SCAM ALERT and WHITE HAT COUNTER-STRIKE
7 years ago in #steemit by arcange (73)
$273.46
- Promotion Cost $0.52
- Past Payouts $273.46, 0.00 TRX
- - Author $218.91, 0.00 TRX
- - Curators $54.54, 0.00 TRX
There is another asshole who opened up an account @blocktradess with two "s" trying ( and succeeding) in capturing some fat finger funds sent to @blocktrades with one "s" for exchanging.
It's always interesting to look at wallets and guess who possible culprits can be:
That was a phat loot!
Agreed mandrea could be that asshole !
Damn. Thanks for warning. i recently used blocktrades and be doubly sure. Now, better be triply sure than sorry.
There is a phishing account for most of the whale, for example - @jerrybanfeild -a phishing account for @jerrybanfield
what the hell i mean seriously ? :/ why people doing this ? wont they believe in Balance of GOD ? at the end ? at the grave ?
what ???
Yes @swaraj Im glad you brought that up, I also today just found @papa-peper (instead of teh REAL @papa-pepper ) and then@bittreex instead of @bittrex and then @polinix and @polinicks or something like that i cant remember the poloniex one but it was funny, sounded like how rednecks pronounce "Poloniex" its supposed to be Po Lo Knee Ex PoLoNee Ex not polinecks like some people pronounce it LOLOL
Anyway the @jerrybanfeild thing is funny, when his name is spelled Field with an I before E except after C (and V and a bunch of other exceptions...psh... that saying is sooo unhelpful when learning to spell in English.....
Anyway So who is this mandrea asshole? Can we not get his fucking blocktrades account blocked? cant we make it so when he tries to send money to bittrex or poloniex we have @poloniex @bittrex @blocktrades or @openledger intercept it, and return it to its rightful owner who can be proven by the people who sent any money to @blocktradess ALSO we should use CONSENSUS to simply take over this account. We should all take a vote, and include in the next hard fork a code that simply changes the password for that account or just removes the name OR just delete the account or disables it, for good, and credits the victims with that money, but seems like its too late and mandrea has already send that money to an exchange ? or no?
these people think they can get away with this shit, but one day in the future we will show them that they cannot. Sure they can have the freedom to accept accidental money in this manner but the community also has the right to do something about it
As soon as this fucker @mandrea tries to fucking send money to an exchange we should warn the exchange and have them confiscate the coins there has to bea way to do this.... or to hard fork this account into teh hands of real block trades and just use consensus to disable this fucjking scam account
Where there is money,there will be scams. Yes there should be some way to block these account.
@inertia in steemspeak.com told me that if you do enter one of these Knowing Phising scam accounts accidental into Steemit wallet, the walet dialogue Box will Warn you in red letters that it is a scam account and not to send there, (just like when you type in an exchange withoyt a memo, ) but tjey can only warn you and not prevent ou, but I would like an extra dialogue box maybe? Like even whenyou click yes send it makes you confirm and maybe even plays a short video explaining why you shouldnt send to these accounts?? I dunno we should just ..i know w cant stop peopl from sendingmoney to people saccounts in their wallets but we have to use consensus to show we have control over our own blockchain when it comes to scamers flooding wallets woth spam, we will have some solutions however, and its good this all hapened SONER rather than latwr, we wont wanna onboard millions of users only to end up with a situation with millions of users getting scammed using phishing attacks which would have never happend on a centralized platform like facebook ow teiotter where no accounts sending links like that would be up for long but that does happen on facebook and instagram etc, we cannot delete transactions from he walet history BUt we have to implement a way to , without the chrome extension (extra info steemit) to actually filter out the wallet transactions and its scarey to think anyone with bad intent can take advantage of our free transaction fee to Gum up the sytem and slow it down by spamming from one account and its really sucky! We WILl find solutions to these possible future escalations of current problems! Oh I love steemit so Much I feel Like im working in cryptography during orld war 2 or something!
Anyway discord chat steemspeak.com is liek a 24/7 text and voice chat with images videos GIFs and even @curiosity bot by @gyzimo which lets you send or recieve SBD to yoru steemit account as tips all there in teh chat! Ive already earned 5 SBD from just hanging out in teh chat which is amazing considering I didnt have to post anything! Mostly thanks to @instructor2121 Thanks for raining down SBD on the chat with @curiosity bot!
I think better solution would be something like KYC where you are verified but not sure if its too late for that. Could you please provide me the link to steemspeak discord channel? Thanks
haha fuck KYC kyc sucks its just an exxcuse for more control! and AML anti money laundering that is juys another excuse to control stuff
http://steemspeak.com u should come in here!
Could these be the cause of recent DDOS attack on Steemit because of which Steemit was down ? Just a thought ?
Terrible!
Thats correct and we need to be careful not fall prey to those....
Thank you @onceuponatime
The problem is downvoting them wont make them stop this assholes activities ? then how is there any option to direct ban there accounts Ip's ?
Thank you for solving this @arcange. I am @samstonehill and for the moment have been forced to another account. Was not aware they were using my account for this purpose now.
