Login
Signup
Write a post
Switch light

Phishing reported - Scammers use account's profile

78
7 years ago
in#steemit

Scammers have refined their trap with a new technique to catch their victims!

The fight between the community defenders and phishing scammers is raging. As their usual phishing technique (publishing malicious links in the comments) turns out to be ineffective, scammers are showing amazing but dangerous creativity by improving their phishing techniques

Be very careful and read this!

Scam Description

The scammer publish the following comment on user’s post


NOTE: the username may be different from the above screenshot

As you may noticed, there is no link to click. Instead of inserting a phishing link in to the comment, the scammer invite you to have a look at its profile.

So ...let’s go visit it:


NOTE: the username displayed may be different from the above screenshot

And here we are: here is the phishing link that the scammer wants you to click!

If you click on the link in the profile, you will be redirected to the following site:


NOTE: the domain name displayed and the background image may be different from the above screenshot

Lower on the page, there is a description of the “services” provided and an “Join Now” button.

If you click on the “Join Now” button, the following page will be displayed:

The site is a fake SteemConnect login page!

The goal of the creator of this website is clearly to steal your credentials to hack your account!

Preventive action activated

I updated my Warning-Bot to take into account this new scam technique.

I will add any account sending phishing comment to the blacklist of my Warning-Bot and it will issue warnings with a link to this post, notifying users of the malicious activity of those accounts.

If you find similiar pishing attemps, contact me on steem.chat

To protect yourself, you can:

  • always double check before clicking on a link, especially if this links take you away from steemit.com.
  • verify the reputation of people writing comments on your posts. A user with a low reputation shoud trigger you attention.

Previous threat alerts

If you missed them, please find here the previous alerts I published:

reminder

A bit of paranoia is the basis of security.
There are a few simple rules to follow in order to avoid having your account hacked:

Rule 1: NEVER, I repeat, NEVER use or give your owner key or password!

Rule 2: Use your posting key to login, post and vote on trusted websites like steemit.com or busy.org.

Rule 3: NEVER give your active key as this key allows to control your funds! Only use your active key for special operation like money transfer or account update on trusted websites like steemit.com.

Rule 4: Anywhere else, if you are requested to provide any of the above key: RUN AWAY!!!

4 simple rules. It's not much to remember. Follow them scrupulously, and you will only have to laugh at unsuccessful attempts from scammers.

Spread the words, resteem this post to your friends, and you will make the platform safer.

Thanks for reading!

If you notice any new suspect activity like the one described above, drop a comment on this post or contact me on steem.chat

footer created with steemitboard - click any award to see my board of honor

Support me and my work to protect the Steemit community.

Vote for my witness

steemitscamalertwitness
7 years ago
arcange78
via steemit
$ 36.54
95
H2
H3
H4
Upload from PC
Video gallery
3 columns
2 columns
1 column
25 Comments