Bitcoin Forum
April 25, 2019, 02:59:35 PM *
News: Latest Bitcoin Core release: 0.17.1 [Torrent]
 
   Home   Help Search Login Register More  
Pages: [1]
  Print  
Author Topic: Anyone else got this email from Bitcointalk.org?  (Read 970 times)
CaptainHerpDerp
Newbie
*
Offline Offline

Activity: 42
Merit: 0


View Profile
March 18, 2015, 11:13:52 AM
 #1

I've had 2 so far today


Dear Users,

This mail was sent because you need install New Update for your browsers (Mozilla Firefox ,Internet Explorer,Chrome,...) for News updates on [Suspicious link removed] set Java Software for your Browsers click the following link:
https://www.bitcointalk.org ( update ) taken out

Regards,
The Bitcoin Forum Team.
1556204375
Hero Member
*
Offline Offline

Posts: 1556204375

View Profile Personal Message (Offline)

Ignore
1556204375
Reply with quote  #2

1556204375
Report to moderator
1556204375
Hero Member
*
Offline Offline

Posts: 1556204375

View Profile Personal Message (Offline)

Ignore
1556204375
Reply with quote  #2

1556204375
Report to moderator
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1556204375
Hero Member
*
Offline Offline

Posts: 1556204375

View Profile Personal Message (Offline)

Ignore
1556204375
Reply with quote  #2

1556204375
Report to moderator
1556204375
Hero Member
*
Offline Offline

Posts: 1556204375

View Profile Personal Message (Offline)

Ignore
1556204375
Reply with quote  #2

1556204375
Report to moderator
1556204375
Hero Member
*
Offline Offline

Posts: 1556204375

View Profile Personal Message (Offline)

Ignore
1556204375
Reply with quote  #2

1556204375
Report to moderator
shorena
Copper Member
Legendary
*
Offline Offline

Activity: 1484
Merit: 1288


No I dont escrow anymore.


View Profile WWW
March 18, 2015, 11:18:05 AM
 #2

I've had 2 so far today


Dear Users,

This mail was sent because you need install New Update for your browsers (Mozilla Firefox ,Internet Explorer,Chrome,...) for News updates on [Suspicious link removed] set Java Software for your Browsers click the following link:
https://www.bitcointalk.org ( update ) taken out

Regards,
The Bitcoin Forum Team.

Nope, but Im sure its a phishing attempt.
arallmuus
Hero Member
*****
Offline Offline

Activity: 994
Merit: 1005


View Profile
March 18, 2015, 11:24:57 AM
 #3

I've had 2 so far today


Dear Users,

This mail was sent because you need install New Update for your browsers (Mozilla Firefox ,Internet Explorer,Chrome,...) for News updates on [Suspicious link removed] set Java Software for your Browsers click the following link:
https://www.bitcointalk.org ( update ) taken out

Regards,
The Bitcoin Forum Team.


I dont receive it, as I remember correctly that this forum will never send an email regarding the upgrade of your browser , beware of malware, it could be an attempt to steal your account, best thing to do is to hide your email address from your profile
CaptainHerpDerp
Newbie
*
Offline Offline

Activity: 42
Merit: 0


View Profile
March 18, 2015, 11:26:44 AM
 #4

I've had 2 so far today


Dear Users,

This mail was sent because you need install New Update for your browsers (Mozilla Firefox ,Internet Explorer,Chrome,...) for News updates on [Suspicious link removed] set Java Software for your Browsers click the following link:
https://www.bitcointalk.org ( update ) taken out

Regards,
The Bitcoin Forum Team.


I dont receive it, as I remember correctly that this forum will never send an email regarding the upgrade of your browser , beware of malware, it could be an attempt to steal your account, best thing to do is to hide your email address from your profile

Yeah I thought it was suspect, Luckily I didn't click on anything but it looked legit as it had the address noreply@bitcointalk.org
matt4054
Legendary
*
Offline Offline

Activity: 1554
Merit: 1000


BitcoinQueue.com


View Profile WWW
March 18, 2015, 11:36:57 AM
 #5

but it looked legit as it had the address noreply@bitcointalk.org

FYI, unless the (alleged) sender's domain has got SPF records and your mail server implements it, anyone can just change his 'From:' address to whatever he wants just by going to 'Settings...' in the mail client.

