Bitcoin Forum
March 29, 2024, 07:47:21 AM *
News: Latest Bitcoin Core release: 26.0 [Torrent]
 
   Home   Help Search Login Register More  
Pages: « 1 [2] 3 »  All
  Print  
Author Topic: I was hacked with the Fake Binance  (Read 547 times)
undeadbitcoiner
Sr. Member
****
Offline Offline

Activity: 896
Merit: 272


Undeadbitcoiner Will not DIE until 1BTC=50K


View Profile WWW
January 30, 2018, 10:55:27 PM
 #21

Some Advise according to my experience and knowledge,

Never Google to login Crypto Exchange, Forex, Stocks and Bank website
If you frequently Use just bookmark if you are lazzzzzzzzzzzzy if not type proper Secured website
Never Hold the amount of Crypto in Exchange which you can't Loose
Always better option for saving your crypto is in offline wallet which is properly encrypted and save your backup in several different location.

Exchange is never safe, Not only hacking there are so many example of shutdown of exchanges so Please just leave that amount of Crypto which you are able to loose in Exchange Wallet rest please save your personal hand.

No Obligation to anyone this is 100000% my opinion
Thank Good Luck

1711698441
Hero Member
*
Offline Offline

Posts: 1711698441

View Profile Personal Message (Offline)

Ignore
1711698441
Reply with quote  #2

1711698441
Report to moderator
1711698441
Hero Member
*
Offline Offline

Posts: 1711698441

View Profile Personal Message (Offline)

Ignore
1711698441
Reply with quote  #2

1711698441
Report to moderator
"I'm sure that in 20 years there will either be very large transaction volume or no volume." -- Satoshi
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction.
1711698441
Hero Member
*
Offline Offline

Posts: 1711698441

View Profile Personal Message (Offline)

Ignore
1711698441
Reply with quote  #2

1711698441
Report to moderator
1711698441
Hero Member
*
Offline Offline

Posts: 1711698441

View Profile Personal Message (Offline)

Ignore
1711698441
Reply with quote  #2

1711698441
Report to moderator
shinratensei_
Legendary
*
Offline Offline

Activity: 3052
Merit: 1024


Leading Crypto Sports Betting & Casino Platform


View Profile
January 30, 2018, 10:58:55 PM
 #22

Phishing sites started to use this method, using non latin characters, that look like latin characters, on domain names to fake the site. Beware about this method on all sites you use for trading and instead of google search or clicking links, manually type the site names.
You're not the only one fell into the trap like this and not only Binance, Myetherwallet also has the same kind of phising site. Only 1 careless second you can lose everything you earned for years. You should be more careful next time to not give any free money for hackers and lazy fucking guys just wanna hack money from other people anymore.

exactly, I think we should be more careful and educate people to avoid this problem!
This has happened to me in so many times, this is familiar with mew's problem. There are so many scammers are trying to copying or at least make the same domain site to fool us. I ever meet the same  domain but after I was clicking it and it redirects me to the fake site. that's why we must check it for twice or even third times.

