Bitcoin Forum
June 17, 2021, 11:43:52 PM *
News: Latest Bitcoin Core release: 0.21.1 [Torrent]
 
  Home Help Search Login Register More  
  Show Posts
Pages: [1] 2 3 4 5 6 7 8 9 »
1  Economy / Scam Accusations / [Scam]: Fake UNI 200 Airdrop (apps might contain malware too) on: January 17, 2021, 01:05:46 AM
What happened:: Fake UNI 200 Airdrop

Website:
Code:
https://uniswap-ico.com/

Archived: https://archive.is/OIuGE



Code:
Whois Record for UnisWap-Ico.com
Registrant WhoisGuard Protected
Registrant Org WhoisGuard, Inc.
Registrant Country pa
Registrar NAMECHEAP INC NameCheap, Inc.
IANA ID: 1068
URL: http://www.namecheap.com
Whois Server: whois.namecheap.com

(p)
Registrar Status clientTransferProhibited
Dates Created on 2021-01-16
Expires on 2022-01-16
Updated on 0000-12-31
  
Name Servers HAL.NS.CLOUDFLARE.COM (has 17,840,966 domains)
JANET.NS.CLOUDFLARE.COM (has 17,840,966 domains)

  
Tech Contact WhoisGuard Protected
WhoisGuard, Inc.
P.O. Box 0823-03411,
Panama, Panama, pa

(p) (f)
IP Address 104.21.81.17 - 2 other sites hosted on this server

And what makes this very dangerous is that it will ask you to download.

This might contains malware if you download and execute it, (don't take the risk here not worth it).

Code:
https://uniswap-ico.com/uniswap.exe

2  Economy / Scam Accusations / [Scam]: Fake XRP explorer on: November 30, 2020, 12:15:05 AM
What Happened: Fake XRP explorer

Website:
Code:
https://bithomp.work/




Archived: https://archive.is/r9bCO

Code:
Registrant REDACTED FOR PRIVACY
Registrant Org REDACTED FOR PRIVACY
Registrant Country pa
Registrar NameCheap, Inc.
IANA ID: 1068
URL: https://www.namecheap.com/
Whois Server: whois.namecheap.com

(p)
Registrar Status addPeriod, clientTransferProhibited
Dates 3 days old
Created on 2020-11-26
Expires on 2021-11-26
Updated on 2020-11-26
 
Name Servers NS1.ZOMRO.NET. (has 29,650 domains)
NS2.ZOMRO.RU. (has 79 domains)

 
Tech Contact REDACTED FOR PRIVACY
REDACTED FOR PRIVACY,
REDACTED FOR PRIVACY, REDACTED FOR PRIVACY, REDACTED FOR PRIVACY, REDACTED FOR PRIVACY
IP Address 185.235.131.163 - 1 other site is hosted on this server

 
IP Location Netherlands - Drenthe - Meppel - Bilzard Private Enterprise[/quote]

Criminals are now venturing into creating a fake XRP exploring like the scam site above.

Again, the looks are very similar, but the real and true site is: https://bithomp.com/explorer/
3  Economy / Scam Accusations / [Scam]: Coinbase fake giveaway on: November 18, 2020, 02:23:31 AM
What happened: Fake Coinbase giveaway

Website:
Code:
https://coinbase2x.online/



Archived: https://archive.is/tU3EA

Code:
Registrar Namecheap
IANA ID: 1068
URL: https://namecheap.com
Whois Server: whois.namecheap.com

(p)
Registrar Status addPeriod, clientTransferProhibited, serverTransferProhibited
Dates Created on 2020-11-17
Expires on 2021-11-17
Updated on 2020-11-17
  
Name Servers DNS1.NAMECHEAPHOSTING.COM (has 964,527 domains)
DNS2.NAMECHEAPHOSTING.COM (has 964,527 domains)

