Phishing Warning 2.0

guiltyparties (70) in phishing • 6 years ago (edited)

This is a phishing warning. The levels of malicious links in comments have reached extreme proportions. Nearly 500 accounts have been infected to date.

DO NOT CLICK ON LINKS IN COMMENTS

Example Phishing Scams

Free votes
10% off votes
Promotion bot
Steemian Day
Your post was stolen
You stole a post
Anything else that gives you a link

Other Scams

Bots that trawl for passwords that were accidentally posted
Bots that trick you into delegating all your SP

There are no short cuts. These hackers and scammers are trying to trick you because they know you're trying to write a good blog and are getting no votes. They know you may not speak English too well or that you're using a mobile phone. They know that 90% of comments out there are bots. They're playing you. Don't let them.

^{image source}

What They Want

Your password
Your money
Your SP delegated to them
Your account to spread comments with

What You Can Do

Only use your private posting key (go to your wallet, then permissions tab to get it)
Monitor your wallet transactions
Recover your account if you can't log in (go to https://steemit.com/recover_account_step_1) and make sure you use the email address you signed up with
Change your password if they have your private posting key (https://steemit.com/change_password)
Go to steem.chat and ask for help in the #help or #steemitabuse channels

Report

See something suspicious? Report here https://steemcleaners.org/abuse-report/
Report in steem.chat #steemitabuse or in Discord https://discord.gg/xzZvzV3

^{image source}

If You Got Hacked

Tell us and keep us up to date on how your recovery is going
Don't delete the flagged comments, just edit them to remove the phishing links the hackers posted
Make sure you change your password immediately if the hackers didn't change it
Start the recovery process immediately
If something went horribly wrong we will sponsor you a new STEEM account

Notes

The money the hackers stole can't be returned to you
If you lose some or all of your reputation in the process of being disinfected don't worry about it, it will come back over time
If you get a odd error while changing your password, wait a bit -- a password can only be changed once an hour
No, a hacker can't delete your account

^{image source}

FAQ

Read this first:
https://steemit.com/phishing/@guiltyparties/phishing-messages-faq

How do I check if I'm delegating my SP to a hacker?
http://www.steemreports.com/delegation-info/

How do I undelegate the SP?
Undelegating is just re-delegating but with zero 'vests' (SP). You can undelegate with Steem Connect by changing parts of this URL: https://v2.steemconnect.com/sign/delegateVestingShares?delegator=youraccountnamehere&delegatee=thehackeraccountnamehere&vesting_shares=000000.000000%20VESTS

Who can I ask for help?
Myself (@guiltyparties), other @steemcleaners members (@patrice, @pjau, @anyx, @pfunk, @logic), @arcange, @bullionstackers, or most project leaders who are familiar with how STEEM works or how to reach us. Remember, you need to contact us to get taken off the infected list!

Translate this post into as many languages as possible to help spread the word!

Like what we're doing? Support us as a Witness.

Go to https://steemit.com/~witnesses

At the bottom, type in guiltyparties

Click VOTE

phishing hacking attack infection restoration

6 years ago by guiltyparties (70)

$60.37

Authors get paid when people like you upvote their post.
If you enjoyed what you read here, create your account today and start earning FREE STEEM!

Sort Order:

Trending

[-]

bullionstackers (71) · 6 years ago

This Post have Been Resteem by @bullionstackers
We are currently Fighting Cyber Criminals to protect Steemit community.
I agree with the poster that we require to write as many post

Please write in your own post in your own language Topic Phishing ( In Any Language )
One of the Tag must be #whalepower Tag and Support by my #whalepower Team .

$0.18

3 votes

[-]

fionasfavourites (66) · 6 years ago

I will be writing my own post as soon as I am back on track, and much appreciate your help when I was phished, @bullianstackers. I got locked out of my account - again - and it's a week tomorrow that I requested a recovery, and because no recovery email by Tuesday, I wrote to support because @steemcleaners can't help. No reply from support. A bit frustrating only being able to post from Busy and not being able to access any of the phone apps that integrate with the Steemit platform. Apologies for the rant. Feeling a little frustrated.

$0.00

[-]

bullionstackers (71) · 6 years ago

You have mention Busy
This are a few time I heard about their Website not Secure!

??? Maybe their site is not secure!

I see, if I can contact one of The App Officer.

