|
Title: !Be careful when logging in! Post by: denis-z12 on February 19, 2018, 11:00:35 PM https://i.imgur.com/Qf3nKiI.jpg
Be very careful where you enter your login data! HTTPS means nothing anymore. Do you notice the small dots(.) below the letters n If you enter your password in a fake site like that your coins and money are gone. And always have 2 factor authentication activated. Stay Safe Title: Re: !Be careful when logging in! Post by: Oneandonlydl on February 20, 2018, 12:24:35 AM That's crazy! Thanks for the info. How did you access this fake site so I know not to do that? It looks pretty real other than those 2 dots under the n.
Title: Re: !Be careful when logging in! Post by: Family2930 on February 20, 2018, 12:43:06 AM Thank you very much for the alert. But I think that is not fake website, i have never seen a fake website with Https:// (Secure) Written. Maybe that dot (.) on your computer/Laptop 's home screen. I am not sure though. Btw thanks again.
Title: Re: !Be careful when logging in! Post by: cryptozoomed on February 20, 2018, 01:18:58 AM Great warning! A reminder to all of us to always triple check whenever we log in to an exchange!
Title: Re: !Be careful when logging in! Post by: bitperson on February 20, 2018, 01:25:40 AM This is a good example of script spoofing as described at https://en.wikipedia.org/wiki/IDN_homograph_attack. Internationalised domain names should never have been implemented in the first place. Users and administrators should disable it wherever it is encountered.
Title: Re: !Be careful when logging in! Post by: jseverson on February 20, 2018, 01:58:46 AM That's crazy! Thanks for the info. How did you access this fake site so I know not to do that? It looks pretty real other than those 2 dots under the n. Well there's no way you can accidentally type that out, so it's most likely from an ad or a deliberate phishing attempt. Some people may be too lazy in typing out the full address, so they search for the exchange in Google and go for the first result, which could be a sponsored ad. Deliberate phishing attempts come from emails or messages that look like they legitimately come from the site, asking you to click a seemingly legit link to drop your guard. The best way to not get duped into these is to type the addresses out yourself, and maybe bookmark them if you're absolutely sure your computer is clean. Title: Re: !Be careful when logging in! Post by: EcuaMobi on February 20, 2018, 01:59:46 AM If using Firefox, I strongly advice everyone to enable the option to show IDN domains using the long codification.
Open the address "about:config", find "punycode" and enable it: https://i.imgur.com/TxhukRt.png And, more importantly, always type addresses yourselves. Never open them using received links. Thank you very much for the alert. But I think that is not fake website, i have never seen a fake website with Https:// (Secure) Written. Maybe that dot (.) on your computer/Laptop 's home screen. I am not sure though. Btw thanks again. You must learn more about HTTPS! It just means the information between you and the website is encrypted and, most of the times (unless the certificate is self-signed or provided by a fake authority), that the site owns the domain (any domain) you're browsing. If you're browsing a fake site then it means the website owns that fake domain, not the real one.It's trivial and free to get HTTPS for any domain you own, real or fake. Read this: https://www.wordfence.com/blog/2017/04/chrome-firefox-unicode-phishing/ Title: Re: !Be careful when logging in! Post by: Thirdspace on February 20, 2018, 02:28:08 AM Be very careful where you enter your login data! HTTPS means nothing anymore. Do you notice the small dots(.) below the letters n That's crazy! Thanks for the info. How did you access this fake site so I know not to do that? It looks pretty real other than those 2 dots under the n. most likely he used google search or clicked link from shady websitethat's why it's a good idea to create bookmarks for your most visited/used sites and only open from bookmarks If you enter your password in a fake site like that your coins and money are gone. And always have 2 factor authentication activated. yes it's a good idea to activate 2FA, at least it will somewhat prevent them to steal your coinsand most exchanges already put security measure on withdrawal process requiring confirmation link sent to your email Title: Re: !Be careful when logging in! Post by: Cita1 on February 20, 2018, 03:49:11 AM Thanks for reminding us here. Very helpful post. Merit deserving?
Title: Re: !Be careful when logging in! Post by: krisssssy01 on February 20, 2018, 03:54:05 AM https://i.imgur.com/Qf3nKiI.jpg Be very careful where you enter your login data! HTTPS means nothing anymore. Do you notice the small dots(.) below the letters n If you enter your password in a fake site like that your coins and money are gone. And always have 2 factor authentication activated. Stay Safe thanks for the info sir..simple tips but it matters a lot...godbless☺ Title: Re: !Be careful when logging in! Post by: O$IRIS on February 20, 2018, 04:42:25 AM Could any one please clarify what those '...' under Ns mean? How does that represent a risk?