  
Tech Contact
IP Address 198.54.115.96 - 339 other sites hosted on this server

So if you happened to see this website or if someone message you to join, please don't, this is as clear as a scam.
4  Economy / Scam Accusations / [Scam]: Fake SushiSwapClassic on: October 22, 2020, 12:25:50 AM
What happened: Fake Sushiswapclassic website

Website:
Code:
https://sushiswapclasslc.org/



Archived: https://archive.is/Dqwbc

Code:
Registrant Org WhoisGuard, Inc.
Registrant Country pa
Registrar NameCheap, Inc.
IANA ID: 1068
URL: http://www.namecheap.com
Whois Server: whois.namecheap.com

(p)
Registrar Status serverTransferProhibited
Dates 7 days old
Created on 2020-10-14
Expires on 2021-10-14
Updated on 2020-10-14

Just look closely at the spelling of the fake website, it's hard to identify it in the beginning and you might fall for this trick, be careful.
5  Economy / Scam Accusations / [Scam]: Fake BTC giveaway by Chamath Palihapitiya on: October 12, 2020, 02:43:33 PM
What happened: Fake BTC giveaway by Chamath Palihapitiya

Website:
Code:
https://btccham.info/

Archived: https://archive.is/JNVjH



This is a fake BTC giveway, supposedly by Chamath Palihapitiya, CEO of Social Capital

BTC address: 1Cham1hgP6wD4SqyzP1cYhPYLDQoAvMY2W

Code:
Registrant Country pa
Registrar NameCheap, Inc
IANA ID: 1068
URL: www.namecheap.com
Whois Server: whois.namecheap.com

(p)
Registrar Status clientTransferProhibited, serverTransferProhibited
Dates 14 days old
Created on 2020-09-28
Expires on 2021-09-28
Updated on 2020-09-28
6  Economy / Scam Accusations / [Scam]: Fake Uniswap 10,000,000 Airdrop on: October 04, 2020, 12:24:38 PM
What happened: Fake Uniswap 10,000,000 Airdrop

Website:
Code:
https://freeuniswap.com/



Archive: https://archive.is/Ok6Fw

ETH address: 0x1f5b1aee0775fb44a3c2b8185d91afb8f0f613ad

And the hype continues about this UNI swap and scammers are very happy with it as they take advantage of these gullible newbies who are blindly trust them. So be careful and warn everyone around you not to fall for this.

Code:
Registrant Pavel Zuev
Registrant Org Private Person
Registrant Country ru
Registrar Registrar of domain names REG.RU LLC REGISTRAR OF DOMAIN NAMES REG.RU LLC
IANA ID: 1606
URL: https://www.reg.com,https://www.reg.ru,http://www.reg.ru
Whois Server: whois.reg.com

(p)
Registrar Status clientTransferProhibited
Dates 1 days old
Created on 2020-10-03
Expires on 2021-10-03
Updated on 2020-10-03
7  Economy / Scam Accusations / [Warning]: Fake Uniswap apps on Google Store on: October 02, 2020, 10:36:01 AM
What happened: A fake Uniswap apps on Google Store

Website:
Code:
https://play.google.com/store/apps/details?id=com.uniswap.app



Archive: https://archive.is/JG9pN

Note: Someone has already fallen for it,



https://twitter.com/TRNG_69/status/1311529654721949696

It shows that it has been downloaded 63 times already, so we might hear more crypto enthusiast coming out and claiming that they have been fallen victim from this malicious apps. So be careful when using Google Playstore, and don't blindly downloading any apps without verifying it.
8  Alternate cryptocurrencies / Altcoin Discussion / And this is how you make 'easy' money riding the Defi on: September 24, 2020, 01:20:20 AM
First step: Create a 4chan account (easy)



Second step: Buy a .finance domain (easy)
Third step: Make ERC20 token on mainnet (easy)
Fourth step: Do some coding and upload it to your newly registered domain. No worries even if it is not working. (easy)



