Be careful next time you login to Bittrex, or any cryptocurrency exchange

in #cryptocurrency7 years ago (edited)

According to reports out recently, hackers are creating phishing sites that look identical to the main site in order to steal funds.

Website hacking has been on the rise lately, especially concerning cryptocurrency exchanges. 

What started as finding ways of stealing people's login information has taken on a slightly new twist...

Now cyber criminals are creating fake websites sites that look very similar to the original site, with hopes that people will mistake their site as the real site. 

Then once they enter their login credentials, the hackers have their information to then go into the legitimate exchange and steal their funds.

What sites are being targeted?

Specifically Bittrex has been in their cross hairs as of late.

The fake site used the name "Blttrex" to confuse people trying to login to Bittrex. 

Replacing the "i" in Bittrex with an "l". 

According to the website who.is (https://who.is/), the IP address of Blttrex is registered to a Russian with the name of "Sergey Valerievich Kireev".

As of writing this, the fake website is down. It is unclear if it was taken down by it's owner or by the hosting firm. 

How are people being fooled by scams like this?

Cyber criminals are using Google AdWords to get their fake sites ranking high on Google search.

Which means when people do a search for their intended site, scam sites show up high on the list and get their fair share of clicks.

That is how they getcha!

Steemit.com knows all about that

Changing around the letters on a reputable site is not something all that unusual for steemit.com users. We have seen the account @blocktardes created trying to "trick" people who are trying to send funds to @blocktrades.

We have also seen the account @randomwhale and @randowale created with the intent of stealing people's funds that are trying to do business with @randowhale.

There are all kinds out there folks, make sure you are paying attention to what you are doing with your money. No one is going to take more care of it than you, especially in the crypto world. 

Stay informed my friends.

*Pictures don't seem to be working for me today, sorry for the lack of visual excitement on this post :)

Sources:

http://www.ibtimes.co.uk/hackers-create-fake-bittrex-cryptocurrency-site-steal-users-login-credentials-money-1635743

Follow me: @jrcornel

Sort:  

Thanks for sharing

@jrocornel How to SPOT & Stay away from fake POLONIEX and BITTREX Sites or any Other Trading Sites

  1. Always make sure that the HTTPS (HyperText Transfer Protocol Secure) Green mark is there right before the website address on the Browser address bar. (Also called Secure socket layers)

  2. Never Ever search from Google about POLONIEX or BITTREX. U may get the fake one on the Google search result.

  3. Always make sure that HTTPS green mark is there on the Address Bar of Browser and bookmark that page. So u don't have to find it thereafter.

  4. Most of the times these fake sites come with poloniex.me / bittrex.me instead of .com

5.Don't ever Attach your trading account to any third party software. No matter how secure that third party software is.

Thank you so much! My eyes are on green marks!

Great advice! Thanks!

Just save your exchange as a link or a favorite and always use 2FA when offered. This is a pretty low sophistication attack so simple housekeeping should keep you safe.

Yep, I would imagine it is mostly new users that are falling for this... or someone accessing an account from a different location/computer.

Wow, thanks so much for keeping our community informed. Always appreciated!!

Thank you for warning recationary measures thank you

There is also an account on steemit named @bitrex with only one T that people have mistakenly send SBD and steem to

Good catch! I forgot about that one. Thanks!

its a terrific .thanks for warn us