..Stake.com..   ▄████████████████████████████████████▄
   ██ ▄▄▄▄▄▄▄▄▄▄            ▄▄▄▄▄▄▄▄▄▄ ██  ▄████▄
   ██ ▀▀▀▀▀▀▀▀▀▀ ██████████ ▀▀▀▀▀▀▀▀▀▀ ██  ██████
   ██ ██████████ ██      ██ ██████████ ██   ▀██▀
   ██ ██      ██ ██████  ██ ██      ██ ██    ██
   ██ ██████  ██ █████  ███ ██████  ██ ████▄ ██
   ██ █████  ███ ████  ████ █████  ███ ████████
   ██ ████  ████ ██████████ ████  ████ ████▀
   ██ ██████████ ▄▄▄▄▄▄▄▄▄▄ ██████████ ██
   ██            ▀▀▀▀▀▀▀▀▀▀            ██ 
   ▀█████████▀ ▄████████████▄ ▀█████████▀
  ▄▄▄▄▄▄▄▄▄▄▄▄███  ██  ██  ███▄▄▄▄▄▄▄▄▄▄▄▄
 ██████████████████████████████████████████
▄▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▄
█  ▄▀▄             █▀▀█▀▄▄
█  █▀█             █  ▐  ▐▌
█       ▄██▄       █  ▌  █
█     ▄██████▄     █  ▌ ▐▌
█    ██████████    █ ▐  █
█   ▐██████████▌   █ ▐ ▐▌
█    ▀▀██████▀▀    █ ▌ █
█     ▄▄▄██▄▄▄     █ ▌▐▌
█                  █▐ █
█                  █▐▐▌
█                  █▐█
▀▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▀█
▄▄█████████▄▄
▄██▀▀▀▀█████▀▀▀▀██▄
▄█▀       ▐█▌       ▀█▄
██         ▐█▌         ██
████▄     ▄█████▄     ▄████
████████▄███████████▄████████
███▀    █████████████    ▀███
██       ███████████       ██
▀█▄       █████████       ▄█▀
▀█▄    ▄██▀▀▀▀▀▀▀██▄  ▄▄▄█▀
▀███████         ███████▀
▀█████▄       ▄█████▀
▀▀▀███▄▄▄███▀▀▀
..PLAY NOW..
Kavallo
Full Member
***
Offline Offline

Activity: 395
Merit: 129



View Profile
January 30, 2018, 11:58:25 PM
 #23

I cannot believe something like that can happen! So basically google offers you to click on a website where Binance is written with Korean alphabet where the "i" of Binance has a little dot below which is not an "i"? And this send you to the phishing site, right?
I feel Google should be held accountable for that...
marketcoin2 (OP)
Newbie
*
Offline Offline

Activity: 61
Merit: 0


View Profile
January 31, 2018, 12:52:32 AM
 #24

I cannot believe something like that can happen! So basically google offers you to click on a website where Binance is written with Korean alphabet where the "i" of Binance has a little dot below which is not an "i"? And this send you to the phishing site, right?
I feel Google should be held accountable for that...

right, that "i" was two days ago, which was mentioned in that blog! For me the dot was below n and it fooled me!

Currently, the link is being redirected to the main website! which is really strange! It sounds like the hackers now redirecting the link true their server to avoid people knowing about them!


(https://www.xn--binace-zt7b.com/), hold you mouse pointer on the link and look for the bottom left corner of your browser, you can see the"." under n in their fake binance.com! I am now sure actually that they are redirecting to the main to avoid losing their phishing method!

This redirecting happened recently!

MintCondition
Legendary
*
Offline Offline

Activity: 1147
Merit: 1007



View Profile
January 31, 2018, 01:04:41 AM
 #25

Some Advise according to my experience and knowledge,

Never Google to login Crypto Exchange, Forex, Stocks and Bank website
If you frequently Use just bookmark if you are lazzzzzzzzzzzzy if not type proper Secured website
Never Hold the amount of Crypto in Exchange which you can't Loose
Always better option for saving your crypto is in offline wallet which is properly encrypted and save your backup in several different location.

Exchange is never safe, Not only hacking there are so many example of shutdown of exchanges so Please just leave that amount of Crypto which you are able to loose in Exchange Wallet rest please save your personal hand.

No Obligation to anyone this is 100000% my opinion
Thank Good Luck
Try to invest on buying trezor to have a secured savings other that leaving it on mew or exchanges, it's much safer that keep on putting our private keys, and always bookmark most recent exchange or site to avoid phising sites, scammers were everywhere so be careful.

