I compartmentalize all my email addresses to keep track of companies that sell personal information or potential leaks like the ones I am detecting right now.
I register each website with an unique email address, and if if such email receives any spam unrelated to the company it was used for, it has been sold or hacked.
After Bitcointalk got hacked in 2015 I changed my email address for this forum. The Phishing attempt didnt come to my new address, but to the leaked one. Therefore it is confirmed that these guys are using the leaked DB from the 2015 hack and it is not from a more recent hack.
Regards
Topic: PSA: **WARNING** ACTIVE PHISHING CAMPAIGN AGAINST BitcoinTalk and BTC-e USERS - page 2. (Read 1117 times)
May 02, 2017, 11:11:03 PM
May 02, 2017, 11:09:03 PM
If you lurk in this forum long enough, you should know better than to click links from random users. Bitcoin is reaching new all time highs. It is to be expected that scammers and thieves start working again.
May 02, 2017, 10:32:47 PM
From time to time, I got some emails supposedly from a reputable exchange telling me to invest money due to high returns. I am not anymore a newbie on this aspect so I can easily detect a phising or pharming type of an email. In the first place, if one email is offering to give you an unrealistically high return on your money then you must raise your both eyebrows and delete immediately the said email.
I am always sad for newbies who can fall victim for this scam but if one is just using his own brain and use our own ability to doubt then we can easily decipher a real email from a fake one. This is not the first and would not be the last.
I am always sad for newbies who can fall victim for this scam but if one is just using his own brain and use our own ability to doubt then we can easily decipher a real email from a fake one. This is not the first and would not be the last.
May 02, 2017, 09:27:07 PM
Please stop calling it phishing. That word doesn't mean anything related to IT, email, or hackers. The first rule about naming new "things" is to give it a name that relates to that "thing's" definition. Phishing isn't it. We need to stop using that word.
What are the spoofed emails asking for? How would we know if the email we received was part of this email hack?
Thanks for the PSA!
What are the spoofed emails asking for? How would we know if the email we received was part of this email hack?
Thanks for the PSA!
Technically, it is phishing if spoofed emails are being delivered to users. I'm assuming that these emails are a way to phish your password and/or private keys somehow.
OP, do you have any examples of what these spoofed emails look like?
May 02, 2017, 09:19:50 PM
Please stop calling it phishing. That word doesn't mean anything related to IT, email, or hackers. The first rule about naming new "things" is to give it a name that relates to that "thing's" definition. Phishing isn't it. We need to stop using that word.
What are the spoofed emails asking for? How would we know if the email we received was part of this email hack?
Thanks for the PSA!
What are the spoofed emails asking for? How would we know if the email we received was part of this email hack?
Thanks for the PSA!
May 02, 2017, 07:50:02 PM
Some asshole initiated a phishing campaign against the users of BTC-e and BitcoinTalk.
They are exploiting the leaked DBs from the major hacks in 2014 and 2015 respectively.
The ones I detected are:
1) Targeting BTC-E users: spoofed emails from LocalBitcoins
2) Targeting BTC-E users: spoofed emails from Blockchain.info
3) Targeting BitcoinTalk users: fake emails from Btc-e with some attached payload.
4) +Several failed login attempts.
The last thing I heard was that the BitcoinTalk DB was being offered for sale in 2016.
Considering this "explosive" sudden campaign my speculation is that either some asshole bought it or it was finally released to the public.
Users of BTC-e and BitcoinTalk who used the same emails to register to all these sites should take extra precaution.
I highly suggest to change not only the passwords of every service (if you haven't already... come on, it's been more than 3 years) AND ALSO change your email addresses.
They are exploiting the leaked DBs from the major hacks in 2014 and 2015 respectively.
The ones I detected are:
1) Targeting BTC-E users: spoofed emails from LocalBitcoins
2) Targeting BTC-E users: spoofed emails from Blockchain.info
3) Targeting BitcoinTalk users: fake emails from Btc-e with some attached payload.
4) +Several failed login attempts.
The last thing I heard was that the BitcoinTalk DB was being offered for sale in 2016.
Considering this "explosive" sudden campaign my speculation is that either some asshole bought it or it was finally released to the public.
Users of BTC-e and BitcoinTalk who used the same emails to register to all these sites should take extra precaution.
I highly suggest to change not only the passwords of every service (if you haven't already... come on, it's been more than 3 years) AND ALSO change your email addresses.
Jump to: