EN
Login
Signup
Write a post
Language
Switch light

Phishing site reported - MinnowBooster fake website

78
7 years ago
in#steemit

Scammers creativity and efforts to steal your credentials are endless!

The battle between the defenders of the community and scammers is raging. Thanks to combined work from @steemcleaners' team members (and several other users like me, we managed to reduce the number of scammers' victims.

It seems that our efforts to educate and warn users are paying off. Scammers are now forced to use increasingly complex or elaborated phishing techniques.

Here is a new one, very pernicious! Be very careful!

Scam Description

The scammer publish the following comment on user’s post

If you click on the link in the comment, you will be redirected to the following site:


NOTE: the domain name displayed may be different from the above screenshot

This website is a FAKE COPY of minnowbooster's website!.

You will notice the webpage is NOT SECUTED by a valid SSL certificate and that the underlying URL of the login item in the Account menu leads to another website domain.

If you look at the original site, you will notice that counterfeiting is particularly well done. But the original site is secured by a valid SSL certificate.

If you click on the login item in the account menu of the phishing website, you will be redirected to the following page:


NOTE: the domain name displayed may be different from the above screenshot

The page displayed by the site is a fake SteemConnect login page!!

If you enter your credential, and click sign-in (something YOU SHOULD NOT DO), you will be displayed an error page

The purpose of this webpage is to steal your credentials to hack your account!

Preventive action activated

I will add any account sending phishing links to the black list of my Warning-Bot and it will issue warnings with a link to this post, notifying users of the malicious activity of those accounts.

If you find similar phishing attempts, contact me on steem.chat

To protect yourself, you can:

  • always double check before clicking on a link, especially if this links take you away from steemit.com.
  • verify the reputation of people writing comments on your posts. A user with a low reputation should trigger you attention.

Previous threat alerts

If you missed them, please find here the previous alerts I published:

reminder

A bit of paranoia is the basis of security.
There are a few simple rules to follow in order to avoid having your account hacked:

Rule 1: NEVER, I repeat, NEVER use or give your owner key or password!

Rule 2: Use your posting key to login, post and vote on trusted websites like steemit.com or busy.org.

Rule 3: NEVER give your active key as this key allows to control your funds! Only use your active key for special operation like money transfer or account update on trusted websites like steemit.com.

Rule 4: Anywhere else, if you are requested to provide any of the above key: RUN AWAY!!!

4 simple rules. It's not much to remember. Follow them scrupulously, and you will only have to laugh at unsuccessful attempts from scammers.

Spread the words, resteem this post to your friends, and you will make the platform safer.

Thanks for reading!

If you notice any new suspect activity like the one described above, drop a comment on this post or contact me on steem.chat

footer created with steemitboard - click any award to see my board of honor

Support me and my work to protect the Steemit platform.

Vote for my witness

steemitscamalertwitness
7 years ago
arcange78
via steemit
$ 14.67
67
H2
H3
H4
Upload from PC
Video gallery
3 columns
2 columns
1 column
13 Comments