$0.00

2 votes

[-]

fionasfavourites (66) · 6 years ago (edited)

I would really appreciate some help. I have been watching feed and my wallet carefully and nothing is going out of the wallet and I am the only one posting on my account and commenting. Seriously, a week to get a recovery email, and when I was hacked it took less than 24 hours. I appreciate that there may be as many as 400 scam accounts, but I am now really beginning to wonder if this is my account or if there's a bug. I'm a bit of a techno-dunce, which isn't helpful, either. Thanks again, @bullionstackers

$0.00

[-]

bullionstackers (71) · 6 years ago

Transfer your fund to your friend account first.
Also check for sudden Powering Down.
Try 500 x Accounts and rising. It is at Pandemic Level at the moment.

$0.00

[-]

fionasfavourites (66) · 6 years ago

Oh, my word! I can only post at the moment, no transfers. Thanks, again, for the advice.

$0.00

[-]

fionasfavourites (66) · 6 years ago

@bullionstackers, just to advise that thanks to @guiltyparties my issue has been resolved. Thanks again

$0.00

[-]

honarparvar (72) · 6 years ago (edited)

Why the relation between busy, steemd, steemworld, steemit and steemconnect is not explained anywhere clearly? 😐

$0.04

1 vote

[-]

guiltyparties (70) · 6 years ago

What do you mean?

$0.00

[-]

honarparvar (72) · 6 years ago (edited)

Sorry, typo in my last comment. Edited it.

Is there any affiliation between above sites? So we can trust them? Like busy.org etc

$0.05

1 vote

[-]

rita2017 (35) · 6 years ago

thank you for the information, you deserve to be my witness.@guiltyparties

$0.00

1 vote

[-]

guiltyparties (70) · 6 years ago

Thank you

$0.00

[-]

rita2017 (35) · 6 years ago

you are welcome

$0.00

[-]

marzukie (54) · 6 years ago

very awesome and i really support you @guiltyparties, i've seen phishing in my friend account @sepfriadi hacked by account @gregoryoo24, when i want to help and report to @arcange but in vain, all the contents in @sepfriadi account's wallet have in transfer to account @gregoryoo24

https://steemit.com/traveling/@sepfriadi/keharmonisan-dalam-persahabatan-b5ccfea7e38e8

thank you @guiltyparties

$0.00

[-]

bullionstackers (71) · 6 years ago

@marzukie
How can we help you? Please Read
[Aceh]

https://steemit.com/whalepower/@afril/phishing-putra-nyan-in-aceh-language-da37a9170c604

[How to recover your account in Indonesia]

https://steemit.com/victim/@markzuk/solusi-ketika-akun-anda-di-hack-d5d79dd8504fe

[Bahasa / Eng / Cn version Post]

https://steemit.com/phishing/@bullionstackers/phishing-or-what-s-is-that-eng-or-bahasa-or-cn

$0.00

[-]

marzukie (54) · 6 years ago

thank you @bullionstackers to information, I hope this problem the find sollution

$0.00

[-]

freeservice (57) · 6 years ago

This post have been Resteem by @freeservice

@freeservice is Another Resteeming Service Account by @bullionstackers
Introduction Post Here

$0.00

[-]

s1d1n01 (40) · 6 years ago

please help me to remove the flag?

$0.00

[-]

bullionstackers (71) · 6 years ago (edited)

@s1d101

If you are doing Phishing , you need to remove All your Bad Links comments first.
Once you have done that come back to me.

How can we help you? Please Read
[Aceh]

https://steemit.com/whalepower/@afril/phishing-putra-nyan-in-aceh-language-da37a9170c604

[How to recover your account in Indonesia]

https://steemit.com/victim/@markzuk/solusi-ketika-akun-anda-di-hack-d5d79dd8504fe

[Bahasa / Eng / Cn version Post]

https://steemit.com/phishing/@bullionstackers/phishing-or-what-s-is-that-eng-or-bahasa-or-cn

$0.00

[-]

s1d1n01 (40) · 6 years ago

what should we do for this exam? thank you

$0.00

[-]

fionasfavourites (66) · 6 years ago

Thanks, @guiltyparties for this very clear exposition and for your help when I was phished. After trying to change my password again, I was locked out of my account. Tomorrow it will be a week since I requested a recovery. @steemcleaners can't help and still no response from @steemit support. I am now at a loss because I can post on Busy from my laptop, but can't access any apps from my phone, which adds to my frustration. Any advice much appreciated.