Actually bitcointalk.org *does* have an SPF record protecting it with a strict (-all) policy: according to standards, the phishing message should have been rejected, but your mail server probably doesn't enforce the requested policy. Funny thing is that a domain such as 'whitehouse.gov' uses a relaxed policy (~all), so phishing e-mails from 'whitehouse.gov' would end up in your spam folder at best Wink
CaptainHerpDerp
Newbie
*
Offline Offline

Activity: 42
Merit: 0


View Profile
March 18, 2015, 11:41:06 AM
 #6

but it looked legit as it had the address noreply@bitcointalk.org

FYI, unless the (alleged) sender's domain has got SPF records and your mail server implements it, anyone can just change his 'From:' address to whatever he wants just by going to 'Settings...' in the mail client.

Actually bitcointalk.org *does* have an SPF record protecting it with a strict (-all) policy: according to standards, the phishing message should have been rejected, but your mail server probably doesn't enforce the requested policy. Funny thing is that a domain such as 'whitehouse.gov' uses a relaxed policy (~all), so phishing e-mails from 'whitehouse.gov' would en up in your spam folder at best Wink

Damn them all to hell!!  Grin oh well no harm done on this occasion, I'll probably get my dinner invitation to the whitehouse a bit later on  Tongue
R2D221
Hero Member
*****
Offline Offline

Activity: 658
Merit: 500



View Profile
March 18, 2015, 12:07:40 PM
 #7

Just as a side note, both Firefox and Chrome update themselves, as well as Internet Explorer, via Windows Update.

An economy based on endless growth is unsustainable.
OnkelPaul
Legendary
*
Offline Offline

Activity: 1043
Merit: 1002



View Profile
March 18, 2015, 12:15:21 PM
 #8

but it looked legit as it had the address noreply@bitcointalk.org

FYI, unless the (alleged) sender's domain has got SPF records and your mail server implements it, anyone can just change his 'From:' address to whatever he wants just by going to 'Settings...' in the mail client.

Actually bitcointalk.org *does* have an SPF record protecting it with a strict (-all) policy: according to standards, the phishing message should have been rejected, but your mail server probably doesn't enforce the requested policy.

SPF is a mixed blessing - as soon as you (legitimately) forward mails without completely rewriting the sender address, you get lost or rejected mails when you SPF handling is strict.
There's a workaround (SRS) which works mostly but makes some things unwieldy.
The other thing is that SPT does not protect the From: header (see http://www.openspf.org/FAQ/Envelope_from_scope), so this kind of phishing would still be possible.

Onkel Paul

Quickseller
Copper Member
Legendary
*
Offline Offline

Activity: 1764
Merit: 1473



View Profile WWW
March 18, 2015, 01:28:21 PM
 #9

I am fairly certain that the fact that the forum automatically removed one of the links in your post I think it is fairly safe to say that the email is not from the forum and that clicking on the link in the body of the email will result to being directed to some malicious site, be it somewhere where you will be directed to download malware (most likely) or some phishing site.

I would recommend against clicking on any links you get in emails supposedly from the forum.

......
.L I V E C O I N . N E T.
.
..PROFITBOX..
██  █████████████████████████
  █████████▄      ▄██████████
█████████████▄  ▄████████████
    █████████████████████████
  ██████████▀    ▀█ ▀████████
████  █████▀  ▄▄  ▀█  ▀██████
  ████████▀  ▄██▄  ▀█   ▀████
    ██████   ▀██▀   ██   ████
  █████████▄      ▄██████████
██  █████████▄  ▄████████████
  ███████████████████████████
██  █████████████████████████
  █████████████████████▀ ███
█████████████████████▀   ███
    █████████████▀     ████
  █████████████▀   ██    ████
████  █████▀     ██    ████
  ███████▀   ██    ██    ████
    █████    ██    ██    ████
  ███████    ██    ██    ████
██  █████    ██    ██    ████
  ███████████████████████████
.....
tidus1097
Sr. Member
****
Offline Offline

Activity: 434
Merit: 252


★Magnum Wallet★


View Profile
March 18, 2015, 02:35:32 PM
 #10

This is a obvious phishing attempt by some hacker. I would not do anything that the email instructs. Delete it, then delete your trash. You will end up getting everything you have stolen if you don't.

