Bitcoin Forum
May 09, 2024, 04:31:41 AM *
News: Latest Bitcoin Core release: 27.0 [Torrent]
 
   Home   Help Search Login Register More  
Bitcoin Forum > Bitcoin > Bitcoin Discussion > BitcoinBoom.org STEALING WITCOINS
Pages: [1]
« previous topic next topic »
  Print  
Author Topic: BitcoinBoom.org STEALING WITCOINS  (Read 1388 times)
cuddlefish (OP)
Sr. Member
****
Offline Offline

Activity: 364
Merit: 250


View Profile
June 17, 2011, 12:01:41 AM
 #1
http://bitcoin.witcoin.com/p/1811/
They are using a XSRF exploit to forcibly upvote their post... giving themselves 0.01 (20 cents!!!) with each click of a link.

DO NOT CLICK THE LINK IN THAT POST.
1715229101
Hero Member
*
Offline Offline

Posts: 1715229101

View Profile Personal Message (Offline)

Ignore
1715229101
1715229101
Reply with quote  #2
1715229101
Report to moderator
1715229101
Hero Member
*
Offline Offline

Posts: 1715229101

View Profile Personal Message (Offline)

Ignore
1715229101
1715229101
Reply with quote  #2
1715229101
Report to moderator
1715229101
Hero Member
*
Offline Offline

Posts: 1715229101

View Profile Personal Message (Offline)

Ignore
1715229101
1715229101
Reply with quote  #2
1715229101
Report to moderator
"You Asked For Change, We Gave You Coins" -- casascius
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction.
1715229101
Hero Member
*
Offline Offline

Posts: 1715229101

View Profile Personal Message (Offline)

Ignore
1715229101
1715229101
Reply with quote  #2
1715229101
Report to moderator
1715229101
Hero Member
*
Offline Offline

Posts: 1715229101

View Profile Personal Message (Offline)

Ignore
1715229101
1715229101
Reply with quote  #2
1715229101
Report to moderator
bcearl
Full Member
***
Offline Offline

Activity: 168
Merit: 103



View Profile
June 17, 2011, 04:08:57 AM
 #2
Can't any forum administrator replace donation addresses by his own ones?
Misspelling protects against dictionary attacks NOT
fabianhjr
Sr. Member
****
Offline Offline

Activity: 322
Merit: 250


Do The Evolution


View Profile
June 17, 2011, 04:12:35 AM
 #3
Yes we can, no we won't. Honestly, we are helping you help us help us all, yeah. Smiley
Public Key
https://keyserver.pgp.com/vkd/DownloadKey.event?keyid=0x1A3011671C382664
http://pgp.mit.edu/pks/lookup?op=get&fingerprint=on&search=0x1A3011671C382664
bcearl
Full Member
***
Offline Offline

Activity: 168
Merit: 103



View Profile
June 17, 2011, 04:18:42 AM
 #4
Quote from: fabianhjr on June 17, 2011, 04:12:35 AM
Yes we can, no we won't. Honestly, we are helping you help us help us all, yeah. Smiley

I didn't intend to suspect anyone, but it's always good to think about possible vulnerabilities and discuss them openly.
Misspelling protects against dictionary attacks NOT
fabianhjr
Sr. Member
****
Offline Offline

Activity: 322
Merit: 250


Do The Evolution


View Profile
June 17, 2011, 11:39:35 AM
 #5
Don't worry about it. Tongue

Quite frankly this is just a temporary issue, one that is easily avoidable with the NoScript addon. So I can follow the heperlink and nothing will happen. Give it a try.
Public Key
https://keyserver.pgp.com/vkd/DownloadKey.event?keyid=0x1A3011671C382664
http://pgp.mit.edu/pks/lookup?op=get&fingerprint=on&search=0x1A3011671C382664
Pages: [1]
  Print  
Bitcoin Forum > Bitcoin > Bitcoin Discussion > BitcoinBoom.org STEALING WITCOINS
 « previous topic next topic »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!