Fifth step: Go back to your 4chan and shill (easy)

ETH address:
Code:
https://etherscan.io/token/0x411f0a2e2da53754ff5618512fa1c8b2b5695967

Website:
Code:
http://www.coconut.finance/

4Chan:
Code:
https://boards.4channel.org/biz/thread/22745851/coconut-airdrop

I hope you do get my message here.
9  Economy / Scam Accusations / [Scam]: Fake Atomic wallet thru Google Ads on: September 07, 2020, 12:44:17 AM
What Happened: Fake Atomic wallet

Website:
Code:
https://atomicwllet.io/



What makes it worst is that it is being displayed through Google ads



And as per domaintools, the website is just 3 days old.

So everyone needs to be careful, check everything, specially spelling, because it is really hard to differentiate it from the real website: https://atomicwallet.io/

Quote
Registrant Org   WhoisGuard, Inc.
Registrant Country   pa
Registrar   NameCheap, Inc
IANA ID: 1068
URL: www.namecheap.com
Whois Server: whois.namecheap.com

(p)
Registrar Status   addPeriod, clientTransferProhibited, serverTransferProhibited
Dates   3 days old
Created on 2020-09-03
Expires on 2021-09-03
Updated on 2020-09-06

https://whois.domaintools.com/atomicwllet.io
10  Alternate cryptocurrencies / Altcoin Discussion / CMC: Top DeFi Tokens by Market Capitalization on: July 21, 2020, 05:26:00 AM
Coinmarketcap now has a display for DeFi Tokens by Market Capitalization.

(https://coinmarketcap.com/defi/)

It's just how they define tokens to be DeFi though, And do you think it's a complete list or something is missing? I think this is great though, specially for those who are not familiar with this new hype is crypto market, so good job CZ (although sometimes I think he is becoming too powerful!).
11  Alternate cryptocurrencies / Altcoin Discussion / BTG: Bitcoin Gold suffers another 51% attack on: July 13, 2020, 03:47:21 AM
Take notice for Bitcoin Gold holders investors and traders and specially miners. You need to upgrade to the latest version if you haven't done so as there are a attack for the third time. This is critical so I suggest all parties concern should be aware of this critical issues.

There is an emergency update:

Emergency update 0.17.2

Quote
CRITICAL MESSAGE FROM BTG TEAM TO ALL POOLS, EXCHANGES, WALLETS, SERVICES, AND COMMUNITY RUNNING NODES

 

Please immediately upgrade your BTG Core full nodes to version 0.17.2, published July 2, 2020.

UPDATE: if you did not upgrade prior to July 10 at 14:00 UTC, you will also want to perform the command:
invalidateblock 00000000635620f22ba8694aea532d51619f8cd060f4e42e85db3cb3a5d1c29c

 

HOW TO UPGRADE:

1. You can use the pre-compiled binaries on Github, https://github.com/BTCGPU/BTCGPU/releases/tag/v0.17.2, or use the DOWNLOADS link you see above. Simply shut down your node, install the latest version, and start back up.

2. Manually upgrade from the latest code on the BTCGPU Github v0.17.2 tag (on 0.17 / master branch); full release notes here. If you are still at v0.15.2 and haven’t upgraded to 0.17, we have a backport version v0.15.3 tag (on 0.15 branch) including the same changes so you can keep your current configuration files.

 (Note: there were potentially breaking changes in the configuration file between v0.15 and v0.17*)

 

You can run this command in the console or bgold-cli to ensure you are immediately on the honest chain:

invalidateblock 00000000635620f22ba8694aea532d51619f8cd060f4e42e85db3cb3a5d1c29c

Note: a strong majority of the honest mining pools have already upgraded their code a week ago, and continue to mine on the honest chain.

The BTG Explorer at https://explorer.bitcoingold.org/ is on the honest chain. You can compare your most recent blockhash with the explorer to ensure you are on the honest chain.

