Hi all,
My name is Mike and I am with the BITCOMSEC (Bitcoin Community Security) Project and we are a team of dedicated security researchers and developers who take our spare time in doing security research, audits and investigative reports that aim to bring security awareness to the Bitcoin and OSS communities.
Last time we did a report on the CryptoRush.in hack which I think was a major blow to the entire altcoin scene:
https://bitcomsec.true.io/bitcomsec/tracking-a-bitcoin-thief-cryptorush-hack/This week we have done an in depth investigative report into an elaborate and effective Coinbase.com and Blockchain.info based Phishing scam that many of you may have seen throughout the blockchain. It basically involved the use of sending bits of dust to a large number of addresses associated with Coinbase.com/Blockchain.info/BTC-e and other misc wallets.
We studied the phishers methodology, monitored their activity, and discovered their logs of compromised accounts (all the while reporting the compromised accounts/passwords/GUIDs/IPs to Blockchain.info and Coinbase.com). Finally, after exhaustive research we communicated with all of the VPS companies that the phishers used and effectively shut the entire operation down.
You can read all the details, with logs, evidence and screenshots of how we managed to infiltrate the phishing network:
https://bitcomsec.true.io/bitcomsec/coinbase_com-and-blockchain_info-bitcoin-wallet-phishing-scam-exposed/Thanks all.
And if you'd like to support us check out
https://bitcomsec.true.io for our donation address or upvote the following to help spread awareness:
http://www.reddit.com/r/Bitcoin/comments/2l7tk1/coinbasecom_and_blockchaininfo_bitcoin_wallet/https://news.ycombinator.com/item?id=8554708Regards,
Mike
EDIT: Typos