Title: Re: !Be careful when logging in! Post by: fraufreiheit on February 20, 2018, 04:50:36 AM Could any one please clarify what those '...' under Ns mean? How does that represent a risk? This site is fake, pretending to be a real exchange. When you go to it, you don't pay attention to these dots and think that it is an actual binance platform. Then you enter your e-mail and password and they go to hackers who now can do anything with your account on an exchange. Just google "phishing" for more examples, if it is still not clear. Title: Re: !Be careful when logging in! Post by: pooya87 on February 20, 2018, 05:23:35 AM And always have 2 factor authentication activated. 2FA is very important. additionally what i do is that i always bookmark these important websites and i open them through my bookmarks instead of clicking any links. also a quick way to notice a fake site for me has always been based on their "zoom"! usually browsers remember the zoom level that you used on the websites. for example (if you haven't already) zoom in while seeing this topic then visit one of bitcointalk mirror/fake websites such as this one: fake link: https://bitcointalk.org/index.php?topic=2981675.0 now you can clearly see it is a different website you are visiting based on its zoom alone. Title: Re: !Be careful when logging in! Post by: cryptocurrencybazaar on February 20, 2018, 05:26:35 AM Woah! This is something new. Thanks for the heads up and spreading awareness.
Using 2FA is kind of must if you are holding coins on any exchanges. It can secure your funds otherwise anyone can fall prey to such novel scams. Title: Re: !Be careful when logging in! Post by: bitmover on February 20, 2018, 05:45:55 AM Tip to avoid getting scamed:
Use a password manager, or just save passwords in your browser. This way you never type your password again. If you are requested for it, that's not the website you are looking for. Title: Re: !Be careful when logging in! Post by: mits001 on February 20, 2018, 05:57:21 AM Tip to avoid getting scamed: Though it's a nice concept but saving passwords in browser is not safe either. Someone having access to your system can easily find the password or hackers can steal it too.Use a password manager, or just save passwords in your browser. This way you never type your password again. If you are requested for it, that's not the website you are looking for. Better to use 2FA for added security. Title: Re: !Be careful when logging in! Post by: pooya87 on February 20, 2018, 06:05:52 AM Tip to avoid getting scamed: Though it's a nice concept but saving passwords in browser is not safe either. Someone having access to your system can easily find the password or hackers can steal it too.Use a password manager, or just save passwords in your browser. This way you never type your password again. If you are requested for it, that's not the website you are looking for. Better to use 2FA for added security. that is true. it is best not to save passwords in your browser however it is not that simple to access stored passwords in browsers like Google Chrome and Firefox. they can also be password protected. for example if you have a password for your system log in when you visit chrome://settings/passwords in your Chrome browser it will require you to input that password before it shows you sensitive information. in Firefox you have to set a Master Password yourself from about:preferences#privacy Title: Re: !Be careful when logging in! Post by: denis-z12 on February 20, 2018, 09:46:33 AM Here are some links with special characters that can be used to trick users in giving them their login details by creating an exact copy of the website with just a little . or , somewhere that we might not even notice if we are in a hurry.
https://tools.oratory.com/altcodes.html http://www.doc.ic.ac.uk/~svb/chars.html https://en.wikipedia.org/wiki/List_of_Unicode_characters Notice all the possibilities with the letter A Now think of your paypal account for example if you are using paypal. Imagine someone sends you a link or you find a link - https:/www.paypȧl.com, you might think its dirt on your screen, dead pixel or something. I changed only one letter, look - https:/www.paypȧl.com Like some users said, dont click on links suggested on google or something you received via email, social media. Typing the address yourself is a good tip. Bookmark, also a good tip. Unfortunately saving the password in your browser is a bad idea. Password Stealers are designed to find this data as it is stored in different locations on your PC. Password managers are also being targeted so any software offering to keep your passwords for you can be subject to an attack. Title: Re: !Be careful when logging in! Post by: TheBeardedBaby on February 20, 2018, 10:05:41 AM What I'm afraid of is that the domain name can be also written in Cyrillic.