To ask your node for the latest blockhash, give it the command:

 getbestblockhash

And compare it to the latest block on the BTG Explorer at https://explorer.bitcoingold.org/

 

====== EMERGENCY INFORMATION ======

We have just seen an extremely long attack chain of over 1300 blocks on July 10, 2020, against the BTG network which have been mined since July 1, 2020.

We detected this illicit activity early on and sent alerts to pools and exchanges to protect them; many closed their wallets over a week ago. We also supplied them with BTG version 0.17.2, which included a checkpoint at block 640650, hash 000000059ec8884fa4fbbdbe46c09cfb4ecba281dfa2351a05084e817c1200ae from July 2 at 2am UTC, mined by MiningPoolHub, a known honest block.

With this block checkpointed, the attacker’s chain could not take over, but this information was not public, and the attacker continued to mine. The attacker mined their secret chain for nearly 10 days, renting power from NiceHash to do so. Today, on July 10, the attacker released over 1300 blocks.

Because those attacking blocks are anchored at a block mined on July 1st (before the checkpoint), the honest pools and exchanges who are running the updated code automatically rejected the attacker’s chain.

It’s time for everyone else to upgrade their nodes to make sure they stay on the honest chain and to push your node onto the honest chain by using the simple command:

invalidateblock 00000000635620f22ba8694aea532d51619f8cd060f4e42e85db3cb3a5d1c29c

 If you use the Bitcoin Gold GUI, you can enter this command in the Debug Console. If you use the command line daemon, simply give this command to bgold-cli:

bgold-cli invalidateblock 00000000635620f22ba8694aea532d51619f8cd060f4e42e85db3cb3a5d1c29c

 This tells your node that the attacker’s version of the block at height 640650 invalid, and your node will immediately switch back to the honest version of the chain (perhaps after a short recalculation delay.)

 The majority of honest pool hashpower continues to mine on the honest chain.


https://bitcoingold.org/emergency-update-0-17-2/
12  Bitcoin / Bitcoin Discussion / Coinsquare CEO allegedly ordered its employees to make fake trades on: June 15, 2020, 01:44:43 AM
According to this, (https://www.vice.com/en_us/article/5dz35q/cryptocurrency-exchange-wash-trading-coinsquare)

Coinsquare CEO himself, Cole Diamond ordered his employees to make fake trades to give the impression that their trading exchanges has indeed lots of liquidity and performing and doing good. There is supposedly a leaked emails, Slack messages.

Quote
According to the material, Coinsquare was "wash trading," which means it was automatically buying and selling currency between accounts it controlled. The news provides evidence of a practice that is often suspected in the cryptocurrency world but rarely proven, and can draw attention from regulators.

"Turn it back on," one seemingly angry March 2019 Slack message from Coinsquare CEO Cole Diamond to other employees of the company read, referring to the code that managed internal trades after an employee switched it off, fearing retaliation from regulators.

We all know that this has been practice by low-tier exchanges, but we don't have proof yet. Tried to search this supposedly emails and messages to really see first hand, but so far can't find any.

And if this is true then its pretty damning evidence against Coinsquare and we will see how OSC (Ontario Securities Commission) will do, what are the punishments etc.
13  Economy / Gambling / My urge to go to land base casino in this lock down and how I fight it. on: May 06, 2020, 11:51:24 PM
Yesterday, for unknown reason, suddenly I feel the urge to gamble again. When the lock down was implemented here, land based casinos are close. I'm more of a physical casino player, however, I was not affected by the closure because I thought that this will just last for a week or two.

But yesterday was a different feeling though, their was like a feeling that I need to go to casino and play. Maybe it was just the effect of the boredom during this lock down. There are some mental stimulus, like my sister-in-law inadvertently says that he doesn't have any identification with her but his casino ids. LOL. Anyways, here is what I did to fight this inner demon within me.

