Pages:
Author

Topic: [Warning] Phishing Blockchain.info (Read 391 times)

legendary
Activity: 2366
Merit: 2054
November 11, 2019, 06:46:31 AM
#22
I locked this thread and moved to [Warning] Phishing Cryptocurrency Website
mk4
legendary
Activity: 2870
Merit: 3873
Paldo.io 🤖
November 11, 2019, 01:57:00 AM
#21
That's pretty much what is required, A dedicated thread which lists all the phishing sites and we have discussion about them in a single place. Creating a new thread for every phishing sites get the Beginners & Help section crowded . The person starting this thread will need to update the OP periodically.

Rather than a list, it should be basic information concerning phishing and scams in general, to teach the less educated how to detect scams for themselves rather than relying on a huge phishing site list that could end up being thousands and thousands in the long run, knowing that the list is simply going to be endless.
sr. member
Activity: 2030
Merit: 356
November 10, 2019, 11:03:54 PM
#20
Are we going to create separate topics for every phishing site we find now? Not saying that what you did(OP) by posting this thread was wrong, but it's getting pretty redundant. It's pretty much the same phishing scam as what the scammers have been doing since forever anyway. I think an admin should just sticky a thread about phishing links here in the Beginners & Help section so posts like this will be unnecessary as I'm sure we're going to see a lot more of this simply due to the fact that phishing sites aren't going anywhere soon.

Anyway, thumbs up for informing the noobies.

That's pretty much what is required, A dedicated thread which lists all the phishing sites and we have discussion about them in a single place. Creating a new thread for every phishing sites get the Beginners & Help section crowded . The person starting this thread will need to update the OP periodically.
mk4
legendary
Activity: 2870
Merit: 3873
Paldo.io 🤖
November 10, 2019, 10:30:35 PM
#19
Are we going to create separate topics for every phishing site we find now? Not saying that what you did(OP) by posting this thread was wrong, but it's getting pretty redundant. It's pretty much the same phishing scam as what the scammers have been doing since forever anyway. I think an admin should just sticky a thread about phishing links here in the Beginners & Help section so posts like this will be unnecessary as I'm sure we're going to see a lot more of this simply due to the fact that phishing sites aren't going anywhere soon.

Anyway, thumbs up for informing the noobies.
sr. member
Activity: 1610
Merit: 372
November 10, 2019, 06:50:51 PM
#18
Thank you ha warning! I’ll ask you about only one thing.
Once you publish this in the English thread and not in the local, then use the section language - English. This is a topic for beginners, which means that everything should be as detailed and clear as possible.
hero member
Activity: 2268
Merit: 669
Bitcoin Casino Est. 2013
November 10, 2019, 03:27:20 PM
#17
The spelling of the link is obvious if you always double check the link in the address bar all the time. This is another site to be added in the blocked phishing site. I think there are more fake blockchain.info site that are waiting to be discovered any where at any time. Let's be safe.
legendary
Activity: 2366
Merit: 2054
November 09, 2019, 05:55:20 PM
#16
This scammer owns a lot of sites, it is better to report the IP to one of these sites ---> https://safebrowsing.google.com/safebrowsing/report_phish/?hl=en.
reported those websites and IP.
When I look those IP many people did the report.
https://www.abuseipdb.com/check/185.212.130.9 - reported 10 times
https://www.abuseipdb.com/check/185.212.130.65 - reported 3 times
https://www.abuseipdb.com/check/194.58.112.174 -reported 7 times
https://www.abuseipdb.com/check/95.183.14.71 - reported 1 time



We can look up this IP 194.58.112.174 begun Scamming people since 2018 Using Ethereum phishing site.

The scammer did steal money a lot of people.  We should together to report it




legendary
Activity: 2702
Merit: 4002
November 09, 2019, 08:41:18 AM
#15
I am Investigated and found connecting IP related to Phishing website.

This scammer owns a lot of sites, it is better to report the IP to one of these sites ---> https://safebrowsing.google.com/safebrowsing/report_phish/?hl=en.
The problems of such sites are that they appear in one of the Google ads, the first page during the search, be inside a game and other things that we use it daily. For example, if this link is one of the games and suddenly appeared then ignored, after a time I will open the browser and will use that site.