If you mix both Latin and Cyrillic you get something like this : www.google.com (http://www.google.com) and www.google.com (http://www.google.com) (save to click, leading to non-existing page) Do you see any difference?? No! You see no difference but the second is written with two Cyrillic o's There you have no need to change the n to different name, it can really be www.binance.com (http://www.binance.com) and two different variations www.binance.com (http://www.binance.com) one Cyrillic "a" (save to click, leading to non-existing page) www.binance.com (http://www.binance.com) one Cyrillic "e" (save to click, leading to non-existing page) I haven't tried it myself but I could't find any restrictions in mixing different alphabets. Note. Almost all vocals can be switched in between and many other letters. Title: Re: !Be careful when logging in! Post by: denis-z12 on February 20, 2018, 11:01:23 AM What I'm afraid of is that the domain name can be also written in Cyrillic. If you mix both Latin and Cyrillic you get something like this : www.google.com (http://www.google.com) and www.google.com (http://www.google.com) (save to click, leading to non-existing page) Do you see any difference?? No! You see no difference but the second is written with two Cyrillic o's There you have no need to change the n to different name, it can really be www.binance.com (http://www.binance.com) and two different variations www.binance.com (http://www.binance.com) one Cyrillic "a" (save to click, leading to non-existing page) www.binance.com (http://www.binance.com) one Cyrillic "e" (save to click, leading to non-existing page) I haven't tried it myself but I could't find any restrictions in mixing different alphabets. Note. Almost all vocals can be switched in between and many other letters. Thats a new threat level that I havent though of yet. Is that possible? Can you really combine different alphabets in the address bar? I have never seen a Cyrillic address or any other alphabet except latin letters. Maybe some other users can give us some more info Title: Re: !Be careful when logging in! Post by: Thirdspace on February 20, 2018, 11:16:44 AM www.google.com (http://www.google.com) and www.google.com (http://www.google.com) (save to click, leading to non-existing page) ---snip--- www.binance.com (http://www.binance.com) and two different variations www.binance.com (http://www.binance.com) one Cyrillic "a" (save to click, leading to non-existing page) www.binance.com (http://www.binance.com) one Cyrillic "e" (save to click, leading to non-existing page) weird... on my pc they are all easily noticeable when I mouse over the google one, on the bottom left corner it shows http://www.xn--ggle-55da.com/ and for binance, http://www.xn--binnce-5nf.com/ and http://www.xn--binanc-8of.com/ when I click to open the link, the url as I mentioned above shown on the address bar... so I won't be fooled by these because the address is so obviously different than the real one is my defective browser saving me from these possible cyrillic fake url? :D Title: Re: !Be careful when logging in! Post by: TheBeardedBaby on February 20, 2018, 11:21:55 AM Thats a new threat level that I havent though of yet. Is that possible? Can you really combine different alphabets in the address bar? I have never seen a Cyrillic address or any other alphabet except latin letters. Maybe some other users can give us some more info Here is one Cyrillic domain for example > http://дoмeйни.com/ (http://дoмeйни.com/) Save to click, domain seller site. weird... on my pc they are all easily noticeable when I mouse over the google one, on the bottom left corner it shows http://www.xn--ggle-55da.com/ and for binance, http://www.xn--binnce-5nf.com/ and http://www.xn--binanc-8of.com/ when I click to open the link, the url as I mentioned above shown on the address bar... so I won't be fooled by these because the address is so obviously different than the real one is my defective browser saving me from these possible cyrillic fake url? :D Yea I also notice it, but I also tested it with the one I have mentioned above, which is registered already and it shows it correctly. I guess there is something to do with the DNS and the resolving of the host. I put it in my threat list. I'll try to find a mixed one domain, I think I've seen one before but not 100% sure. If this is possible it is a quite dangerous. Title: Re: !Be careful when logging in! Post by: LtMotioN on February 20, 2018, 11:24:02 AM Guys another tip around this is to always check who the certificate is made out to. It is quite easy to get a "green lock". Make sure you always click on the "secure" button by the URL and make sure it shows the correct owner before you login anywhere.
