Mrengage
Member
Offline
Activity: 420
Merit: 12
Globe-dex.com
|
|
May 11, 2019, 10:53:57 PM |
|
I noticed an increase in those type of fake projects with malicious/virus wallets, etc. Maybe it is a way of scammers to retaliate because their projects were caught. (?) This could very well be the reason behind all these fake ANN. It almost feels as like forum is under attack. Just look at recently created ones, all 5 of them... @OP they have created another topic: https://bitcointalk.org/index.php?topic=5141572.0
HyperCash just got brand new ann, I wish theymos could go after those idiots and wipe them out. I believe this proof will let you know that those 5 ACCs where HACKED and used to make those post in a roll. Please sir look in this issues. I know nothing about this and if I was to post that topic definitely I will reply to those who replied the post. For example I would have in courage them to invest. Now look at the other hand the post I didn't even see it and secondly it was deleted at that moment.
|
|
|
|
Mrengage
Member
Offline
Activity: 420
Merit: 12
Globe-dex.com
|
|
May 11, 2019, 11:05:57 PM |
|
I was unable to login this account today that this INCIDENT took place and its still today that the post was made. Definitely this ACCOUNT WAS HACKED!
Let me give you a benefit of doubt. Assuming you were not able to login, that means your password was changed right? Why is it that on the seclog, there is nothing to show that your password was change? BPIP too has no information showing that your password was changed recently Look I am no hater or anything like that, I am just trying to reason
I'm not trying to defend him but there is another user who earlier today reported that he was temporarily hacked: https://bitcointalk.org/index.php?topic=5141746I was due to send theymos a msg tomorrow and see if there is indeed unusual activity (as in different IP logs) around both accounts. Maybe that could work too. By the way i don't know much Spanish yet, so i don't know what really happened on that other guy's story but what i see on BPIP and Seclog is only one passowrd change that happened today Today at 09:26:50 AM - bbvedf - password changed And by change, it's just "password change" so i am wondering how he could have been able to access his account to change the password if he already wasn't able to log in. Yes because it showed me wrong password And secondly I don't logout my account from my browser It's always login but was surprised when I opened my browser and the ACC was logged out.
|
|
|
|
Mrengage
Member
Offline
Activity: 420
Merit: 12
Globe-dex.com
|
|
May 11, 2019, 11:12:29 PM |
|
I was unable to login this account today that this INCIDENT took place and its still today that the post was made. Definitely this ACCOUNT WAS HACKED!
Let me give you a benefit of doubt. Assuming you were not able to login, that means your password was changed right? Why is it that on the seclog, there is nothing to show that your password was change? BPIP too has no information showing that your password was changed recently Look I am no hater or anything like that, I am just trying to reason
I'm not trying to defend him but there is another user who earlier today reported that he was temporarily hacked: https://bitcointalk.org/index.php?topic=5141746I was due to send theymos a msg tomorrow and see if there is indeed unusual activity (as in different IP logs) around both accounts. Maybe that could work too. By the way i don't know much Spanish yet, so i don't know what really happened on that other guy's story but what i see on BPIP and Seclog is only one passowrd change that happened today Today at 09:26:50 AM - bbvedf - password changed And by change, it's just "password change" so i am wondering how he could have been able to access his account to change the password if he already wasn't able to log in. I get it you are basically doing your job to get scammers. Which is a good thing to know but right here sir I didn't make that post and this ACC was hacked I don't logout my account from my browser. But was surprised when I opened my browser what I saw was BITCOINTALK HOME PAGE. AND THE ACCOUNT WAS LOGOUT
|
|
|
|
morvillz7z
Legendary
Offline
Activity: 2352
Merit: 2128
Join the world-leading crypto sportsbook NOW!
|
|
May 11, 2019, 11:19:59 PM |
|
I get it you are basically doing your job to get scammers. Which is a good thing to know but right here sir I didn't make that post and this ACC was hacked I don't logout my account from my browser. But was surprised when I opened my browser what I saw was BITCOINTALK HOME PAGE. AND THE ACCOUNT WAS LOGOUT
I've sent theymos a PM about your case and bbvedf. If I get a confirmation from him that there was indeed an unusual activity surrounding your account (as in login from different IPs / devices), I will remove my negative tag, until then there is nothing much you can do. We have to wait.