It is best to have a dedicated device for sensitive sites and use only to browse those sites.


legendary
Activity: 1624
Merit: 2481
November 05, 2019, 02:47:20 PM
#13
relying on a website to open up a wallet (i.e. using a web wallet) is always a bad idea, security-wise.

Not your keys...sooner or later not your money.  Cool

True, and even if you are the only one in possession of your keys.. if you need to rely on a website to access them (e.g. like with myetherwallet where the keys are loaded from a file on your PC), you are also at risk.
The best option simply is to use a desktop-/mobile wallet or go for cold storage / a hardware wallet.
legendary
Activity: 2912
Merit: 6403
Blackjack.fun
November 05, 2019, 01:51:13 PM
#12
That's why it is recommended to focus on the name of the site so you are not scammed or bookmarking important sites is also one solution to avoid these scam attempts.

Just checking the URL you are visiting does not guarantee that you are on the legitimate site you intended to visit.
There are multiple approaches to trick people into visiting a fake site.

Currently the most common is to use punycode. The URL will look almost exactly as the original one except for some subtle changes (e.g. a small dot below a character).
~

Yeah, the above user will focus on the name and ....then we will have a new open topic in scam accusation.
There are some really nasty letters, forget dots, they look almost the same, xn--gogl-1nd42e . com is the nastiest thing I ever saw alongside with xn--mcrosoft-tkb . com

Far better is not to click on any damn link than checking character by character, type it yourself.


relying on a website to open up a wallet (i.e. using a web wallet) is always a bad idea, security-wise.

Not your keys...sooner or later not your money.  Cool
hero member
Activity: 1750
Merit: 589
November 05, 2019, 12:35:30 PM
#11
Blockchain's popularity is growing especially now that China announced that they agree that bkockchain is a helpful and great technology and that they might use it according to their President Xi Jin Ping, he also said that using blockchain related applications is also great because it was supported by blockchain technology. That announcement influenced the masses and scammers and those who are behind phishing and cybercrimes has possibly saw it as opportunity and something to be taken advantage of. Make sure, people, that younare verifying  that the sites you are using are legitimate before entering your details.
legendary
Activity: 2282
Merit: 1041
November 05, 2019, 12:34:04 PM
#10

The problem is that people are so busy, they will not even look at those addresses and simply follow Url links provided in emails to visit those sites.


I have often seen newbies fall for such phishing sites as they rarely suspect the sites they’re visiting, and hopefully after seeing op they’ll make it a habit to spend few extra seconds and verify if the site is legit or not. It’s also pertinent to note that a person with good knowledge of seo can rank these sites in the first position in google, though it’ll be taken down later but the damage is usually done by that time.

An SEO guy would have to build backlinks and post articles somewhere and I guess he'd be tracked if he does that. he' got much success if he targets newbies email like the list of bounty hunters who usually register to the documents they fill on campaigns. Some of the spreadsheets actually are open for the public which their email can be seen by anyone.  So its advised that they don't click links in the emails. If they normally visit a website, its best if they just bookmark it or manually type the url every time they go.
hero member
Activity: 2646
Merit: 686
November 05, 2019, 12:24:57 PM
#9
The problem is that people are so busy, they will not even look at those addresses and simply follow Url links provided in emails to visit those sites.


I have often seen newbies fall for such phishing sites as they rarely suspect the sites they’re visiting, and hopefully after seeing op they’ll make it a habit to spend few extra seconds and verify if the site is legit or not. It’s also pertinent to note that a person with good knowledge of seo can rank these sites in the first position in google, though it’ll be taken down later but the damage is usually done by that time.
legendary
Activity: 1624
Merit: 2481
November 05, 2019, 12:10:08 PM
#8
The name of this Phishing site is easy to figure out if anyone just double check the site address. That's why it is recommended to focus on the name of the site so you are not scammed or bookmarking important sites is also one solution to avoid these scam attempts.

Just checking the URL you are visiting does not guarantee that you are on the legitimate site you intended to visit.
There are multiple approaches to trick people into visiting a fake site.

