Bitcoin Forum
May 27, 2024, 07:02:53 AM *
News: Latest Bitcoin Core release: 27.0 [Torrent]
 
   Home   Help Search Login Register More  
Bitcoin Forum > Economy > Marketplace > Service Discussion > BitMit - is traffic being redirected for nefarious reasons? Phishing attack?
Pages: [1]
« previous topic next topic »
  Print  
Author Topic: BitMit - is traffic being redirected for nefarious reasons? Phishing attack?  (Read 2235 times)
No_2 (OP)
Hero Member
*****
Offline Offline

Activity: 901
Merit: 1033


BTC: the beginning of stake-based public resources


View Profile
July 20, 2013, 10:11:20 PM
 #1
Been having issues connecting to BitMit from a number of different locations over the last week. Now Chrome reports the following:

Quote
You attempted to reach www.bitmit.net, but instead you actually reached a server identifying itself as ssl2305.cloudflare.com. This may be caused by a misconfiguration on the server or by something more serious. An attacker on your network could be trying to get you to visit a fake (and potentially harmful) version of www.bitmit.net.

You should not proceed, especially if you have never seen this warning before for this site.

However downforme reports the site is up: http://www.downforeveryoneorjustme.com/bitmit.net. But I'm not sure if they are just testing for a ping response (or similar) from the domain.

Is someone trying to subvert traffic to the site? Possibly for nefarious acticvities such as phishisng. Or is it just down.

Can anyone better at diagnosing this type of issue provide some insight.
Carlton Banks
Legendary
*
Offline Offline

Activity: 3430
Merit: 3074



View Profile
July 20, 2013, 10:16:34 PM
 #2
Nefarious reasons. Google sucks. In the least possibly polite sense of the term "sucks".

Edit: possibly more to it than I thought, Firefox is flagging it as an "Untrusted Domain". Google still sucks, however.
Vires in numeris
No_2 (OP)
Hero Member
*****
Offline Offline

Activity: 901
Merit: 1033


BTC: the beginning of stake-based public resources


View Profile
July 20, 2013, 11:35:07 PM
 #3
Quote from: Carlton Banks on July 20, 2013, 10:16:34 PM
Nefarious reasons. Google sucks. In the least possibly polite sense of the term "sucks".

Edit: possibly more to it than I thought, Firefox is flagging it as an "Untrusted Domain". Google still sucks, however.

Can you give more details on what you mean?

Internet explorer is also reporting issues with the site's security:

Quote
The security certificate presented by this website was issued for a different website's address.

Security certificate problems may indicate an attempt to fool you or intercept any data you send to the server.
iCEBREAKER
Legendary
*
Offline Offline

Activity: 2156
Merit: 1072


Crypto is the separation of Power and State.


View Profile WWW
July 21, 2013, 12:08:38 AM
 #4
CloudFail seems borked right now.  I can't get to Bitfunder or BTC Guild.

██████████
█████████████████
██████████████████████
█████████████████████████
████████████████████████████
████████████████████████████
████████████████████████████████
████████████████████████████████
██████████████████████████████████
██████████████████████████████████
██████████████████████████████████
█████████████████████████████████
████████████████████████████████
████████████████████████████████
█████████████
██████████████
████████████████████████████
█████████████████████████
██████████████████████
█████████████████
██████████
Monero
"The difference between bad and well-developed digital cash will determine
whether we have a dictatorship or a real democracy."  David Chaum 1996
"Fungibility provides privacy as a side effect."  Adam Back 2014
Buy and sell XMR near you
P2P Exchange Network
Buy XMR with fiat
Is Dash a scam?
No_2 (OP)
Hero Member
*****
Offline Offline

Activity: 901
Merit: 1033


BTC: the beginning of stake-based public resources


View Profile
July 21, 2013, 12:08:43 AM
 #5
Ok, posted about this to their support here:

https://bitcointalk.org/index.php?topic=41592.msg2770719#msg2770719
No_2 (OP)
Hero Member
*****
Offline Offline

Activity: 901
Merit: 1033


BTC: the beginning of stake-based public resources


View Profile
July 21, 2013, 12:10:30 AM
 #6
Quote from: iCEBREAKER on July 21, 2013, 12:08:38 AM
CloudFail seems borked right now.  I can't get to Bitfunder or BTC Guild.


Ah, thanks for that. That could fit. Chrome's more detailed expliantion states:

Quote
...Another possible reason is that the server is set up to return the same certificate for multiple websites, including the one you are attempting to visit, even though that certificate is not valid for all of those websites. Google Chrome can say for sure that you reached ssl2305.cloudflare.com, but cannot verify that that is the same site as www.bitmit.[]net which you intended to reach. If you proceed, Chrome will not check for any further name mismatches.

Could simply be a configuration error on their part then...
Pages: [1]
  Print  
Bitcoin Forum > Economy > Marketplace > Service Discussion > BitMit - is traffic being redirected for nefarious reasons? Phishing attack?
 « previous topic next topic »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!