Hacked account spreading malware - mizna

[Quickseller]

The account popadrac is posting links containing a mining [dot] ml (<<-- caution malware) referral link in various threads.

It looks like he has posted it 10 times so far and is replying to threads instead of creating new ones as he was previously. this was resolved

Now Mizna is doing the same thing.

[everaja]

The account popadrac is posting links containing a mining [dot] ml (<<-- caution malware) referral link in various threads.

It looks like he has posted it 10 times so far and is replying to threads instead of creating new ones as he was previously.

I guess there is a Bunch of People behind these Stuffs as before few days back i saw numerous Sr.Members account Posting this Type of [dot] ml link , This link contain cookie stealing Virus.
They were Posting from Numerous Sr.Members accounts in Various sections and Just Locking the Thread so that no one could comment in That.

I guess there is No hacked Sr.Member account with Them Now , so they are Now Using Members Account and i can guarantee that they have been getting a good Profit from Here that why they are not quitting.

[hilariousandco]

 Been handling what I can.

[Quickseller]

There is another one - https://bitcointalk.org/index.php?action=profile;u=405490 Mizna

He has made 18 posts so far with referral spam/malware. I will update the OP

[bram_vnl]

go to this topic for new spam/malware members https://bitcointalk.org/index.php?topic=1149215.msg12229060#msg12229060

[Cyrus]

There is another one - https://bitcointalk.org/index.php?action=profile;u=405490 Mizna

Handled everything that I could, reported some of his other spam posts and reported him in the Staff forum also.
Even temporarily moved a thread started by a newbie to a section I moderate just so I could delete more of his posts.
This is maybe the 5th or so hacked account spamming this site.
Unfortunately theymos doesn't blacklist URLs that often and I could only handle the reports in the Economy(minus Speculation) forum.

[Quickseller]

There is another one - https://bitcointalk.org/index.php?action=profile;u=405490 Mizna

Handled everything that I could, reported some of his other spam posts and reported him in the Staff forum also.
Even temporarily moved a thread started by a newbie to a section I moderate just so I could delete more of his posts.
This is maybe the 5th or so hacked account spamming this site.
Unfortunately theymos doesn't blacklist URLs that often and I could only handle the reports in the Economy(minus Speculation) forum.

Good job, and thanks for handling those posts/threads.

This is maybe the 5th or so hacked account spamming this site.

It has been more then that, I would guess the number is closer to 10, but if you count other sites the hacker owns then it would be a lot more. The hacker is apparently a serial scammer

[hilariousandco]

There's surely been more than ten of them. We were getting a couple daily a week or two ago but they seem to have slowed down now. Was out all day today but looks like cyrus handled all the ones I usually do. Easily handled over 500 reports on those infected accounts alone this month.

Wonder if this is his new line of attack:

Bitcoin Magazine Article: https://bitcoinmagazine.com/New_Bitmain_Antminer_S5_Plus_More_efficient_more_powerful.html

Antminer S5+: https://bitmaintech.com/productDetailc054.php?pid=0002015081407532655504JMKzsM067B[/url]


Do you guys really think this is the last batch?

Url was for bitmain.co not .com (which I removed).

[Quickseller]

Wonder if this is his new line of attack:

Bitcoin Magazine Article: https://bitcoinmagazine.com/New_Bitmain_Antminer_S5_Plus_More_efficient_more_powerful.html

Antminer S5+: https://bitmaintech.com/productDetailc054.php?pid=0002015081407532655504JMKzsM067B[/url]


Do you guys really think this is the last batch?

Url was for bitmain.co not .com (which I removed).

I am not sure if that is the same person or not, as this does not match his MO. However that is defiantly someone who is trying to steal money by posting phishing links. A quick look at the site on tor does not reveal anything that it tries to get you to download so I don't think it is trying to spread malware. It did let me "login" to "my" bitmaintech account using random letters as both my email and password (I didn't even enter a "@" symbol) to purchase an S5+

[Pathi]

As far as I can tell Bitmain does NOT have any s5+ in stock either.