1. Do some exercise, good thing about this lock down is that me and my kid age, 14 are doing some calisthenics and body weight exercises. So we did some reps and sets to keep my mind busy.

2. Netflix is your friend during this lock down.  Smiley. Watch movies that interest me.

3. I visualize myself totally stopping my gambling even after the lockdown. Yes, this is very tough on me, but I spend hours in my room doing some sort of mental visualization.

4. Talk to families, anything under the sun, bond with them, it is very relaxing.

5. Youtube. Search for inspirational video on how to quit gambling.

I don't know if you felt this feeling in this lock down. But for me it is real and I have to fight it back.

Do you guys have the same experience? How did you overcome it? Share your experience so that other gamblers will know how to respond.

Of course there are a lot of crypto based online game, yes I play online as well, but the land base casino is very different at least in my case.
14  Other / Beginners & Help / VictoryGate: A malicous mining botnet on: April 28, 2020, 10:54:38 AM
Quote

ESET researchers recently discovered a previously undocumented botnet that we have named VictoryGate. It has been active since at least May 2019 and, since then, three different variants of the initial module have been identified, in addition to approximately 10 secondary payloads that are downloaded from file hosting websites. The initial module is detected by ESET security products as MSIL/VictoryGate.

This botnet is composed mainly of devices in Latin America, specifically Peru, where over 90% of the compromised devices are located. We’ve been actively sinkholing several command and control (C&C) domains, allowing us to monitor this botnet’s activity. The combination of the sinkhole data and our telemetry data allows us to estimate the botnet’s size to be at least 35,000 devices.



So it looks like this botnet is specifically targeting Latin America, the good news is that it has been taken down partially, the bad news is that other machines may have compromise and could be used not just to mine Monero, but it could have release different payloads and possible that it can and will steal crypto information.

Eset recommended to used their online tool: https://www.eset.com/int/home/online-scanner/

So if you're in Latin American so may want to scan your machine specially if you have felt some basic symptoms like your PC is slowing down or some lagging executions.

Source
15  Other / Beginners & Help / Skype malicous phishing attempts uses Google's .app gTLD on: April 24, 2020, 03:59:27 AM
Remember this one Hackers started to exploit Zoom apps to spread malware?

Now cyber criminals are targeting Skype, another video and voice applications through sophisticated mode of attack.

- users will received a notification email "67519-81987@skype.[REDACTED EMAIL]"

- if the victim click this suspicious link, they will be redirected to:

Code:
hxxps://jhqvy[.]app[.]link/VAMhgP3Mi5
and finally
Code:
hxxps://skype-online0345[.]web[.]app



Quote
The threat actor has chosen to utilize a .app top-level domain to host their attack. This TLD is backed by Google to help app developers securely share their apps. A benefit of this top-level domain is that it requires HTTPS to connect to it, adding security on both the user’s and developer’s end, which is great…but not in this case. The inclusion of HTTPS means the addition of a lock to the address bar, which most users have been trained to trust. Because this phishing site is being hosted via Google’s .app TLD it displays this trusted icon.
Source here.
16  Economy / Exchanges / Making Self-Custody Easy: ShapeShift Acquires Portis on: April 17, 2020, 03:15:17 AM
Making Self-Custody Easy: ShapeShift Acquires Portis

Quote
ShapeShift today has announced our acquisition of Portis, an Israeli startup that built the leading Web3 wallet SDK for developers of crypto applications to easily integrate wallet functionality into their product. Portis accomplished three important objectives:

1) Client-side encryption, ensuring full self-custody.

2) Incredibly easy login, using the familiar email and password.

3) A focus on developers with a beautiful SDK for seamless integration.