Dart18
Sr. Member
****
Offline Offline

Activity: 1400
Merit: 259


View Profile
January 31, 2018, 01:05:07 AM
 #26

Thanks for the information.
Bookmark will be the answer and they are always telling this with trading and wallet websites. Bookmark as soon as you can so that just one letter typed in the URL will get you to the right place.
This phising methods have been really active since there is a lot of money involved with crypto currency.
Let us all be careful on what we will open. A triple check is a must now.
Tactical Genius
Full Member
***
Offline Offline

Activity: 434
Merit: 102


Leading Cryptocurrency and Blockchain Company


View Profile WWW
January 31, 2018, 01:42:09 AM
 #27

Sorry about that but then you have to learn to be very vigilante.In fact i use a protocol which i follow strictly when logging into most of the exchange sites i have accounts on.No messing around else whilst you are working hard to make money,an unscrupulous person somewhere is learning how to steal your money.

layoutph
Sr. Member
****
Offline Offline

Activity: 1386
Merit: 255


View Profile WWW
January 31, 2018, 03:01:51 AM
 #28

You can take revenge, now that we see that philsting domain redirects to a ref link of the hacker, you can report that link to Binance to investigate that referral link owner. Or this story is just a fabricated so you can insert your ref link?

Are you sure the fake link you provided is a phishing link? I opened it on a VM and it just redirects me to the real binance, but with a referral link.

302 redirect brought me to binance.com/?ref=40581024
Dread Pirate Roberts
Sr. Member
****
Offline Offline

Activity: 1484
Merit: 326


View Profile WWW
January 31, 2018, 03:11:53 AM
 #29

Well that is very fatal how you transfers money to the website without ensure link before .
And i think any exchange now requires turn auth f2a before login . Deposit and withdraw .
Sorry for your loss dude.
Nerman
Full Member
***
Offline Offline

Activity: 364
Merit: 107


View Profile
January 31, 2018, 03:31:19 AM
 #30

Wow this is new. As a Binance user, thank you for the warning, Luckily I did not experience this one because I just usually google Binance.

Thanks for the information.
Bookmark will be the answer and they are always telling this with trading and wallet websites. Bookmark as soon as you can so that just one letter typed in the URL will get you to the right place.
This phising methods have been really active since there is a lot of money involved with crypto currency.
Let us all be careful on what we will open. A triple check is a must now.

I agree, I am bookmarking the correct website as I speak. I never thought that these scammers/hackers will think of something like this. Traders will need to be more vigilant this days as this scumbags are thinking of new ways how to victimize people.
Dread Pirate Roberts
Sr. Member
****
Offline Offline

Activity: 1484
Merit: 326


View Profile WWW
January 31, 2018, 03:37:06 AM
 #31

Wow this is new. As a Binance user, thank you for the warning, Luckily I did not experience this one because I just usually google Binance.

Thanks for the information.
Bookmark will be the answer and they are always telling this with trading and wallet websites. Bookmark as soon as you can so that just one letter typed in the URL will get you to the right place.
This phising methods have been really active since there is a lot of money involved with crypto currency.
Let us all be careful on what we will open. A triple check is a must now.

I agree, I am bookmarking the correct website as I speak. I never thought that these scammers/hackers will think of something like this. Traders will need to be more vigilant this days as this scumbags are thinking of new ways how to victimize people.

I agree . anyway in sending the money sure also my eyes will go straight to the www before doing anything.
maybe he rushes and just realized after he sent. or maybe he's sleeping less than out concentration. bit sad to loss like that way.
entrepmind23
Sr. Member
****
Offline Offline

Activity: 644
Merit: 261


View Profile
January 31, 2018, 03:48:18 AM
 #32

Those phishing sites usually appear in the top ads of google so if you always use a site, always bookmark it especially if it involves money because these sites are usually the target of phishers. There have been many phishing attempts every where whether it is in e-mail or in google so we should always be vigilant when it comes to sites and triple check the URL. MEW has a warning always at the top because there are so many victims of being phished copying their site. There is a chrome extension called Cryptonite by Metacert. When you access a site, a green bar appear at the top if it is a verified crypto site. You can search it in the chrome webstore.