I think though as a community we need to push binance to register all these fake domains themselves.. literally every possible fake iteration. If they have the domains registered then someone else can use them. I will kick it off by sending them a ticket, I think its a good idea for us to all do this. It breaks my heart to see people get scammed out of 1000s of dollars or full bitcoins. Newbies getting scammed is not something we need in this space. Title: Re: !Be careful when logging in! Post by: denis-z12 on February 20, 2018, 11:24:34 AM www.google.com (http://www.google.com) and www.google.com (http://www.google.com) (save to click, leading to non-existing page) ---snip--- www.binance.com (http://www.binance.com) and two different variations www.binance.com (http://www.binance.com) one Cyrillic "a" (save to click, leading to non-existing page) www.binance.com (http://www.binance.com) one Cyrillic "e" (save to click, leading to non-existing page) weird... on my pc they are all easily noticeable when I mouse over the google one, on the bottom left corner it shows http://www.xn--ggle-55da.com/ and for binance, http://www.xn--binnce-5nf.com/ and http://www.xn--binanc-8of.com/ when I click to open the link, the url as I mentioned above shown on the address bar... so I won't be fooled by these because the address is so obviously different than the real one is my defective browser saving me from these possible cyrillic fake url? :D Title: Re: !Be careful when logging in! Post by: TheBeardedBaby on February 20, 2018, 11:42:39 AM After digging a little I found what I was looking for > IDN homograph attack (https://en.wikipedia.org/wiki/IDN_homograph_attack) (link to wikipedia)
Just a short quote from Wikipedia. Quote The internationalized domain name (IDN) homograph attack is a way a malicious party may deceive computer users about what remote system they are communicating with, by exploiting the fact that many different characters look alike (i.e., they are homographs, hence the term for the attack). For example, a regular user of example.com may be lured to click a link where the Latin A is replaced with the Cyrillic A. This kind of spoofing attack is also known as script spoofing. Unicode incorporates numerous writing systems, and, for a number of reasons, similar-looking characters such as Greek O, Latin O, and Cyrillic O were not assigned the same code. Their incorrect or malicious usage is a possibility for security attacks.[1] The registration of homographic domain names is akin to typosquatting, in that both forms of attacks use a similar-looking name to a more established domain to fool a user. The major difference is that in typosquatting the perpetrator relies on natural human typos, while in homograph spoofing the perpetrator intentionally deceives the web surfer with visually indistinguishable names. Indeed, it would be a rare accident for a web user to type, e.g., a Cyrillic letter within an otherwise English word such as "citibank". There are cases in which a registration can be both typosquatting and homograph spoofing; the pairs of l/I, i/j, and 0/O are all both close together on keyboards and bear a certain amount of resemblance to each other. I learned something new today. Title: Re: !Be careful when logging in! Post by: gawer33 on February 20, 2018, 11:53:44 AM that's why it's good if you tick remember me and never delete history the browser will automatically fill you to the most common site you visit. also to remember to bookmark it
Title: Re: !Be careful when logging in! Post by: poptok1 on February 20, 2018, 11:53:49 AM I see the same think when hoovering over the address with my mouse. But the letters are the same when you look at the address the way it is written. Difference can be seen clearly as day, assuming one knows where to look or uses safe methods for browsing.https://i.imgur.com/mADVyqS.png Since very long time firefox shows such spoofed characters in the status bar. Opera is displaying them by default with their real code on page, Chrome is also secured. Basically old internet explorer browsers are vulnerable to Homograph attack. Title: Re: !Be careful when logging in! Post by: chrisdan on February 20, 2018, 12:06:35 PM i almost didn't notice that is a phishing site.
better not click any links from received emails. Title: Re: !Be careful when logging in! Post by: TheBeardedBaby on February 20, 2018, 12:15:18 PM Difference can be seen clearly as day, assuming one knows where to look or uses safe methods for browsing. https://i.imgur.com/mADVyqS.png Since very long time firefox shows such spoofed characters in the status bar. Opera is displaying them by default with their real code on page, Chrome is also secured. Basically old internet explorer browsers are vulnerable to Homograph attack. I have done the same with already registered Cyrillic domain, see here, you can try it yourself. Here is one Cyrillic domain for example > http://дoмeйни.com/ (http://дoмeйни.com/) Save to click, domain seller site. https://i.imgur.com/TaFuDE2.png It gives some room to such attacks due to the fact that you have some similar letters in both Latin and Cyrillic. Title: Re: !Be careful when logging in! Post by: Jet Cash on February 20, 2018, 12:26:39 PM Most surfers don't seem to understand the concept of direct navigation. I've done a lot to try to educate them, as of course it helps to preserve domainname values, but I've not had a lot of success. Google has done a lot of harm by creating the omni-box, and I suspect this is to allow it to fly paid advertising to surfers trying to go directly to a site. It also gives a scammer the chance to harvest the unwary. As long as they can get to a top listing on Google, then they can expect to pick up these surfers.
One good move is to report the site to Google. If enough people do this, then they will de-list it, or popup a warning. Title: Re: !Be careful when logging in! Post by: sncc on February 20, 2018, 05:26:13 PM The dangerous thing is that phishing sites sometimes appear on top of search results as advertisement.