Once I am back on the Steemit platform, I will be writing my own post about my experience and what I have learned. Including about the support from the "real" Steemeit community.
@fionasfavourites

$0.00

[-]

guiltyparties (70) · 6 years ago

Six days ago did you update your password or not? Message me on steem.chat please.

$0.00

1 vote

[-]

fionasfavourites (66) · 6 years ago

Will do. Give me a minute. Thanks

$0.00

[-]

bullionstackers (71) · 6 years ago

@guiltyparties , I am not Hi-jacking your post.
Hope you don't mind. Have a good sleep.

$0.00

[-]

guiltyparties (70) · 6 years ago

I appreciate it. It was around 1am when I posted it so didn't get a chance to see replies.

$0.00

[-]

steemflow (72) · 6 years ago

@guiltyparties thanks for the warning update...yes it is spreading like a wild fire, the more you avoid from greed, the more safe you are.

$0.00

[-]

guiltyparties (70) · 6 years ago

That's why I want as many translations of the post as possible. I don't even give a crap if they copy/paste the thing.

$0.00

[-]

c0ff33a (72) · 6 years ago

It is essential that people are made more aware of this issue, no matter how many times you tell people it's just human nature to click on links - and they bait them so well - @saffisara had a comment on her post yesterday saying someone had copied her work - with one of her post titles turned into a link - looking at the source for the page I could see it was leading to another clone Steemit site that would capture account log in details if someone entered it. Fortunately she had not clicked it and we were able to flag the comment to invisible and she contacted Steemcleaners with the account details.

#thealliance

$0.00

[-]

guiltyparties (70) · 6 years ago

That's exactly what they're doing. Telling people they copied or were copied.

$0.00

[-]

almud (41) · 6 years ago (edited)

Thank you for the warning brother I will be careful in the comments so as not to get caught in this kind of fraud, your post is very useful brother I learned a lot from your post good job brother @guiltyparties

$0.00

[-]

ludmila63 (48) · 6 years ago

This is very useful information! You do so much to support the newcomers! Many thanks!

$0.00

[-]

holger80 (72) · 6 years ago

I'm using Cryptonite by Metacert to be protected on steemit.com and busy.org. This extension for chrome and firefox works great. As the original site is verified and checked, all new phishing sites are recognized automatically.

Steemconnect.com is not verified until now, but hopefully soon (has to be done by the owner of the project).

$0.00

[-]

guiltyparties (70) · 6 years ago

I think there's another extension out as well for Chrome. The more the better (as long as they're not phishing themselves). We've got a full out infestation here.

$0.00

[-]

mtnmeadowmomma (55) · 6 years ago

Thank you for getting the word out! Will resteem :)

$0.00

[-]

putra2017 (40) · 6 years ago

thank you very much for the information you provide.@guiltyparties
I just made you my witness

$0.00

[-]

fiberartists (51) · 6 years ago (edited)

Hi @guiltyparties, I just stopped back to let you know your post was one of my favourite reads and I included it in my Fiber Ramble. You can read what I wrote about your post here.

Join us on Mondays for Coffee Hour at 1pm EDT in the Steemit Fiberartists on Discord or view it live on the Steem Star Network.

$0.00

[-]

starfinger13 (50) · 6 years ago

i will try to make a post an translate that in french if you are ok

$0.00

[-]

guiltyparties (70) · 6 years ago

Yes please do that.

$0.00

[-]

starfinger13 (50) · 6 years ago

ok! i'm on it !

$0.00

[-]

nkereuwem (0) · 6 years ago

$0.00

Reveal Comment

[-]

guiltyparties (70) · 6 years ago

You have waited so long that we can't take the flags off. Can you please make two posts, one with "payout declined" and one normal, that can be used to upvote you and help you restore your reputation please?

$0.00

[-]

erikaflynn (61) · 6 years ago

Info is the best weapon!
I'd like to translate it into Russian. Is there the way to get the body of this post, i mean, with saving all the links and Markdown codes?

$0.00

[-]

guiltyparties (70) · 6 years ago

Here try this https://hackmd.io/s/BkDTGCPhM

$0.00

[-]

erikaflynn (61) · 6 years ago

warning for Russian-speaking users is ready:-)

$0.00

[-]

hilarski (76) · 6 years ago (edited)

Thank you for the update. This is rampant across the crypto world. Resteemed

$0.00

[-]

guiltyparties (70) · 6 years ago

It's the same group as the one that hit bitcoinforums and other communities. We tracked them down to the same registrar before they started going for the free domains.