|
|
|
|
Mrengage
Member
Offline
Activity: 420
Merit: 12
Globe-dex.com
|
|
May 11, 2019, 11:23:01 PM |
|
No problem... I will be waiting
|
|
|
|
Bitcoin_Arena
Copper Member
Legendary
Offline
Activity: 2114
Merit: 1814
฿itcoin for all, All for ฿itcoin.
|
|
May 12, 2019, 06:12:30 AM |
|
I get it you are basically doing your job to get scammers. Which is a good thing to know but right here sir I didn't make that post and this ACC was hacked I don't logout my account from my browser. But was surprised when I opened my browser what I saw was BITCOINTALK HOME PAGE. AND THE ACCOUNT WAS LOGOUT
Alright, let's wait for Theymos' response. If, you account was hacked then you really need to secure it and that starts with changing passwords which you haven't done up to now since the said hack.
|
|
|
|
DdmrDdmr
Legendary
Offline
Activity: 2478
Merit: 11036
There are lies, damned lies and statistics. MTwain
|
|
May 12, 2019, 02:52:35 PM Merited by morvillz7z (1) |
|
<…> Today at 09:26:50 AM - bbvedf - password changed And by change, it's just "password change" so i am wondering how he could have been able to access his account to change the password if he already wasn't able to log in. @bbvedf is from my local board, and has opened a thread there to try to get some help on the matter (see Ayuda con mi cuenta de BCT – it’s in Spanish though). The way he’s depicting the events, he claims that he was “silently hacked”. That is to say, someone gained access to his account, using his same credentials (not changing them), and published the fake Ann thread from his account. If true, that would be the best way to use an account for wrong doing, although it does constitute a very difficult case to prove. It also likely denotes a weak password management, as for this to happen without brute force, he would have to have used the same password in a crypto related site and have the password leaked from there. That alone is arguably irresponsible to some extent, but I’m pretty sure there are thousands of users here that use the same password on a couple of sites. The only possible way to move on with trying to clear @bbvedf’s claims (which are very similar to @Mrengage’s) would be for both of the to ask @theymos for their access logs for the date of events, and see what that may show. It certainly will not be conclusive, but may show something interesting (i.e. common IPs from Russia for example – again not conclusive, but opens a door to suspicion). Looking at the archived thread ( http://archive.fo/yfa4D), I believe tagging the accounts is correct (how not to, seeing the evidence), but it would be good to know if we are facing a couple of more intelligent account hacks here, where the accounts are only taken temporarily without changing the credentials. It’s likely nearly impossible to prove this were it to be true, but the IP logs could help to raise suspicion or drown it altogether. Of course making IP log retrieval a general habit would be a pain in the back side, and likely won’t be done except on an rare occasions, but perhaps it’s worth a go here to see what it may lead to.
|
|
|
|
Mrengage
Member
Offline
Activity: 420
Merit: 12
Globe-dex.com
|
|
May 12, 2019, 05:34:20 PM |
|
I get it you are basically doing your job to get scammers. Which is a good thing to know but right here sir I didn't make that post and this ACC was hacked I don't logout my account from my browser. But was surprised when I opened my browser what I saw was BITCOINTALK HOME PAGE. AND THE ACCOUNT WAS LOGOUT
Alright, let's wait for Theymos' response. If, you account was hacked then you really need to secure it and that starts with changing passwords which you haven't done up to now since the said hack. If I get to change this account password yesterday it won't give a proof that I wasn't the one that posted that topic I will need to get access to my IP logs from theymos so I compare the activities that took place on this account the day the account was hacked.
