Bitcoin Forum
December 06, 2016, 10:26:30 AM *
News: To be able to use the next phase of the beta forum software, please ensure that your email address is correct/functional.
 
   Home   Help Search Donate Login Register  
Pages: [1]
  Print  
Author Topic: BitcoinBoom.org STEALING WITCOINS  (Read 1174 times)
cuddlefish
Full Member
***
Offline Offline

Activity: 126



View Profile
June 17, 2011, 12:01:41 AM
 #1

http://bitcoin.witcoin.com/p/1811/
They are using a XSRF exploit to forcibly upvote their post... giving themselves 0.01 (20 cents!!!) with each click of a link.

DO NOT CLICK THE LINK IN THAT POST.

Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1481019990
Hero Member
*
Offline Offline

Posts: 1481019990

View Profile Personal Message (Offline)

Ignore
1481019990
Reply with quote  #2

1481019990
Report to moderator
1481019990
Hero Member
*
Offline Offline

Posts: 1481019990

View Profile Personal Message (Offline)

Ignore
1481019990
Reply with quote  #2

1481019990
Report to moderator
bcearl
Full Member
***
Offline Offline

Activity: 168



View Profile
June 17, 2011, 04:08:57 AM
 #2

Can't any forum administrator replace donation addresses by his own ones?

Misspelling protects against dictionary attacks NOT
fabianhjr
Sr. Member
****
Offline Offline

Activity: 322


Do The Evolution


View Profile
June 17, 2011, 04:12:35 AM
 #3

Yes we can, no we won't. Honestly, we are helping you help us help us all, yeah. Smiley

bcearl
Full Member
***
Offline Offline

Activity: 168



View Profile
June 17, 2011, 04:18:42 AM
 #4

Yes we can, no we won't. Honestly, we are helping you help us help us all, yeah. Smiley

I didn't intend to suspect anyone, but it's always good to think about possible vulnerabilities and discuss them openly.

Misspelling protects against dictionary attacks NOT
fabianhjr
Sr. Member
****
Offline Offline

Activity: 322


Do The Evolution


View Profile
June 17, 2011, 11:39:35 AM
 #5

Don't worry about it. Tongue

Quite frankly this is just a temporary issue, one that is easily avoidable with the NoScript addon. So I can follow the heperlink and nothing will happen. Give it a try.

Pages: [1]
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!