Your solution is perfect and exactly what I suggested when I explained this situation yesterday: https://steemit.com/steemit/@samstonehilltube/samstonehill-has-been-hacked-and-cannot-be-re-accessed-how-did-this-happen-and-what-are-the-solutions
Had I seen a message like this in my wallet next to the scammers message, clearly I wound't have made this mistake.
Thank you for highlighting these issues and spreading the word.
Am still keeping my fingers crossed that I will be able to confirm my identity directly with Steemit and regain control of my account.
The hackers are currently flagging me from my own account on everything I write in the new account. Not sure what they have against me?
I've just voted for you as Witness. And if I get my main account back I will do it from there too :)
Thank you for your great work.
Hey @samstonehilltube, sad to read you got hacked and had to restart from scratch.
Hard learned lessons are sometimes the best.
He is doing the same on me, but as he is a noob and burned all his voting power, not really hurting.
Unfortunately for your ego, I think he absolutely doesn't care about you.
He just want to express his frustration being thwarted ;)
Thanks a lot for your witness support!
I wish you all the best!
Many thanks for putting my ego in place. My missus has to regularly :)
He must be a rather sad individual. Still, you have done a great thing here and I intend to write a post on this subject. The community reaction to this situation has been amazing. @timcliff has already changed the wording for the registration process so that others don't make the mistake I made.
In my new account I have received so many donations today from awesome generous people.
And going through all the comments to my latest post, it is so encouraging to feel the passion of this platform.
Thank you for playing your part!
In general, I don't like bots. But today I want to thank you @arcange for giving me this great example how bots can be used for good. Counter-attack is a great tool in addition to a general advice to newbiess how to keep themselves secure.
Today I wrote a separate post advising my 1400+ followers what dangers they maybe facing here, and how to avoid em.
Together we are stronger than those scammers (sorry, but my coding skills are next to zero, so I can not make any bot like yours)
@samstonehilltube I will keep my eye on your new acct , will try to help recovering on this new acct as much as I can
Just for the record, I was going to change it but when I went to make the change, the wording in the screen shot was already there.
I want to take this opportunity to personally thank you and @arcange, for your assistance to @samstonehill in recovering his account. I am proud that I selected you as a witness and @arcange. You are both what I think one part of the witness program is all about, helping and supporting the users during crisis situations such as this and all the hard work you both did during the ddos attack. Thank you for your support of the Steemit community. both of you.
WE need to get 2fa added for added security as well .
Damn the inconvenience. You know what is inconvenient. Losing all your STEEM and loyal followers.
I am not aware of a way 2fa can be implemented at the blockchain level.
If it's possible to have 1 factor authentication, it's possible to have 2 factors. We already have this in a limited form via posting keys vs master keys.
Someone smarter than me will need to explain how it is possible with the blockchain technology. I am not sure how it could be done.
I want to thank you and @timcliff for all the assistance you both provided @samstonehilltube in recovering his original account @samstonehill. He was trying to bring a little bit of light to the evacuees in Bali because of the volcanic activity there when this happened. It is nice to see that things worked out for him thanks to you two.
Thank you for your help!
Thank you so much for doing this for the community!
I think it is good to bring these kinds of scams to the attention of the Steemit community. It looks to me like they are targeting power users. The motive is to steal money. There is a small clue that this is a hoax. The scammer is using a gmail address. We have to be skeptical of all such communications and think twice before replying.
It is very generous of you to use your own money to help defend people in the same forum. How much is this costing you? (I guess it depends on the number of scam messages being sent).
Scammer stopped his exploit when he s noticed counter-strike, so it din't cost too much
Up to now, sent 846 warnings ... affordable ;)
This posts have been re-blog.
Thank you for your post @arcange
Thanks a lot for exposing the subterfuges! They tried to get me too... Luckily, I didn't click on anything and followed the inherent wisdom that seemed to be calling me not to open it.
Namaste :)
I felt that too. And it was FEAR, tiredness and feeling under pressure in that moment which led me to ignore my instincts. I posted the full story yesterday:
https://steemit.com/steemit/@samstonehilltube/samstonehill-has-been-hacked-and-cannot-be-re-accessed-how-did-this-happen-and-what-are-the-solutions
Really hope my mistake doesn't negatively affect others.
I would like to challenge you on that last statement. How others feel is their responsibility. What does negatively effecting others even mean? On the contrary. Your mistake is HUGELY BENEFICIAL to others because you are sharing it. It's helping me tighten up my security.
I was thinking about the hackers using my account now to trick further people. The number of followers and high rep works to their advantage by making people think they are authentic.
But you are right of course, what has happened here will ultimately lead to improved security features on the site and heightened awareness of the importance of security for all!
Thanks again for your support Danny ;)
"Experience" is the name we give to our mistakes!
You said it. Always learning. And for sure this experience has taught me much!
Good deed goes a long way.
Why why.
Thank you for giving a helping hand.
Resteemed
Keep on steemit and protected steemit
I will do. Thanks for you comment
Hey arcange,
Very interesting read, Thanks you for sharing it!
I think I read samstonehill got scammed and I saw this message somewhere too.
More reasons to try to protect others users.
counterstriking here a bit