Portis’ wallet provides a very simple and easy UX for end-users of crypto, but their actual target customer is other developers: the thousands of talented engineers all over the world building the future of finance, including most of the leading DeFi projects. Any developer can build their app with Portis’ wallet component, saving them time and complexity, while maintaining fidelity to self-custody for users.

https://medium.com/shapeshift-stories/making-self-custody-easy-shapeshift-acquires-portis-a9b3bbe63e6b

I haven't heard anything from ShapeShift as of late so I was surprised that they are now expanding their business by acquiring Portis. And perhaps they are focusing on the dev and integration side.
17  Other / Off-topic / Wappalyzer discloses security breach after hacker starts emailing users on: April 16, 2020, 12:43:12 AM
Maybe some of you have been using Wappalyzer chrome extensions or have been using their technology before and so I want to give everyone a heads-up.

Quote
Tech company Wappalyzer has disclosed a security incident this week after a hacker began emailing its customers and offering to sell Wappalyzer's database for $2,000.

"If you receive this e-mail it's because we get the full database of Wappalyzer, and your e-mail is on the database," the hacker, going by the name of CyberMath, wrote in an email sent to Wappalyzer customers this week.

"I'm selling the full .sql for 2000$ in Bitcoin," the hacker added, while also sharing screenshots of the stolen database files.



https://www.zdnet.com/article/wappalyzer-discloses-security-breach-after-hacker-starts-emailing-users/
18  Other / Off-topic / Ripple's Partner Sued for Cancelling Deal Over COVID-19 on: April 08, 2020, 01:10:13 PM
Ripple's Partner Sued for Cancelling Deal Over COVID-19

Quote
SoftBank, Ripple’s partner in the MoneyTap and PayPay-LINE deal, has cancelled its $9.6 bln deal with WeWork due to the coronavirus' effect on customers and now WeWork is suing the financial conglomerate.

Source

What are your thoughts about this one?

SoftBank reasons are:

- the corona virus pandemic has impacted their business their business
- WeWork is under criminal investigation and that's why they have distance themselves.

Do you think that is is a valid reason? Does WeWork has the chance to win or settle this out of court and they proceeded with the lawsuit?
19  Other / Beginners & Help / [WARNING]: Fake Trezor - https://login-trezor.io/ on: April 06, 2020, 01:10:10 AM
Another tricky and malicious and obviously fake Trezor website who's intention is to steal our mnemonic phrase.

Website:
Code:
https://login-trezor.io/

What makes it more tricky is that the look and feel of the website specially the .io extension domain name. Others might think this is legit and can fall for this trap every easily.

And the funny thing is that when you click "Choose your device to continue", it will automatically ask you to enter 24 seed as compare to the real trezor website wherein it would detect first if you have a hardware wallet connected.



And the domain was registered 13 days ago.

Code:
Whois Record for Login-Trezor.io
 Domain Profile
Registrant Org WhoisGuard, Inc.
Registrant Country pa
Registrar NameCheap, Inc
IANA ID: 1068
URL: www.namecheap.com
Whois Server: whois.namecheap.com

(p)
Registrar Status serverTransferProhibited
Dates 13 days old
Created on 2020-03-23
Expires on 2021-03-23
Updated on 2020-03-23

http://whois.domaintools.com/login-trezor.io

Archive here
20  Economy / Scam Accusations / [WARNING]: MALICIOUS JAXX.IO in CHROME Webstore on: April 02, 2020, 11:29:32 PM
Cyber criminals are using chrome webstore to spread malicious apps like Jaxx.

So this is a warning to Newbies, don't download this extensions.



Code:
https://chrome.google.com/webstore/detail/jaxx-wallet/pedokobimilhjemibclahcelgedmkgei

On the right side, you will see, Report Abuse, so I ask everyone to report so that it will be taken down. Here is the report link for convenience:

https://chrome.google.com/webstore/report/pedokobimilhjemibclahcelgedmkgei?hl=en&gl=US

It will take just a few minutes of your time.



Yes, adblock or ublock can help, but as you can see on the page, 257 have downloaded it already.
Pages: [1] 2 3 4 5 6 7 8 9 »
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!