                 ░▒▓▓▓▓▓▓▓▓▓▒▒░
           ░▒█████████████████████▒░
         ▓███████████████████████████▓░
      ░███████████████▓░▒███████████████░
     ▓██████████▓▓▒░        ▒▒▓▓██████████
   ░███▓                               ▒███▒
  ░████               ▒▒▒               ████▒
 ░█████░           ░███████░            █████▒
 ██████░          ░██      ██▒          ██████
░██████░          ██       ██           ██████▒
▓██████           ██░ ░   ░██           ███████
▓██████         ████████████████        ███████
▓██████        █████████████████        ███████
░██████▒       ███████████████       ░██████▓
 ███████       █████████████████       ▓██████
 ░███████       ████████████████      ▓██████▒
  ▒███████▒       ░ ░     ░ ░       ░███████▒
   ░████████▒                     ▒████████▒
     ▓████████▓░               ░▓█████████
      ░██████████▓░          ▓██████████░
         ▓██████████▒     ▒██████████▓░
           ░▒██████████▒▓█████████▓░
                 ░▒▓▓▓▓▓▓▓▓▓▒▒░
marketcoin2 (OP)
Newbie
*
Offline Offline

Activity: 61
Merit: 0


View Profile
January 31, 2018, 03:01:10 PM
 #33

You can take revenge, now that we see that philsting domain redirects to a ref link of the hacker, you can report that link to Binance to investigate that referral link owner. Or this story is just a fabricated so you can insert your ref link?

Are you sure the fake link you provided is a phishing link? I opened it on a VM and it just redirects me to the real binance, but with a referral link.

302 redirect brought me to binance.com/?ref=40581024

The ref number keep changing, too. The story is true, I will report the binance.com, ASAP. Here is the explanation for redirecting I posted yesterday:

Currently, the link is being redirected to the main website! which is really strange! It sounds like the hackers now redirecting the link true their server to avoid people knowing about them!


(https://www.xn--binace-zt7b.com/), hold you mouse pointer on the link and look for the bottom left corner of your browser, you can see the"." under n in their fake binance.com! I am now sure actually that they are redirecting to the main to avoid losing their phishing method!

This redirecting happened recently!


Oilacris
Hero Member
*****
Offline Offline

Activity: 2982
Merit: 609


Leading Crypto Sports Betting & Casino Platform


View Profile
January 31, 2018, 03:57:30 PM
 #34

Well that is very fatal how you transfers money to the website without ensure link before .
And i think any exchange now requires turn auth f2a before login . Deposit and withdraw .
Sorry for your loss dude.
If you do try to read up you would able to find out that OP didnt lose up money since he did able to change password it directly when the time he realized that he was being phished by that site.I have checked now on google search and same as being said by most people here it is directly going to the original site with referral link.
Those phishing sites usually appear in the top ads of google so if you always use a site, always bookmark it especially if it involves money because these sites are usually the target of phishers. There have been many phishing attempts every where whether it is in e-mail or in google so we should always be vigilant when it comes to sites and triple check the URL. MEW has a warning always at the top because there are so many victims of being phished copying their site. There is a chrome extension called Cryptonite by Metacert. When you access a site, a green bar appear at the top if it is a verified crypto site. You can search it in the chrome webstore.
If we do know these indications we are most likely not to be easily hacked or phished by somebody.Talking about MEW i do really love their caution message pop-up on the site which is really helpful on people to keep reminders on accesing the legit site and avoiding phishing sites.

