Bitcoin Forum

I had my entire wallet cleaned out by some address on blockchain, the address is 17PCx28iJC6UATwc4KahXEFonVfmjUEnEN, apparently they got into my wallet and made it look like I was sending them my entire amount (wasn't much but 32 bucks worth of BTC) however I just wanted to let you know.

Also https://twitter.com/blockchain/status/474990449762246658 (https://twitter.com/blockchain/status/474990449762246658)


Just watch out and change passwords, or whatever it is you need to do if you do have an account with these guys, I just switched to a normal wallet using the bitcoin-qt.

You should have the site bookmarked and always double check when you're clicking on links from google. Did you have 2-factor set up?

This has been going on for more than a month now. Many people had contacted the Google and reported this ad. But no action was taken. The Blockchain.info guys are also not much supportive.

No unfortunately I didn't, I know this means that that money is gone forever now probably, but I didn't think I clicked on that link. Perhaps I did I don't know, I flush my history and passwords about twice in the past week for various reasons


Great, that means I'm probably not gonna get any response eh? Damn.

1. 2FA is a must for using online Bitcoin wallets. At least enable email notification and confirmation with Gmail. It makes very difficult for the hackers to steal your coins (Gmail checks the IP from where the user is logged).

2. You will get an automated reply. Don't expect much more than that.  >:(

If you had 2-factor set up this wouldn't've happened. I prefer to get a code texted to my phone. If you have a keylogger or your password is the sane as your email then email 2-factor is probably useless. Maybe bc.info should include three factor though. I would use that if available.

Just turned on 2factor and passphrase? At any rate I also moved to an offline wallet just in case because I'll be danged if 36 bucks or whatever is going to get hacked again. I need that money, how did something like that get past google is what I want to know, and I wish I knew who it was so I could find out how to get to them.

They don't and can't check all the millions of ads they put up. You or I could pay to put a similar one there. They only care about the money but will remove it if it's a phishing site. And if you have 2-factor set up and a second password on your account then your funds are pretty safe. Keep a back up of your wallet offline and a blockchain.info wallet could be safer than a desktop one for you.

I'll keep my blockchain but I will back it up and keep an offline wallet because cannot happen again. That money was really needed. More than I think anyone will ever know, but at least now I learned my lesson not to click on random google ads anymore.

So it was that same google adwords ad in the picture that when clicked on took you to the fake blockchain.info site? I assume google has dealt with this already. Because from that picture I could see a lot of people clicking on that ad because it says that the url is www.blockchain.info in green there.

I'm surprised that google would allow an ad like that to go to a different url than the one shown in green.

Yeah the adword is still up as of this morning early, I did an inspection of the ad and it looks like it sends you straight to another site. I must have clicked on it sometime late at night or something because well obviously now I don't have that BTC. I guess that'll teach me not to trust links I click.

Oh, thats not good that google still has it up.

And sorry about what happened to you. As far as phishing attacks go this one is a pretty good one I think. Being the first result on a google search that says it's taking you to www.blockchain.info is something that's going to trap a lot of people for sure.

Apparently , the creator of this phishing site has reuploaded it on many domains and used AdWords for it multiple times. That is , whenever it is taken down , the creator just reuploads

This has been up for over a month , http://www.reddit.com/r/Bitcoin/comments/240rlg/press_on_the_fake_blockchain_ads/

Yeah, I definitely should learn not to click and I don't know how it got to the front page result especially with there being so much knowledge about it. You'd think google would have done something by now to try and remove it and the try and remove the person but I guess not.


This makes me wonder then, because 2 weeks ago a small amount was stolen from my BTC wallet (it was only like 30 cents) but at the time it was all I had once again. When you first go to google after searching blockchain, at least I don't usually mind clicking the ads although I've had trouble a couple times before with the "winrar" first link. I guess I should learn not to click ads unless I really trust them.