The following image is an example from https://www.reddit.com/r/CryptoCurrency/comments/7oxqcn/phishing_alert_watch_out_for_a_binancecom/ https://i.redd.it/2f5hkalrnt801.png https://i.redd.it/2f5hkalrnt801.png (https://i.redd.it/2f5hkalrnt801.png) The second one is the fake one as its URL has alpha instead of a. Do not login from the advertisement of search results, always use bookmark. Title: Re: !Be careful when logging in! Post by: Rimcoin on February 20, 2018, 05:42:12 PM Thanks for the information if it works in english it works for others languages so it is necessary to be careful
Title: Re: !Be careful when logging in! Post by: Dudeperfect on February 20, 2018, 05:59:15 PM Thanks for updating but it is something that is going on since last 2 years and it is sad that advance platforms like Google are misused for such attacks and even Google approves it without verifying the same. However, in such situation, I think it is our responsibility not only to protect ourselves but also to build awareness about it to help others to stay safe.
* PunyCode Domain Detection (https://chrome.google.com/webstore/detail/punycode-domain-detection/fkenopinnpinfcjneoanjoimhkmdcjne) : I haven't used this extension before but I think this will definitely help us to detect Punycode domains used while phishing attacks. Title: Re: !Be careful when logging in! Post by: Tipestry on February 20, 2018, 06:06:41 PM Both of those sites are down as of now. I hope not many people got scammed while they lasted.
This type of thing is one of the reasons we need a way to leave comments on any site, to warn people about this stuff. Title: Re: !Be careful when logging in! Post by: chel0 on February 21, 2018, 12:39:57 AM Newbie here. I am new in this bitcoin forum so I haven't binance account number yet. Anyway, thank you for sharing the fake website, it would be of great help to us newbies in our future exchange or trading. It reminds us all to be vigilant all the time.
Title: Re: !Be careful when logging in! Post by: thehien05bk on February 21, 2018, 01:14:40 AM Great warning! thanks for your info!
Title: Re: !Be careful when logging in! Post by: TryNinja on February 21, 2018, 01:29:34 AM Thats a new threat level that I havent though of yet. Is that possible? Can you really combine different alphabets in the address bar? You may want to check this reddit post: https://www.reddit.com/r/CryptoCurrency/comments/7ykzar/be_careful_of_spoof_exchanges_would_you_have/I have never seen a Cyrillic address or any other alphabet except latin letters. Maybe some other users can give us some more info A quick comment about the issue: Quote URL spoofing is a very, very serious problem. The fact that you can even use other non-latin alphabets such as Cyrillic in URLs, results in ultra-sophisticated scam scenarios that are almost impossible to detect. quote: "It is possible to register domains such as ‘xn--pple-43d.com’, which is equivalent to ‘apple.com’. It may not be obvious at first glance, but ‘apple.com’ uses the Cyrillic ‘a’ (U+0430) rather than the ASCII “a” (U+0041)". The technical term for this is Homographic attacks. source (https://www.reddit.com/r/CryptoCurrency/comments/7ykzar/be_careful_of_spoof_exchanges_would_you_have/duhfa12/)Although most major browsers have a way of warning users, it only works if the URL uses a mixture of alphabets. How to protect yourself: Quote FYI there is a way to shield yourself somewhat from these attacks. source (https://www.reddit.com/r/CryptoCurrency/comments/7ykzar/be_careful_of_spoof_exchanges_would_you_have/duhe3zk/)Chrome: https://chrome.google.com/webstore/detail/punycode-alert/djghjigfghekidjibckjmhbhhjeomlda Firefox: Go to about:config and search for punycode, set network.IDN_show_punycode to true You can use for example this link to check if you are protected: http://www.umeå.se/ On Firefox the address bar will display the punycode, and on Chrome with the plugin it will show an alert on the bottom right corner. These are what I use, if someone else uses another browser and know other tips, share them! Title: Re: !Be careful when logging in! Post by: jerry0 on February 21, 2018, 03:40:49 AM The person that posted the picture with the 2 binance links... is the first one legit or not? Because when you google binance, you see that one with the ad and of course below that, there is the real binance site. The first link i was told if you click on it, it has binance site but it has a referral id etc. So is the first one real or not?
Title: Re: !Be careful when logging in! Post by: jamids on February 21, 2018, 04:31:04 AM That's crazy! Thanks for the info. How did you access this fake site so I know not to do that? It looks pretty real other than those 2 dots under the n. I saw this warning in facebook as well. Too many fake sites nowadays. This kind of sites usually appear when you search the site in google. The first one that appear is advertisement and if you don't check the URL and log in immediately, you will lose the coins in your account the moment you enter. This is the reason why I always book mark the sites that I use and access it from there always so that I can avoid using google to access the site because of this possibility. There is a case with myetherwallet as well changing the URL with special character. Title: Re: !Be careful when logging in! Post by: SevenSign on February 21, 2018, 07:56:26 AM https://i.imgur.com/Qf3nKiI.jpg Be very careful where you enter your login data! HTTPS means nothing anymore. Do you notice the small dots(.) below the letters n If you enter your password in a fake site like that your coins and money are gone. And always have 2 factor authentication activated. Stay Safe What a great knowledge you have share for us to be aware this source truly can help us. More power! God speed on you, all here! Title: Re: !Be careful when logging in! Post by: JohnLiPo on February 21, 2018, 09:56:03 AM How I can become a member??
I don't know how to recieve merit. Title: Re: !Be careful when logging in! Post by: TheBeardedBaby on February 21, 2018, 10:26:12 AM How I can become a member?? Wrong place to post.It's off topic here. Better check the Meta section. I don't know how to recieve merit. Guidance: Read this: https://bitcointalk.org/index.php?topic=2534500.0 And this : https://bitcointalk.org/index.php?topic=2818350.0 Title: Re: !Be careful when logging in! Post by: FierceChan on February 21, 2018, 10:45:12 AM Shouldn't the browsers change those extra Unicode symbols to ASCII ones? For example, like with russian domains they change to xn---yatta-yatta-yatta and you can see that?
Title: Re: !Be careful when logging in! Post by: bitmover on February 21, 2018, 10:56:57 AM How I can become a member?? I don't know how to recieve merit. Write good comments. If someone likes your post and click +Merit on the right, besides Quote, you will receive! Title: Re: !Be careful when logging in! Post by: bitperson on February 21, 2018, 11:56:22 AM Shouldn't the browsers change those extra Unicode symbols to ASCII ones? For example, like with russian domains they change to xn---yatta-yatta-yatta and you can see that? The browser has to convert internationalised domain names to ASCII (using the ACE prefix 'xn--' and Punycode), as Domain Name System labels can only contain ASCII (or, actually, a subset thereof). But the problem is that not all browsers make it very conspicuous to the user that an IDN has been encountered. Hence it's entirely possible for a user to click on a link without realising that the link uses an IDN rather than a traditional ASCII domain name. And phishers exploit this.Title: Re: !Be careful when logging in! Post by: sncc on February 21, 2018, 02:15:26 PM The person that posted the picture with the 2 binance links... is the first one legit or not? Because when you google binance, you see that one with the ad and of course below that, there is the real binance site. The first link i was told if you click on it, it has binance site but it has a referral id etc. So is the first one real or not? Well, as for that image the first one looks like the correct one, but it is not guaranteed since one can put different URL in the ad area so long as they pay a certain amount of advertisement fee.Even if it looks like the correct URL one may omit some small difference and it is not 100% sure. Therefore in general the link appeared in advertisement area is not necessarily always fake URL, but I would not click it. Title: Re: !Be careful when logging in! Post by: Watanabe1505_ on February 21, 2018, 02:31:37 PM Thank you for warning people when logging in this site. Personally I ignore all sites that appears through pop-up and never try to type any word on it once.
Title: Re: !Be careful when logging in! Post by: kingragnar on February 21, 2018, 03:18:24 PM Thanks for the info. There are people who do not have to deal with such little things especially when going to a site. and I am one of those people. Especially in this type of system we can lose the money we keep when hacking our account and losing all our money in our wallet
Title: Re: !Be careful when logging in! Post by: LeoSys on February 21, 2018, 03:21:30 PM 2FA is very important indeed. Use it and you will be safe. As we already saw, this is not 100% safe, but it's much safer comparing with no 2FA. Good luck
Title: Re: !Be careful when logging in! Post by: TheBeardedBaby on February 21, 2018, 11:30:56 PM 2FA is very important indeed. Use it and you will be safe. As we already saw, this is not 100% safe, but it's much safer comparing with no 2FA. Good luck When using the 2FA, as good authenticatior, send the code just before it expires, so no-one can intercept and abuse it in such short time. Title: Re: !Be careful when logging in! Post by: tuanytcc on February 22, 2018, 04:41:19 AM 2FA is very important indeed. Use it and you will be safe. As we already saw, this is not 100% safe, but it's much safer comparing with no 2FA. Good luck When using the 2FA, as good authenticatior, send the code just before it expires, so no-one can intercept and abuse it in such short time. Title: Re: !Be careful when logging in! Post by: nvq4596 on February 22, 2018, 05:45:08 AM https://i.imgur.com/Qf3nKiI.jpg damn, this is why you need bookmarkBe very careful where you enter your login data! HTTPS means nothing anymore. Do you notice the small dots(.) below the letters n If you enter your password in a fake site like that your coins and money are gone. And always have 2 factor authentication activated. Stay Safe Title: Re: !Be careful when logging in! Post by: unknownbtcoiner on February 24, 2018, 01:17:18 AM The whole btc ecosystem is vulnerable to be hacked by hackers what do you say about that?
Title: Re: !Be careful when logging in! Post by: bitmover on February 24, 2018, 02:14:31 AM The whole btc ecosystem is vulnerable to be hacked by hackers what do you say about that? I have to say that you don't know what you are talking about, and you have not even read bitcoin whitepaper. ;D Title: Re: !Be careful when logging in! Post by: dan1elsjack on February 24, 2018, 10:05:36 AM How one web-adress can contain english and cyrillic letters? It's terrific. Seems that any website can be faked easily.
Title: Re: !Be careful when logging in! Post by: Ulticon on February 24, 2018, 05:36:50 PM A great news but does allvthe websites with such dots scam?
Title: Re: !Be careful when logging in! Post by: neo444 on February 24, 2018, 05:48:52 PM You know other scam exchange sites like that ?
Title: Re: !Be careful when logging in! Post by: r.eristavi on February 24, 2018, 05:50:37 PM One of the worst things you could do is to use Google's search result redirection to the pages. Notice that most of us are typing with full of misspells. One misspelled word could lead to danger.
Best way would be bookmarking secured sites and accessing them through Bookmarks. Or simply typing full address instead. I would also Argue about the Chrome browser. It is cool and very nice to all of us making our lives so easy, but it is real evil in the end. In fact if you like Chrome why not using Chromium instead? Best regards to all. Title: Re: !Be careful when logging in! Post by: Maximo1 on February 25, 2018, 02:09:05 AM Thank you for reminding us here,,to be ,,extra careful in logging in.
Title: Re: !Be careful when logging in! Post by: seoincorporation on February 25, 2018, 02:35:09 AM https://i.imgur.com/Qf3nKiI.jpg Be very careful where you enter your login data! HTTPS means nothing anymore. Do you notice the small dots(.) below the letters n If you enter your password in a fake site like that your coins and money are gone. And always have 2 factor authentication activated. Stay Safe I've never seen something like that before!! Thanks for sharing. Just one question: what is the link source? How do you get it? Where did you see that? This is an extraordinary strong attempt os pishing, and this website should be reported immediately, so, if you can, copy here the address in order to other users can check out what's going on there. Again, thanks for sharing this. Title: Re: !Be careful when logging in! Post by: seoincorporation on February 25, 2018, 02:36:48 AM How I can become a member?? Wrong place to post.It's off topic here. Better check the Meta section. I don't know how to recieve merit. Guidance: Read this: https://bitcointalk.org/index.php?topic=2534500.0 And this : https://bitcointalk.org/index.php?topic=2818350.0 Title: Re: !Be careful when logging in! Post by: TryNinja on February 25, 2018, 02:45:47 AM I've never seen something like that before!! Thanks for sharing. Check the previous page (2)... (in specific, this post that I made) (https://bitcointalk.org/index.php?topic=2981675.msg30725043#msg30725043)Just one question: what is the link source? How do you get it? Where did you see that? This is an extraordinary strong attempt os pishing, and this website should be reported immediately, so, if you can, copy here the address in order to other users can check out what's going on there. Again, thanks for sharing this. It is going to be difficult for you to become a member if you post that kind of questions in the wrong place. One advise: read, learn, be patient. And make your comments where they belong. It's funny that you say that but you couldn't even read the whole thread before making a dumb question.You also made two posts in a row for no reason (which is against the rules)... Title: Re: !Be careful when logging in! Post by: AltCoinMarketing on February 25, 2018, 03:11:05 AM This has become an increasing problem. I found a group that works to fight off these spoofs/clones - they basically DDoS them back!
Title: Re: !Be careful when logging in! Post by: nguyenhongquan on February 25, 2018, 04:23:54 AM https://i.imgur.com/Qf3nKiI.jpg Be very careful where you enter your login data! HTTPS means nothing anymore. Do you notice the small dots(.) below the letters n If you enter your password in a fake site like that your coins and money are gone. And always have 2 factor authentication activated. Stay Safe What is your error?? Did you find out? Is it a virut or something else. I'm investing at Binance and I haven't attented about it when I logged in. Thanks for warning Title: Re: !Be careful when logging in! Post by: LolEnergyXglossy5 on February 25, 2018, 07:35:31 AM I knew it previously but well thank you to make it known to everyone
Title: Re: !Be careful when logging in! Post by: denis-z12 on February 25, 2018, 04:49:21 PM https://i.imgur.com/Qf3nKiI.jpg Be very careful where you enter your login data! HTTPS means nothing anymore. Do you notice the small dots(.) below the letters n If you enter your password in a fake site like that your coins and money are gone. And always have 2 factor authentication activated. Stay Safe I've never seen something like that before!! Thanks for sharing. Just one question: what is the link source? How do you get it? Where did you see that? This is an extraordinary strong attempt os pishing, and this website should be reported immediately, so, if you can, copy here the address in order to other users can check out what's going on there. Again, thanks for sharing this. Title: Re: !Be careful when logging in! Post by: natureltiqqy on February 25, 2018, 06:18:57 PM What is really interesting is a very sharp point of view in terms of security. Everyone has to be really careful. adding the original site to the favorites, then logging in from the favorites list.