..Stake.com..   ▄████████████████████████████████████▄
   ██ ▄▄▄▄▄▄▄▄▄▄            ▄▄▄▄▄▄▄▄▄▄ ██  ▄████▄
   ██ ▀▀▀▀▀▀▀▀▀▀ ██████████ ▀▀▀▀▀▀▀▀▀▀ ██  ██████
   ██ ██████████ ██      ██ ██████████ ██   ▀██▀
   ██ ██      ██ ██████  ██ ██      ██ ██    ██
   ██ ██████  ██ █████  ███ ██████  ██ ████▄ ██
   ██ █████  ███ ████  ████ █████  ███ ████████
   ██ ████  ████ ██████████ ████  ████ ████▀
   ██ ██████████ ▄▄▄▄▄▄▄▄▄▄ ██████████ ██
   ██            ▀▀▀▀▀▀▀▀▀▀            ██ 
   ▀█████████▀ ▄████████████▄ ▀█████████▀
  ▄▄▄▄▄▄▄▄▄▄▄▄███  ██  ██  ███▄▄▄▄▄▄▄▄▄▄▄▄
 ██████████████████████████████████████████
▄▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▄
█  ▄▀▄             █▀▀█▀▄▄
█  █▀█             █  ▐  ▐▌
█       ▄██▄       █  ▌  █
█     ▄██████▄     █  ▌ ▐▌
█    ██████████    █ ▐  █
█   ▐██████████▌   █ ▐ ▐▌
█    ▀▀██████▀▀    █ ▌ █
█     ▄▄▄██▄▄▄     █ ▌▐▌
█                  █▐ █
█                  █▐▐▌
█                  █▐█
▀▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▀█
▄▄█████████▄▄
▄██▀▀▀▀█████▀▀▀▀██▄
▄█▀       ▐█▌       ▀█▄
██         ▐█▌         ██
████▄     ▄█████▄     ▄████
████████▄███████████▄████████
███▀    █████████████    ▀███
██       ███████████       ██
▀█▄       █████████       ▄█▀
▀█▄    ▄██▀▀▀▀▀▀▀██▄  ▄▄▄█▀
▀███████         ███████▀
▀█████▄       ▄█████▀
▀▀▀███▄▄▄███▀▀▀
..PLAY NOW..
Kavallo
Full Member
***
Offline Offline

Activity: 395
Merit: 129



View Profile
January 31, 2018, 09:51:09 PM
 #35

I cannot believe something like that can happen! So basically google offers you to click on a website where Binance is written with Korean alphabet where the "i" of Binance has a little dot below which is not an "i"? And this send you to the phishing site, right?
I feel Google should be held accountable for that...

right, that "i" was two days ago, which was mentioned in that blog! For me the dot was below n and it fooled me!

Currently, the link is being redirected to the main website! which is really strange! It sounds like the hackers now redirecting the link true their server to avoid people knowing about them!


(https://www.xn--binace-zt7b.com/), hold you mouse pointer on the link and look for the bottom left corner of your browser, you can see the"." under n in their fake binance.com! I am now sure actually that they are redirecting to the main to avoid losing their phishing method!

This redirecting happened recently!


Very clever. This way they can carry out a sort of "plausible deniability", claiming it has always redirected only to the correct sire. And they can perhaps avoid losing their google ranking and indexing. And whenever they feel in the mood again they can switch back the link yo their phishing site.
marketcoin2 (OP)
Newbie
*
Offline Offline

Activity: 61
Merit: 0


View Profile
January 31, 2018, 11:16:04 PM
Last edit: January 31, 2018, 11:56:19 PM by marketcoin2
 #36

I cannot believe something like that can happen! So basically google offers you to click on a website where Binance is written with Korean alphabet where the "i" of Binance has a little dot below which is not an "i"? And this send you to the phishing site, right?
I feel Google should be held accountable for that...

right, that "i" was two days ago, which was mentioned in that blog! For me the dot was below n and it fooled me!

Currently, the link is being redirected to the main website! which is really strange! It sounds like the hackers now redirecting the link true their server to avoid people knowing about them!


(https://www.xn--binace-zt7b.com/), hold you mouse pointer on the link and look for the bottom left corner of your browser, you can see the"." under n in their fake binance.com! I am now sure actually that they are redirecting to the main to avoid losing their phishing method!

