?
full member
Activity: 980
Merit: 114
April 16, 2019, 01:46:49 PM
#14
Thanks for the info I received similar email last week, but when I saw the google spread sheet link and did fine another link to a website on the spreadsheet I became suspicious of the whole thing I did not go further again, I run a virus check on my system to make sure am safe. Community need to be careful scammer are all out with this airdrop of a thing.
hero member
Activity: 928
Merit: 531
April 16, 2019, 01:15:19 PM
#13
I don't like downloading from that file sharing site yadisk they are not controlling or checking files that are being hosted in their server,m that is why it so popular for scammers, I have received a lot of invites from airdrops from that file and I immediately shut my tab whenever I see that domain, sometimes they use a redirection to conceal their link.
They took only a small amount as fee which helps scammer to use that. And they are preferred to the scammer as they do not check or validate either the scammer user any malware or not.
hero member
Activity: 2926
Merit: 567
April 13, 2019, 06:34:54 PM
#12
I don't like downloading from that file sharing site yadisk they are not controlling or checking files that are being hosted in their server,m that is why it so popular for scammers, I have received a lot of invites from airdrops from that file and I immediately shut my tab whenever I see that domain, sometimes they use a redirection to conceal their link.
hero member
Activity: 1666
Merit: 753
April 05, 2019, 03:59:00 PM
#11
It makes no sense for some company that is seemingly affiliated with EOS to be distributing XLM tokens in an airdrop. I think that's as far as you need to go to tell that this is not legit.

You really don't need to even run any virustotal scans, even though that could help confirm things. Also, just because VirusTotal doesn't return a positive result for malicious content doesn't mean that there are potentially viruses that even them can't recognise at this time, or the scam is more sophisticated than just a simple infected file.

But I can assure you that no legit company will a) send mail requesting you to download something from a yahoo mail address, b) be conducting giveaways/handing out bonuses without any promotion on their official site and c) be using google forms and random file hosting sites to distribute their application. I agree with HCP here, this is concrete enough evidence that this should be avoided.
hero member
Activity: 928
Merit: 531
April 02, 2019, 07:23:00 AM
#10
I also received this kind of email, but the email comes from an unofficial source and the download link is from an unknown source, I am very suspicious on these links, so I just delete it, I only know blockchain.info as the one giving xlm airdrops.
As email sending by scammer, they cant use the official email address and for that reason I become confused for the first time. And then I checked they used free site or 2$ per month paid service to upload their files. 3rd they uploaded the files yesterday while the files were several months ago. And many more things I checked.
hero member
Activity: 3024
Merit: 614
Leading Crypto Sports Betting & Casino Platform
April 02, 2019, 07:06:33 AM
#9
I also received this kind of email, but the email comes from an unofficial source and the download link is from an unknown source, I am very suspicious on these links, so I just delete it, I only know blockchain.info as the one giving xlm airdrops.
hero member
Activity: 928
Merit: 531
April 02, 2019, 05:16:20 AM
#8
Did you ran a virus check on file ? If you are doing it on the basis of checking the link then you did it all wrong. Remember they could also upload it on other upload sites. What matters is if the file is infected or not.
A virus check on a bogus wallet will most likely show it to be completely clean... virus scanners can only detect if it is infected with a known Trojan or Virus (and possibly other malware). Simply connecting to a server via the internet and transmitting data is generally NOT flagged as suspicious... otherwise every browser, email client, instant messenger and any other internet enabled apps would be flagged Tongue Roll Eyes

So, if it is a bogus wallet that just simply sends your private key (or seed) or wallet file and password to an email address or POSTs the data via a PHP script on a webserver etc (ie. it is just doing "basic internet application stuff"), then chances are that a virus scanner will NOT be able to detect that behaviour as being malicious.

In this instance, I'd say with 99.999999999% confidence that it is a scam of some sort...
I want to add more thing with you that sometime they might have not read correctly or shows unread or something else but on those file they might have virus. And for your kind information for few case they might have not used any any virus and they want may use bot to collect information from you as the same hacking way of myetherwallet.
legendary
Activity: 3094
Merit: 1472
April 01, 2019, 09:44:35 PM
#7
-snip-

I guess you are correct. I just happen to know the way which is been in tradition to flag the suspicious softwares.  Cheesy

