[BEWARE!] Bitcointalk Credential Phishing Attack -- Targeting Collectibles

[blucepheus]

If I PM this (to my Mobile):

Code:

Test fake URL:
[url=thisurldoesntexistttt.com]https://bitcoin talk.org/index.php?topic=5339312[/url]

I receive this:

Test fake URL:
http://thisurldoesntexistttt.com

Theymos prevents fake Bitcointalk link descriptions.

PM to the user with a link that appears to be a valid page on the forum (hint, it's not -- see stage 2)

Can you forward me the PM? I'm curious why theymos' fix didn't work here. Was there a non-ascii character in the it?
If that's the case, maybe theymos can fix that too:

Done. I only did the ones that look really similar to Latin characters, and it only applies to English sections. It's done at display time, so it's retroactive.

Although it probably won't work for PMs that aren't in English.

Just forwarded to you. Thanks for investigating!

[LoyceV]

Just forwarded to you. Thanks for investigating!

This is what the URL looks like in your PM: https://bitcointalk.oгg/index.php?topic=5338607.60. But if I post it, theymos converts it into normal characters again so you don't see anything special.^** Click loyce.club/other/non-ascii.txt to see what it looks like after saving in a text file.
The word "bitcointalk" is normal, the "org" has a non-ascii character.

In Google's search field it looks almost normal: __________________________________________________

In DuckDuckGo's search field the different "r" is easier to notice: ___________________________________________________________________

If you search the fake "oгg" on Google, you'll notice the difference.
It's a smart trick, and I don't think it can be prevented without making PMs in certain languages impossible.

^** I was wrong, this character doesn't get replaced!