|
|
|
|
Mrengage
Member
Offline
Activity: 420
Merit: 12
Globe-dex.com
|
|
May 12, 2019, 05:39:43 PM |
|
<…> Today at 09:26:50 AM - bbvedf - password changed And by change, it's just "password change" so i am wondering how he could have been able to access his account to change the password if he already wasn't able to log in. @bbvedf is from my local board, and has opened a thread there to try to get some help on the matter (see Ayuda con mi cuenta de BCT – it’s in Spanish though). The way he’s depicting the events, he claims that he was “silently hacked”. That is to say, someone gained access to his account, using his same credentials (not changing them), and published the fake Ann thread from his account. If true, that would be the best way to use an account for wrong doing, although it does constitute a very difficult case to prove. It also likely denotes a weak password management, as for this to happen without brute force, he would have to have used the same password in a crypto related site and have the password leaked from there. That alone is arguably irresponsible to some extent, but I’m pretty sure there are thousands of users here that use the same password on a couple of sites. The only possible way to move on with trying to clear @bbvedf’s claims (which are very similar to @Mrengage’s) would be for both of the to ask @theymos for their access logs for the date of events, and see what that may show. It certainly will not be conclusive, but may show something interesting (i.e. common IPs from Russia for example – again not conclusive, but opens a door to suspicion). Looking at the archived thread ( http://archive.fo/yfa4D), I believe tagging the accounts is correct (how not to, seeing the evidence), but it would be good to know if we are facing a couple of more intelligent account hacks here, where the accounts are only taken temporarily without changing the credentials. It’s likely nearly impossible to prove this were it to be true, but the IP logs could help to raise suspicion or drown it altogether. Of course making IP log retrieval a general habit would be a pain in the back side, and likely won’t be done except on an rare occasions, but perhaps it’s worth a go here to see what it may lead to. Definitely I go by what you said here this alone can happen to more other users in the platform if it's not taking care of.
|
|
|
|
Mrengage
Member
Offline
Activity: 420
Merit: 12
Globe-dex.com
|
|
May 12, 2019, 05:42:41 PM |
|
Where I suspected this account was slightly hacked and used to make that post is where I open my browser and the account wasn't login rather it was just the normal bitcointalk.org interface I saw. I was surprised.
|
|
|
|
|
Mrengage
Member
Offline
Activity: 420
Merit: 12
Globe-dex.com
|
|
May 13, 2019, 03:37:17 PM |
|
Good work sir definitely this will just keep helping the community on not to encounter losses in future.
|
|
|
|
|
Lafu
Legendary
Offline
Activity: 3136
Merit: 3212
|
|
May 13, 2019, 08:42:57 PM Last edit: May 13, 2019, 09:02:06 PM by Lafu |
|
|
|
|
|
morvillz7z
Legendary
Offline
Activity: 2352
Merit: 2128
Join the world-leading crypto sportsbook NOW!
|
|
May 13, 2019, 10:22:12 PM |
|
They might have a bot to post all these threads. Take a look at my recent tags vs. newbie accounts who woke on April 28th. If that's true, I won't be able to keep up with all these fake threads, the Night King has won.
|
|
|
|
morvillz7z
Legendary
Offline
Activity: 2352
Merit: 2128
Join the world-leading crypto sportsbook NOW!
|
|
May 15, 2019, 06:46:22 PM Last edit: May 15, 2019, 08:00:52 PM by morvillz7z Merited by JeromeTash (2), DdmrDdmr (1) |
|
|
|
|
|
|
blurryeyed
Full Member
Offline
Activity: 670
Merit: 120
TIME TO BAN THE YOBIT SCAM!!
|
|
May 17, 2019, 03:28:18 PM |
|
Tagged & reported. These fake ANNs are becoming a bit of a problem....
|
|
|
|
morvillz7z
Legendary
Offline
Activity: 2352
Merit: 2128
Join the world-leading crypto sportsbook NOW!
|
|
May 17, 2019, 03:40:01 PM |
|
Tagged & reported. These fake ANNs are becoming a bit of a problem....
Yes, they've been a problem for a while now...and it's not just fake ANN, these people use compromised accounts which appears to be the bigger issue here. I honestly have no problem reporting a few of those every day, but not 20+, that's just crazy and takes way too much time and energy. Forum administration seems to be aware of the problem though, that's a positive sign! We're on it, thanks for tagging and reporting them while they run out of accounts. I've been locking a lot of these hacked accounts, a part of them are active accounts which the hacker silently used. We'll handle account recoveries as they come in. Curious how they picked the altcoin threads, seems pretty random.
|
|
|
|
JeromeTash (OP)
Legendary
Offline
Activity: 2310
Merit: 1256
Heisenberg
|
|
May 17, 2019, 11:06:03 PM |
|
Good work @Morvillz7z, looks like the mods are doing a good job right now and also responding in time to delete the scammer's threads once they are reported. I did try to report their GitHub profiles too including this one; https://github.com/MultiVACbut for some reason, it is not getting removed, I don't know why? I did include information about the scammer trying to spread malware alongside the virus total results. Does the process take a long time before the account gets removed?
|
|
|
|
|