Currently the most common is to use punycode. The URL will look almost exactly as the original one except for some subtle changes (e.g. a small dot below a character).
Another (more complicated) way to trick you into visiting a fake website would be DNS spoofing / cache poisoning. You'll see the original URL in the address bar, but will connect to a malicious server. Bookmarking the site won't help you there.
While a lot of these more sophisticated attacks are uncommon, relying on a website to open up a wallet (i.e. using a web wallet) is always a bad idea, security-wise.
legendary
Activity: 3136
Merit: 1172
Leading Crypto Sports Betting & Casino Platform
November 05, 2019, 10:27:33 AM
#7
The name of this Phishing site is easy to figure out if anyone just double check the site address. That's why it is recommended to focus on the name of the site so you are not scammed or bookmarking important sites is also one solution to avoid these scam attempts.
sr. member
Activity: 1078
Merit: 310
November 05, 2019, 07:20:11 AM
#6
Found another fake blockchain.info
Code:
//biockcheln.info/


https://www.virustotal.com/gui/url/0aee55b5441490294adc6b6195e76f8b2e0f1a34d8b3339d30dd8adf407dfab0/detection

Code:
Domain Name: BIOCKCHELN.INFO
Registry Domain ID: D503300001181905266-LRMS
Registrar WHOIS Server: whois.reg.com
Registrar URL: http://www.reg.com
Updated Date: 2019-10-05T21:58:27Z
Creation Date: 2019-10-05T21:58:24Z
Registry Expiry Date: 2020-10-05T21:58:24Z
Registrar Registration Expiration Date:
Registrar: Limited Liability Company "Registrar of domain names REG.RU"
Registrar IANA ID: 1606
Registrar Abuse Contact Email: [email protected]
Registrar Abuse Contact Phone: +7.4955801111
Reseller:
Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
Domain Status: serverTransferProhibited https://icann.org/epp#serverTransferProhibited
Registrant Organization: Privacy Protection
Registrant State/Province:
Registrant Country: RU
Name Server: NS1.REG.RU
Name Server: NS2.REG.RU
DNSSEC: unsigned
URL of the ICANN Whois Inaccuracy Complaint Form is https://www.icann.org/wicf/
>>> Last update of WHOIS database: 2019-11-05T07:44:10Z <<<

Be careful, do not insert your private information and always double-check site.

Let's report it here: https://safebrowsing.google.com/safebrowsing/report_phish/?hl=en


@OP you can also submit the phishing link to this thread -  Host-file to deal with phishing sites and update your host file accordingly. Thanks for keeping the community aware about this. Smiley
legendary
Activity: 2366
Merit: 2054
November 05, 2019, 06:40:09 AM
#5
~snip..
Yes, we can look the related ip address : https://www.virustotal.com/gui/ip-address/185.212.130.9/relations

~ snip...
When people in a hurry to pay something, sometimes they don't have the chance to check the website address.

~snip..
Maybe better to add some extension like Suspicious Site Reporter for chrome browser or Netcraft Anti-Phishing Extension for firefox to avoid phishing
sr. member
Activity: 771
Merit: 258
Trident Protocol | Simple «buy-hold-earn» system!
November 05, 2019, 04:10:57 AM
#4
The best way to avoid the issue of phishing is to bookmark your most visited or sensitive websites (sites where you have to input your private information especially those financially related like your private keys), take your security very seriously, it's a sad fact that many people still fall for phishing schemes in this day and age but we are all humans and we make mistakes.

Quote
The best practice to prevent Phishing links like this, is to type those url yourself and not to click on any url's.
This is one of the reasons why people fall for phishing sites, most of their domain names are made to look almost like the real thing so while typing, you might make a mistake and get the spelling wrong and it takes you straight to a phishing site and because you typed it yourself, you likely won't even double-check, we have to make allowances for human errors.
legendary
Activity: 3542
Merit: 1965
Leading Crypto Sports Betting & Casino Platform
November 05, 2019, 03:51:14 AM
#3
You have to be blind not to spot those phishing sites, because they are very different than the original sites. The problem is that people are so busy, they will not even look at those addresses and simply follow Url links provided in emails to visit those sites.

The best practice to prevent Phishing links like this, is to type those url yourself and not to click on any url's. People are lazy, so they will just "one click" on Url's provided for them. Any reputable site will implement 2FA to make sure that the login information alone, will not give access to your account, so make sure to enable 2FA, if it is provided.  Tongue
Pages:
Jump to: