|
Title: Coinbase.com and Blockchain.info Bitcoin Wallet Phishing Scam Exposed Post by: bitcomsec on November 04, 2014, 02:01:35 AM Hi all,
My name is Mike and I am with the BITCOMSEC (Bitcoin Community Security) Project and we are a team of dedicated security researchers and developers who take our spare time in doing security research, audits and investigative reports that aim to bring security awareness to the Bitcoin and OSS communities. Last time we did a report on the CryptoRush.in hack which I think was a major blow to the entire altcoin scene: https://bitcomsec.true.io/bitcomsec/tracking-a-bitcoin-thief-cryptorush-hack/ This week we have done an in depth investigative report into an elaborate and effective Coinbase.com and Blockchain.info based Phishing scam that many of you may have seen throughout the blockchain. It basically involved the use of sending bits of dust to a large number of addresses associated with Coinbase.com/Blockchain.info/BTC-e and other misc wallets. We studied the phishers methodology, monitored their activity, and discovered their logs of compromised accounts (all the while reporting the compromised accounts/passwords/GUIDs/IPs to Blockchain.info and Coinbase.com). Finally, after exhaustive research we communicated with all of the VPS companies that the phishers used and effectively shut the entire operation down. You can read all the details, with logs, evidence and screenshots of how we managed to infiltrate the phishing network: https://bitcomsec.true.io/bitcomsec/coinbase_com-and-blockchain_info-bitcoin-wallet-phishing-scam-exposed/ Thanks all. And if you'd like to support us check out https://bitcomsec.true.io for our donation address or upvote the following to help spread awareness: http://www.reddit.com/r/Bitcoin/comments/2l7tk1/coinbasecom_and_blockchaininfo_bitcoin_wallet/ https://news.ycombinator.com/item?id=8554708 Regards, Mike EDIT: Typos Title: Re: Coinbase.com and Blockchain.info Bitcoin Wallet Phishing Scam Exposed Post by: Maged on November 04, 2014, 02:14:23 AM Good on 'ya for immediately bringing this to the attention of those services. When it comes to this kind of issue, time is of the essence. Everyone did a great job of handling this!
Title: Re: Coinbase.com and Blockchain.info Bitcoin Wallet Phishing Scam Exposed Post by: bitcomsec on November 04, 2014, 02:23:08 AM Good on 'ya for immediately bringing this to the attention of those services. When it comes to this kind of issue, time is of the essence. Everyone did a great job of handling this! Thank you so much for the kind words. We hope by doing these reports, and shutting down these operations people will break out of the apathy in regards to Bitcoin thefts and begin pursuing it more often than not. A bit shout out to BitcoinVPS and Apexy.com for shutting down the phishers networks. Also a shout out to Blockchain.info staff for working with us and quickly handling the information we were able to provide them as we followed the phishers from server to server. reg.ru/2domains.ru however is blatantly accepting of this behavior and have ignored my emails regarding the attackers use of their domain registrar and VPS servers for the scams. Title: Re: Coinbase.com and Blockchain.info Bitcoin Wallet Phishing Scam Exposed Post by: H.W.Z on November 04, 2014, 02:06:11 PM Well done. Once issues come out, the ppl in this great community will stand up to fight against these type of phishing scams or other scams.
Title: Re: Coinbase.com and Blockchain.info Bitcoin Wallet Phishing Scam Exposed Post by: Piston Honda on November 04, 2014, 03:41:45 PM Wow, you'd would have thought (or hoped) that larger legit sites like this wouldn't be pulling this sort of thing...disturbing.
Title: Re: Coinbase.com and Blockchain.info Bitcoin Wallet Phishing Scam Exposed Post by: BittBurger on November 04, 2014, 03:59:15 PM Is Changetip supported on this forum software?
Is anything supported on this forum software? -B- |