This redirecting happened recently!


Very clever. This way they can carry out a sort of "plausible deniability", claiming it has always redirected only to the correct sire. And they can perhaps avoid losing their google ranking and indexing. And whenever they feel in the mood again they can switch back the link yo their phishing site.

Exactly, i think they can hack people time to time and collect some coin here and there! I hope people read and take necessary precautions.
criz2fer
Full Member
***
Offline Offline

Activity: 672
Merit: 127


View Profile
January 31, 2018, 11:56:50 PM
 #37

I would suggest that you should bookmark the real binance site to avoid again logging into these phishing  site that could take all your investment injust an instant or it can also hack your email if you have same password with it. Also try checking the coinmarketcap to see the legit sites of exchangers for your references

filtyfrank251
Member
**
Offline Offline

Activity: 364
Merit: 10

The Exchange for EOS Community


View Profile
February 01, 2018, 01:43:21 PM
 #38

To avoid having to log in to fake websites of commercial sites, type the name of the trade page for the first time then save the bookmark of the browser you are using and the next time you log into the merchant site just open the bookmark and log in to your account. That's one way I usually use to avoid logging in to fake business sites.

▐|   EOS Exchange   |▌          The Exchange for the EOS Community!          ▐|   EOSex   |▌
                    ICO: 15th October to 20th November  |  Free EXP Tokens: Join Bounty!                    
Whitepaper               ANN Thread               Telegram               Twitter               Mobile
Lucius
Legendary
*
Offline Offline

Activity: 3192
Merit: 5543


Fortis Fortuna Adiuvat⚔️


View Profile WWW
February 01, 2018, 02:14:11 PM
 #39

It is not something new,hackers use Google ads to place their phishing sites on number one search results based on key words.Since cryptocurrency is very popular these days,many users lost their money by downloading fake wallets like Electrum or to log in to fake sites.Unfortunately "mighty" Google do not check to whom they sell advertisements,it is important for them to take money first and for deceived users they have report page where you can report phishing sites.

https://safebrowsing.google.com/safebrowsing/report_phish/?hl=en


..JAMBLER.io..Create Your Bitcoin Mixing
Business Now for   F R E E 
▄█████████████████████████████
█████████████████████████
████▀████████████████████
███▀█████▄█▀███▀▀▀██████
██▀█████▄█▄██████████████
██▄▄████▀▄▄▄▀▀▀▀▀▄▄██████
█████▄▄▄██████████▀▄████
█████▀▄█▄██████▀█▄█████
███████▀▄█▀█▄██▀█▄███████
█████████▄█▀▄█▀▄█████████
█████████████████████████
█████████████████████████
▀█████████████████████████████
█████████████████████████████████████████████████
.
      OUR      
PARTNERS

.
█████████████████████████████████████████████████
████▄
██
██
██
██
██
██
██
██
██
██
██
████▀
▄█████████████████████████████
████████▀▀█████▀▀████████
█████▀█████████████▀█████
████████████████████████
███████████████▄█████████
█████████████████████████
█████████████████████████
█████████████████████████
███████████████▀█████████
████████████████████████
█████▄█████████████▄█████
████████▄▄█████▄▄████████
▀█████████████████████████████
█████████████████████████████████████████████████
.
   INVEST   
BITCOIN

.
█████████████████████████████████████████████████
████▄
██
██
██
██
██
██
██
██
██
██
██
████▀
jerry0
Full Member
***
Offline Offline

Activity: 1736
Merit: 186


View Profile
February 01, 2018, 04:32:17 PM
 #40

Can someone explain why when you type in binance on google or other similar sites the first link or two links that shows up on the top are the google ads links with the supposed site?  Why has those not been taken down?  Because if you are not careful, you could easily click on it like the original poster.
Pages: « 1 [2] 3 »  All
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!