Bitcoin Forum
May 25, 2019, 02:48:30 PM *
News: Latest Bitcoin Core release: 0.18.0 [Torrent] (New!)
 
   Home   Help Search Login Register More  
Pages: [1]
  Print  
Author Topic: Phishing Alert (mail-blockchain dot info)  (Read 1075 times)
escrow.ms
Legendary
*
Offline Offline

Activity: 1260
Merit: 1004

GPG Key-ID: B82BA7E1 | I don't use skype.


View Profile
July 04, 2014, 04:28:19 PM
 #1

http://who.is/whois/mail-blockchain.info



This domain is a redirect to hxxp://blokchaln.info

http://who.is/whois/blokchaln.info

Source:
Quote
                                                                                                                                                                                               
http://pastie.org/9355244
1558795710
Hero Member
*
Offline Offline

Posts: 1558795710

View Profile Personal Message (Offline)

Ignore
1558795710
Reply with quote  #2

1558795710
Report to moderator
1558795710
Hero Member
*
Offline Offline

Posts: 1558795710

View Profile Personal Message (Offline)

Ignore
1558795710
Reply with quote  #2

1558795710
Report to moderator
PLAY OVER 3000 GAMES
LIGHTNING FAST WITHDRAWALS
PLAY NOW
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
elviselvis101
Hero Member
*****
Offline Offline

Activity: 574
Merit: 500



View Profile
July 04, 2014, 04:59:53 PM
 #2

Got the same and was looking and clicking in my gmail to find "blokchaln.info" - but can not.
How did you find that info ?
SelbyTsang
Hero Member
*****
Offline Offline

Activity: 578
Merit: 500



View Profile
July 04, 2014, 05:04:04 PM
 #3

How did you find that info ?

You can check the full email header by the following steps.

https://support.google.com/mail/answer/22454?hl=en
Quote
1. Log in to Gmail
2. Open the message you'd like to view headers for.
3. Click the down arrow next to Reply, at the top of the message pane.
4. Select Show Original.
The full headers will appear in a new window.

elviselvis101
Hero Member
*****
Offline Offline

Activity: 574
Merit: 500



View Profile
July 04, 2014, 05:20:43 PM
 #4

How did you find that info ?

You can check the full email header by the following steps.

https://support.google.com/mail/answer/22454?hl=en
Quote
1. Log in to Gmail
2. Open the message you'd like to view headers for.
3. Click the down arrow next to Reply, at the top of the message pane.
4. Select Show Original.
The full headers will appear in a new window.

Thanks, I already did that but can not see the "misspelling" of blockchain ;

Delivered-To: @gmail.com
Received: by 10.64.225.226 with SMTP id rn2csp313690iec;
        Fri, 4 Jul 2014 09:14:33 -0700 (PDT)
X-Received: by 10.236.180.169 with SMTP id j29mr17834267yhm.47.1404490473381;
        Fri, 04 Jul 2014 09:14:33 -0700 (PDT)
Return-Path: <apache@blockchain.info>
Received: from mail.blockchain.info ([69.197.35.141])
        by mx.google.com with ESMTP id t65si34781667yhb.12.2014.07.04.09.14.32
        for <@gmail.com>;
        Fri, 04 Jul 2014 09:14:33 -0700 (PDT)
Received-SPF: fail (google.com: domain of apache@blockchain.info does not designate 69.197.35.141 as permitted sender) client-ip=69.197.35.141;
Authentication-Results: mx.google.com;
       spf=hardfail (google.com: domain of apache@blockchain.info does not designate 69.197.35.141 as permitted sender) smtp.mail=apache@blockchain.info;
       dmarc=fail (p=NONE dis=NONE) header.from=blockchain.info
Received: by mail.blockchain.info (Postfix, from userid 48)
   id 21F3A358194; Fri,  4 Jul 2014 09:14:32 -0700 (PDT)
To:@gmail.com
Subject: Blockchain - Transaction Received
Date: Fri, 4 Jul 2014 09:14:32 -0700
From: Blochchain <no-reply@blockchain.info>
Message-ID: <b623ebaff1423f01627539a43f104403@69.197.35.141>
X-Priority: 3
X-Mailer: PHPMailer 5.0.2 (phpmailer.codeworxtech.com)
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Content-Type: text/html; charset="UTF-8"

<!DOCTYPE html>
<html>
<head>
rohnearner
Sr. Member
****
Offline Offline

Activity: 350
Merit: 250

REAL-EYES || REAL-IZE || REAL-LIES||


View Profile WWW
July 04, 2014, 07:41:00 PM
 #5

Thanks for the heads up
I got similar mail to my mailing account few days ago , telling me that " My Wallet Account has been locked " Followed by a suspicious link asking me to click to unlock my account . I avoided clicking any link but I'm used to getting these mails now and I avoid clicking any link which appears even lil suspicious.
 


Justin00
Legendary
*
Offline Offline

Activity: 910
Merit: 1000


★YoBit.Net★ 350+ Coins Exchange & Dice


View Profile
July 04, 2014, 11:46:02 PM
 #6

I receive soooooo many emails from fake

-spendbitcoins
-btc-e
-coinedup
-blockchain.info

and many more. They all have the same JAR file virus attachment.

I don't even use some of those sites so they obviously just try there luck i'll be retarded and open the JAR file.


escrow.ms
Legendary
*
Offline Offline

Activity: 1260
Merit: 1004

GPG Key-ID: B82BA7E1 | I don't use skype.


View Profile
July 05, 2014, 05:16:55 AM
 #7

Got the same and was looking and clicking in my gmail to find "blokchaln.info" - but can not.
How did you find that info ?

If you will open mail-blockchain dot info in your browser it will redirect you to blokchln dot info where phishing page is hosted.
elviselvis101
Hero Member
*****
Offline Offline

Activity: 574
Merit: 500



View Profile
July 05, 2014, 08:36:27 PM
 #8

Got the same and was looking and clicking in my gmail to find "blokchaln.info" - but can not.
How did you find that info ?

If you will open mail-blockchain dot info in your browser it will redirect you to blokchln dot info where phishing page is hosted.

ahe, now I get it - missed the .info / .com part  Smiley
smoothie
Legendary
*
Offline Offline

Activity: 2128
Merit: 1016


LEALANA Monero Physical Silver Coins


View Profile
July 10, 2014, 12:46:03 AM
 #9

I've been getting these emails sporadically for the past 6-8 months. Always go in my trashcan lol.

███████████████████████████████████████

            ,╓p@@███████@╗╖,           
        ,p████████████████████N,       
      d█████████████████████████b     
    d██████████████████████████████æ   
  ,████²█████████████████████████████, 
 ,█████  ╙████████████████████╨  █████y
 ██████    `████████████████`    ██████
║██████       Ñ███████████`      ███████
███████         ╩██████Ñ         ███████
███████    ▐▄     ²██╩     a▌    ███████
╢██████    ▐▓█▄          ▄█▓▌    ███████
 ██████    ▐▓▓▓▓▌,     ▄█▓▓▓▌    ██████─
           ▐▓▓▓▓▓▓█,,▄▓▓▓▓▓▓▌          
           ▐▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▌          
    ▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓─  
     ²▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓╩    
        ▀▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▓▀       
           ²▀▀▓▓▓▓▓▓▓▓▓▓▓▓▀▀`          
                   ²²²                 
███████████████████████████████████████

. ★☆ WWW.LEALANA.COM        My PGP fingerprint is A764D833.                  History of Monero development Visualization ★☆ .
LEALANA  PHYSICAL MONERO COINS 999 FINE SILVER.
 
Pages: [1]
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!