Title: Re: !Be careful when logging in! Post by: Regana on February 25, 2018, 10:42:21 PM Being able to use special characters such as the example with Cyrillic 'a' (https://en.wikipedia.org/wiki/A_(Cyrillic)) in domain names is very dangerous, people attempting to earn others money is increasing every single day. HTTPS doesn't mean anything at all, so if you want to be safe, make sure you:
Bookmark the real wallets & exchanges you use, so you don't have to search and follow links. Analyze the URL inside the links before following any link, most likely you will detect a fraudulent website if the address looks weird in the bottom left hand of you browser when you hover a link. If you see the URL is not normal, don't follow the link, just access the site via google search or directly type it in the URL bar. These people is there waiting for any of us, whether experienced internet user or not to make a mistake. The only person who can save you from being scammed is yourself and your judgement. Title: Re: !Be careful when logging in! Post by: Shoesouse on February 26, 2018, 02:12:59 AM Oh my god you just saved me at pin point I am just getting ready to login
Title: Re: !Be careful when logging in! Post by: ToyMonster on February 26, 2018, 04:09:00 PM Thanks for the great information i am checking now for its truth
Title: Re: !Be careful when logging in! Post by: denis-z12 on February 26, 2018, 05:17:13 PM You are welcome guys, stay safe. Whenever I find some good content and good advice I will post it on this forum!
Title: Re: !Be careful when logging in! Post by: LeMoon on February 26, 2018, 06:38:24 PM Thank you. I didn't even know this was possible , it is so easy to fall for something like this.
I will just use bookmarks from now on. Title: Re: !Be careful when logging in! Post by: ElyTheBTC on February 26, 2018, 07:05:07 PM Very helpful post.Thanks for the info. ::) ???
Title: Re: !Be careful when logging in! Post by: Evelyn Abramson on February 27, 2018, 10:50:36 PM Thanks for reminding us here , very helpful post !
Title: Re: !Be careful when logging in! Post by: slackcryptoz on February 27, 2018, 11:34:08 PM Same as the legit trading exchange the fake too looks. It is our responsibility to be secure while logging in as suggested by the Op, we need to take extra care going through the URL and 2FA is a must when we have holding of different assets within the exchange wallet.
Title: Re: !Be careful when logging in! Post by: Rhoby10 on February 27, 2018, 11:45:50 PM https://i.imgur.com/Qf3nKiI.jpg Yes im careful when im logging in because i check yhe recaptcha of this oppurtunity and i see better and specially my password correct to log inBe very careful where you enter your login data! HTTPS means nothing anymore. Do you notice the small dots(.) below the letters n If you enter your password in a fake site like that your coins and money are gone. And always have 2 factor authentication activated. Stay Safe Title: Re: !Be careful when logging in! Post by: Q.E.D. on February 28, 2018, 12:03:54 AM And always have 2 factor authentication activated. 2FA is very important. additionally what i do is that i always bookmark these important websites and i open them through my bookmarks instead of clicking any links. also a quick way to notice a fake site for me has always been based on their "zoom"! usually browsers remember the zoom level that you used on the websites. for example (if you haven't already) zoom in while seeing this topic then visit one of bitcointalk mirror/fake websites such as this one: fake link: https://bitcointalk.org/index.php?topic=2981675.0 now you can clearly see it is a different website you are visiting based on its zoom alone. Plus some of the characters don't generate correctly, e.g. compare the title of this thread https://bitcointalk.org/index.php?topic=1845114.0 with https://bitcointalk.org/index.php?topic=1845114.0. Summer Wylie Title: Re: !Be careful when logging in! Post by: Harris Pay on February 28, 2018, 02:11:26 AM https://i.imgur.com/Qf3nKiI.jpg Be very careful where you enter your login data! HTTPS means nothing anymore. Do you notice the small dots(.) below the letters n If you enter your password in a fake site like that your coins and money are gone. And always have 2 factor authentication activated. Stay Safe thank you ! |