           ▄█▀▀█▄
          █▀▄▀▀▄▀█
         ▄█▄▀▄▄█▄
  ▄▄▄▄  ██▀▀█▄▄  ▀█▄▄ ▄▄▄▄
▄█▀▄▄ ▄▀           ▀██▀▄▄▀█▄
█ █  █ ▄     ▄▄     █ █  █
▀█▄▀▀▄█▀    ████    ▀▄ █▀▄█▀
  ▀▀██▌      ▐▌       █▀
     ▀█      ██     ▄█▌
     ▄▐▌▀█▄      ▄█▀▀█▄
    █ ▄▀▀▄▀█▄▄▄▄▄▄▄▀▀▄▀█
    █▄▀▄▄▀▄█▀▀▀▀  ▀▄▄▀▄█
     ▀█▄▄█▀      ▀█▄▄█▀
       █           ▄
      ▀█▀         ▄█▄
       ▀
▄███▄▄    █
 ▄
     ▄████████▄▄
▄█▄   █████████████▄
 █
   ███████████████▄
     ████████████████▄
     █████████████████
     █████████████████
     ▐
█████████████████
      ▀██
█████████████▀
        ▀███████████▀
          ▀▀█████▀▀
| ANN     | TELEGRAM     | DISCORD     | REDDIT     | TWITTER
[ CREATE WALLET ]
DeboraMeeks
Hero Member
*****
Offline Offline

Activity: 588
Merit: 500


View Profile
March 18, 2015, 02:44:10 PM
 #11

Is and must be a hacking attempt in an event for you to click the link and get to somewhere else.
You should never click any links in such mails claiming for such things, and one more thing, didn't you think that what has the forum to do with the upgrade of your browser?
CaptainHerpDerp
Newbie
*
Offline Offline

Activity: 42
Merit: 0


View Profile
March 18, 2015, 03:29:13 PM
 #12

Well thank you all for you input, I obviously knew it was suspish so would never click it, but perhaps posting it here will raise it to the attention of any unsuspecting person who might get one and click it. and now know better.


I'm sure everyone here is pretty up on security but It was somewhat convincing and could be very harmful.
erikalui
Legendary
*
Offline Offline

Activity: 1624
Merit: 1001


Free Crypto in Stake.com Telegram t.me/StakeCasino


View Profile WWW
March 18, 2015, 06:45:57 PM
 #13

Well thank you all for you input, I obviously knew it was suspish so would never click it, but perhaps posting it here will raise it to the attention of any unsuspecting person who might get one and click it. and now know better.


I'm sure everyone here is pretty up on security but It was somewhat convincing and could be very harmful.

It's because your email is visible to all members. You can probably hide it so that nobody could send you a phishing mail again.

crazyearner
Legendary
*
Offline Offline

Activity: 1820
Merit: 1001



View Profile
March 19, 2015, 11:09:26 PM
 #14

Best thing to do when you get them emails. Report the headas an details of it to admins here so they can trace where come from and put a stop to it to take action on it.

Other than that simply delete and don't respond to it just remove do not click any the links within it as no doubt will end up leading to some fake look alike site requesting to put your login info and bam account gone.

=
  R E B E L L I O U S 
  ▄▀▀▀▀▀▄▄                           ▄▄▀▀▀▀▀▄
▄▀        █▄▄                     ▄▄█        ▀▄
█            █████████████████████            █
█▄          ██       ██ ██       ██          ▄█
█        █            █            █        █
  █    █               █               █    █
   █ ██               █ █               ██ █
    █ █               █ █               █ █
    █ ███▄  █████▄   ██ ██   ▄█████  ▄███ █
    █     ███     █         █     ███     █
     █   █   ▀███ █  █   █  █ ███▀   █   █
     █   █      █ █  █   █  █ █      █   █
     █   █      ██  █     █  ██      █   █
      █  █     ██  █       █  ██     █  █
      █  █    ██  █ ███████ █  ██    █  █
      █ ███   ██  █         █  ██   ███ █
       █   ▀███      █   █      ███▀   █
        █     ██       █       ██     █
         █      █   ▄▄███▄▄   █      █
          ███   ███▀       ▀███   ███
             █████           █████
                  ███████████
  ▄▀▀▀▀▀▄▄                           ▄▄▀▀▀▀▀▄
▄▀        █▄▄                     ▄▄█        ▀▄
█            █████████████████████            █
█▄          ██       ██ ██       ██          ▄█
█        █            █            █        █
  █    █               █               █    █
   █ ██               █ █               ██ █
    █ █               █ █               █ █
    █ ███▄  █████▄   ██ ██   ▄█████  ▄███ █
    █     ███     █         █     ███     █
     █   █   ▀███ █  █   █  █ ███▀   █   █
     █   █      █ █  █   █  █ █      █   █
     █   █      ██  █     █  ██      █   █
      █  █     ██  █       █  ██     █  █
      █  █    ██  █ ███████ █  ██    █  █
      █ ███   ██  █         █  ██   ███ █
       █   ▀███      █   █      ███▀   █
        █     ██       █       ██     █
         █      █   ▄▄███▄▄   █      █
          ███   ███▀       ▀███   ███
             █████           █████
                  ███████████
  R E B E L L I O U S
Pages: [1]
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!