Not gonna argue anymore, seems very likely a scam attempt now.
HCP
legendary
Activity: 2086
Merit: 4361
April 01, 2019, 04:03:47 PM
#6
Did you ran a virus check on file ? If you are doing it on the basis of checking the link then you did it all wrong. Remember they could also upload it on other upload sites. What matters is if the file is infected or not.
A virus check on a bogus wallet will most likely show it to be completely clean... virus scanners can only detect if it is infected with a known Trojan or Virus (and possibly other malware). Simply connecting to a server via the internet and transmitting data is generally NOT flagged as suspicious... otherwise every browser, email client, instant messenger and any other internet enabled apps would be flagged Tongue Roll Eyes

So, if it is a bogus wallet that just simply sends your private key (or seed) or wallet file and password to an email address or POSTs the data via a PHP script on a webserver etc (ie. it is just doing "basic internet application stuff"), then chances are that a virus scanner will NOT be able to detect that behaviour as being malicious.

In this instance, I'd say with 99.999999999% confidence that it is a scam of some sort...
hero member
Activity: 928
Merit: 531
April 01, 2019, 07:08:27 AM
#5
I actually meant using sites like virustotal.com
Okay, I have just checked the link is: https://www.virustotal.com/#/url/81925c409e543200e729c27f73b5897f9fae4b26315549923084cd1bd82cce48/detection
Where I found like below image:


Real steller all their public info on github: https://github.com/stellar
Also they have not any anounce on their facebook: https://www.facebook.com/stellarfoundation
Reddit: https://www.reddit.com/r/stellar
Linkedin: https://www.linkedin.com/company/stellar-development-foundation
Or any other platform which they use.
legendary
Activity: 3094
Merit: 1472
April 01, 2019, 06:56:01 AM
#4
-snip-

Did you ran a virus check on file ?
I never download any suspicion file as I do not want to lose anything.

I actually meant using sites like virustotal.com

If you are doing it on the basis of checking the link then you did it all wrong. Remember they could also upload it on other upload sites. What matters is if the file is infected or not.
Then just want to say, they have used yahoo email where they could use their own domain's email, they could post on their website, social media site but they didn't.
They have sent email by using BCC where no reputed company will use this format to send multiple people for marketing purpose. They have not a short budget that they are not able to take email marketing service or they won't be able to pay the service fee for email marketing software or materials. If anyone has doubt then the person should check it. Sorry but I want to make aware. But I do not want to fall on their trap.
I found they have their own domain's website: [email protected]

Oh I see. In that case seems highly suspicious. Also I don't see any other airdrops apart from the ones that are ongoing on exchanges. If someone from Stellar can confirm on this then it would be great.

After reviewing till now I would also suggest to stay away.
hero member
Activity: 928
Merit: 531
April 01, 2019, 06:21:58 AM
#3
-snip-

Did you ran a virus check on file ?
I never download any suspicion file as I do not want to lose anything.

If you are doing it on the basis of checking the link then you did it all wrong. Remember they could also upload it on other upload sites. What matters is if the file is infected or not.
Then just want to say, they have used yahoo email where they could use their own domain's email, they could post on their website, social media site but they didn't.
They have sent email by using BCC where no reputed company will use this format to send multiple people for marketing purpose. They have not a short budget that they are not able to take email marketing service or they won't be able to pay the service fee for email marketing software or materials. If anyone has doubt then the person should check it. Sorry but I want to make aware. But I do not want to fall on their trap.
I found they have their own domain's website: [email protected]
legendary
Activity: 3094
Merit: 1472
April 01, 2019, 06:11:53 AM
#2
-snip-

Did you ran a virus check on file ? If you are doing it on the basis of checking the link then you did it all wrong. Remember they could also upload it on other upload sites. What matters is if the file is infected or not.
hero member
Activity: 928
Merit: 531
April 01, 2019, 06:06:59 AM
#1
I have just found an email from [email protected] though I think it is not by EOS and it is by a scammer. The Mail I have received was as mentioned image:

There I found a link of google form: https://docs.google.com/forms/d/e/1FAIpQLSedbmFiOaTly3xqdi34aAgGMjeNQxKP4OOpj5gYcbUJiwVLEw/viewform

There are found the link of wallet where the site is from another website they are as mentioned image:

So, all community member are requested not to download or give any information to them.

Quote
Download "Stellar Wallet Desktop" you can
here:
For 64-bit and x86 Windows operating system:
Link: https://yadi.sk/d/ASF9JP2qvD2QDA
Mac OS:
Link: https://yadi.sk/d/SPcL3Zu92R_AVg

Their original website is: https://www.stellar.org/
And twitter is: https://twitter.com/stellarorg
You can be confirmed it from them if you want.
Jump to: