Bitcoin Forum
October 17, 2017, 08:38:48 PM *
News: Latest stable version of Bitcoin Core: 0.15.0.1  [Torrent]. (New!)
 
   Home   Help Search Donate Login Register  
Pages: [1]
  Print  
Author Topic: Anyone else got this email from Bitcointalk.org?  (Read 954 times)
CaptainHerpDerp
Jr. Member
*
Offline Offline

Activity: 42


View Profile
March 18, 2015, 11:13:52 AM
 #1

I've had 2 so far today


Dear Users,

This mail was sent because you need install New Update for your browsers (Mozilla Firefox ,Internet Explorer,Chrome,...) for News updates on [Suspicious link removed] set Java Software for your Browsers click the following link:
https://www.bitcointalk.org ( update ) taken out

Regards,
The Bitcoin Forum Team.

I fritter and waste my hours in an offhand way
1508272728
Hero Member
*
Offline Offline

Posts: 1508272728

View Profile Personal Message (Offline)

Ignore
1508272728
Reply with quote  #2

1508272728
Report to moderator
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
shorena
Legendary
*
Offline Offline

Activity: 1386


ALL escrow is signed! https://keybase.io/verify


View Profile WWW
March 18, 2015, 11:18:05 AM
 #2

I've had 2 so far today


Dear Users,

This mail was sent because you need install New Update for your browsers (Mozilla Firefox ,Internet Explorer,Chrome,...) for News updates on [Suspicious link removed] set Java Software for your Browsers click the following link:
https://www.bitcointalk.org ( update ) taken out

Regards,
The Bitcoin Forum Team.

Nope, but Im sure its a phishing attempt.

arallmuus
Hero Member
*****
Offline Offline

Activity: 840


Extremely busy right now, less active :)


View Profile
March 18, 2015, 11:24:57 AM
 #3

I've had 2 so far today


Dear Users,

This mail was sent because you need install New Update for your browsers (Mozilla Firefox ,Internet Explorer,Chrome,...) for News updates on [Suspicious link removed] set Java Software for your Browsers click the following link:
https://www.bitcointalk.org ( update ) taken out

Regards,
The Bitcoin Forum Team.


I dont receive it, as I remember correctly that this forum will never send an email regarding the upgrade of your browser , beware of malware, it could be an attempt to steal your account, best thing to do is to hide your email address from your profile

EDGELESS.IO New Era Of Casino (0% Edge And Full Transparency)
JOIN THE ICO | JOIN THE DISCUSSION
CaptainHerpDerp
Jr. Member
*
Offline Offline

Activity: 42


View Profile
March 18, 2015, 11:26:44 AM
 #4

I've had 2 so far today


Dear Users,

This mail was sent because you need install New Update for your browsers (Mozilla Firefox ,Internet Explorer,Chrome,...) for News updates on [Suspicious link removed] set Java Software for your Browsers click the following link:
https://www.bitcointalk.org ( update ) taken out

Regards,
The Bitcoin Forum Team.


I dont receive it, as I remember correctly that this forum will never send an email regarding the upgrade of your browser , beware of malware, it could be an attempt to steal your account, best thing to do is to hide your email address from your profile

Yeah I thought it was suspect, Luckily I didn't click on anything but it looked legit as it had the address noreply@bitcointalk.org

I fritter and waste my hours in an offhand way
matt4054
Legendary
*
Offline Offline

Activity: 1372


BitcoinQueue.com


View Profile WWW
March 18, 2015, 11:36:57 AM
 #5

but it looked legit as it had the address noreply@bitcointalk.org

FYI, unless the (alleged) sender's domain has got SPF records and your mail server implements it, anyone can just change his 'From:' address to whatever he wants just by going to 'Settings...' in the mail client.

Actually bitcointalk.org *does* have an SPF record protecting it with a strict (-all) policy: according to standards, the phishing message should have been rejected, but your mail server probably doesn't enforce the requested policy. Funny thing is that a domain such as 'whitehouse.gov' uses a relaxed policy (~all), so phishing e-mails from 'whitehouse.gov' would end up in your spam folder at best Wink
CaptainHerpDerp
Jr. Member
*
Offline Offline

Activity: 42


View Profile
March 18, 2015, 11:41:06 AM
 #6

but it looked legit as it had the address noreply@bitcointalk.org

FYI, unless the (alleged) sender's domain has got SPF records and your mail server implements it, anyone can just change his 'From:' address to whatever he wants just by going to 'Settings...' in the mail client.

Actually bitcointalk.org *does* have an SPF record protecting it with a strict (-all) policy: according to standards, the phishing message should have been rejected, but your mail server probably doesn't enforce the requested policy. Funny thing is that a domain such as 'whitehouse.gov' uses a relaxed policy (~all), so phishing e-mails from 'whitehouse.gov' would en up in your spam folder at best Wink

Damn them all to hell!!  Grin oh well no harm done on this occasion, I'll probably get my dinner invitation to the whitehouse a bit later on  Tongue

I fritter and waste my hours in an offhand way
R2D221
Hero Member
*****
Offline Offline

Activity: 658



View Profile
March 18, 2015, 12:07:40 PM
 #7

Just as a side note, both Firefox and Chrome update themselves, as well as Internet Explorer, via Windows Update.

An economy based on endless growth is unsustainable.
OnkelPaul
Legendary
*
Offline Offline

Activity: 1045



View Profile
March 18, 2015, 12:15:21 PM
 #8

but it looked legit as it had the address noreply@bitcointalk.org

FYI, unless the (alleged) sender's domain has got SPF records and your mail server implements it, anyone can just change his 'From:' address to whatever he wants just by going to 'Settings...' in the mail client.

Actually bitcointalk.org *does* have an SPF record protecting it with a strict (-all) policy: according to standards, the phishing message should have been rejected, but your mail server probably doesn't enforce the requested policy.

SPF is a mixed blessing - as soon as you (legitimately) forward mails without completely rewriting the sender address, you get lost or rejected mails when you SPF handling is strict.
There's a workaround (SRS) which works mostly but makes some things unwieldy.
The other thing is that SPT does not protect the From: header (see http://www.openspf.org/FAQ/Envelope_from_scope), so this kind of phishing would still be possible.

Onkel Paul

Quickseller
Legendary
*
Offline Offline

Activity: 1190

#PathOfTotality


View Profile WWW
March 18, 2015, 01:28:21 PM
 #9

I am fairly certain that the fact that the forum automatically removed one of the links in your post I think it is fairly safe to say that the email is not from the forum and that clicking on the link in the body of the email will result to being directed to some malicious site, be it somewhere where you will be directed to download malware (most likely) or some phishing site.

I would recommend against clicking on any links you get in emails supposedly from the forum.

tidus1097
Sr. Member
****
Offline Offline

Activity: 364


View Profile
March 18, 2015, 02:35:32 PM
 #10

This is a obvious phishing attempt by some hacker. I would not do anything that the email instructs. Delete it, then delete your trash. You will end up getting everything you have stolen if you don't.

DeboraMeeks
Hero Member
*****
Offline Offline

Activity: 602


View Profile
March 18, 2015, 02:44:10 PM
 #11

Is and must be a hacking attempt in an event for you to click the link and get to somewhere else.
You should never click any links in such mails claiming for such things, and one more thing, didn't you think that what has the forum to do with the upgrade of your browser?
CaptainHerpDerp
Jr. Member
*
Offline Offline

Activity: 42


View Profile
March 18, 2015, 03:29:13 PM
 #12

Well thank you all for you input, I obviously knew it was suspish so would never click it, but perhaps posting it here will raise it to the attention of any unsuspecting person who might get one and click it. and now know better.


I'm sure everyone here is pretty up on security but It was somewhat convincing and could be very harmful.

I fritter and waste my hours in an offhand way
erikalui
Legendary
*
Offline Offline

Activity: 1106



View Profile WWW
March 18, 2015, 06:45:57 PM
 #13

Well thank you all for you input, I obviously knew it was suspish so would never click it, but perhaps posting it here will raise it to the attention of any unsuspecting person who might get one and click it. and now know better.


I'm sure everyone here is pretty up on security but It was somewhat convincing and could be very harmful.

It's because your email is visible to all members. You can probably hide it so that nobody could send you a phishing mail again.


      ▄▄▄█████████▄▄
   ▄██████████████████▄
 ▄██████████████████████▄
██████████████████████████▄
 ████████████████████████
    ▀▀▀▀██████████████████
       ████████████████████▄
      ██████████████████   ▀▀
      █████████████████ ▄▄█▀
      ██████████████████████▀
       ███████████████████▀
        ▀██████████████████▀
    ▄█████████████████████▀
  ▄██████████████████████▀
 ██████████████████████▀
  ▀█████████████████▀▀
     ▀▀████████▀▀▀


  ▄████████████████████████▄
{}
crazyearner
Legendary
*
Offline Offline

Activity: 1694



View Profile
March 19, 2015, 11:09:26 PM
 #14

Best thing to do when you get them emails. Report the headas an details of it to admins here so they can trace where come from and put a stop to it to take action on it.

Other than that simply delete and don't respond to it just remove do not click any the links within it as no doubt will end up leading to some fake look alike site requesting to put your login info and bam account gone.
Pages: [1]
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!