PSA Alert: The number of Phishing Scams are increasing

3년 전

Dear Steemit Friends,

I just wanted to remind and warn the Steemit community to always be vigilant about their account information and not take everything at face-value. Unfortunately, everywhere in the world, there are people looking for unscrupulous ways to make money, all at someone else's expense, loss, and suffering - unfortunately, Steemit is no different. When there is money involved, scammers and people waiting to take advantage of other people will be lurking close behind.

For most of you that have been using Steemit long enough, the scams are easy to detect and often times they are the same over-and-over again. Once in a while though, one may come around that is truly unique that goes undetected and victimizes many people before it is finally identified. There is no way to combat it and even the most careful people may eventually become a victim when they let there guard down.

Over my Steemit career, I have been scammed a few times and despite the number of warnings that are put out there, it is difficult to stay ahead of all of them. Repetition and constant reinforcement are one of the most effective ways to get the word out and hopefully will protect more people from falling prey to the same incidents. Let's admit it, we are fighting a losing battle, but... that isn't going to stop me from trying to warn as many people as possible.

Yet another Phishing Scam

Today when I woke up, I did what I usually do and went to check on the replies to my most recent posts. As a daily blogger, I want to make sure that I pay attention to all my followers and potential followers by responding to their comments, suggestions, and feedback. It helps me become a better writer and content developer and helps me figure out what topics I should post about.

I was going through my comments when I got to one that recommended I visit a post that related to the topic I had just written about. I thought

"Why not? Let's check it out..."

BTW, the comment was the one pictured below

As you can see the user has a pretty good reputation and the link led to another author with a fairly decent as well.

When I clicked on the link, It took me to another Steemit post which was written fairly well by an author who had a pretty good reputation. I read the post and decided that it did merit a response, so I clicked on the reply button and started to type my comment. By this time, I had noticed that I was no longer logged in, which on occasion happens (although for the most part, I'm always logged into Steemit.)

Like most people, I don't have the time to review the profile and previous posts of everyone who comments on my blog, but I do on occasion make an effort to take a look at other peoples content when they have taken the time to look at mine - especially when they make an effort to leave a comment.

I clicked the login button and was about to type in my login details so I could submit my comment when I glanced over and noticed the URL for the post.

If you look closely enough, although secure, you will notice the URL is directed towards https://steewit.com.

Today the Steemit blockchain has so many new applications being built on top of it, and there are so many front ends that are created which provide an alternate source for posting to the blockchain, but typically when a URL is so close to the spelling of the original name of another legitimate site, chances are it is a scam. What makes it scream scam even more is the fact that nowhere is there a post about this new front end website.

I replied to the comment and asked what steewit.com was, but I doubt I'll get a response.

I continued to reply to comments on my post when 2 responses later I ran into another comment that said the following

This comment led me to a post of a well-known witness who I have known and worked with for a while now (@aggroed) and like the previous post had a steewit.com URL. Again, I was not logged in. It is no doubt that this site pulls information from the Steemit blockchain and very well could be legitimate, but too many things just send warning signals. The commenting accounts are bot accounts that scam for keywords and responds with comments pulled from a random list of responses and adds links to posts from legitimate content creators through the steewit website.

Below is another example of a comment leading to the phishing site using a post from a well-known witness, @yabapmatt. What is troublesome and alarming is that it is a comment by a witness who is no longer active in the Steemit community. Assumingly, the account has been hacked, but if you will notice, still has a very high reputation and is still posting.



There are a number of accounts associated with steewit.com and a number of commenting accounts linking to the site. When you do a lookup of the sites registration details, no details make sense or are legitimately working. I tested the contact numbers and they lead to a disconnected number.

Domain Name: STEEWIT.COM
Registry Domain ID: 2233973912_DOMAIN_COM-VRSN
Registrar WHOIS Server: whois.ilovewww.com
Registrar URL: http://www.ilovewww.com
Updated Date: 2018-03-02T02:32:07Z
Creation Date: 2018-03-01T17:34:11Z
Registrar Registration Expiration Date: 2019-03-01T17:34:11Z
Registrar: Shinjiru MSC Sdn Bhd
Registrar IANA ID: 1741
Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
Registry Registrant ID: Not Available From Registry
Registrant Name: Millian Dyroy
Registrant Organization: Ideal Garden Management
Registrant Street: Ramsvikveien 211
Registrant City: GODVIK
Registrant State/Province: GODVIK
Registrant Postal Code: 5179
Registrant Country: NO
Registrant Phone: +47.4742343443
Registrant Phone Ext:
Registrant Fax:
Registrant Fax Ext:
Registrant Email: milliandyry@yandex.com
Registry Admin ID: Not Available From Registry
Admin Name: Millian Dyroy
Admin Organization: Ideal Garden Management
Admin Street: Ramsvikveien 211
Admin City: GODVIK
Admin State/Province: GODVIK
Admin Postal Code: 5179
Admin Country: NO
Admin Phone: +47.4742343443
Admin Phone Ext:
Admin Fax:
Admin Fax Ext:
Admin Email: milliandyry@yandex.com
Registry Tech ID: Not Available From Registry
Tech Name: Millian Dyroy
Tech Organization: Ideal Garden Management
Tech Street: Ramsvikveien 211
Tech City: GODVIK
Tech State/Province: GODVIK
Tech Postal Code: 5179
Tech Country: NO
Tech Phone: +47.4742343443
Tech Phone Ext:
Tech Fax:
Tech Fax Ext:
Tech Email: milliandyry@yandex.com
Name Server: ns1.ipchina163.com
Name Server: ns2.ipchina163.com
DNSSEC: Unsigned
Registrar Abuse Contact Email: abuse@ilovewww.com
Registrar Abuse Contact Phone: +603 2031 8850
URL of the ICANN WHOIS Data Problem Reporting System: http://wdprs.internic.net/
Last update of WHOIS database: 2018-03-02T19:01:20Z

Just to make sure I wasn't crying wolf and to confirm if the site is legit, I used a dummy account to log in. I left it alone without changing my login details and after about 1 hour the information was changed and I could no longer log into that account. True, this gives the scammer another account that he can use, but I doubt it since the account is titled with an obvious name depicting it as a scammer account.

As I am writing this post and doing additional research, I came across a Steemit user who was scammed. You can see her post HERE.

My warning and advice to all users new and old. Be sure to be extra vigilant and observant of who or what you give your password, login, and personal information to. Not everyone can be trusted. The world is a big place and the internet provides an even bigger playground of victims for people who have bad intentions to take advantage of

I hope this serves as good advice and is timely enough to help get the word out before more people are taken advantage of.

Thanks for reading

If you have any questions, inputs, or feedback, please feel free to post a comment below. Please also help me spread the word by upvoting and resteeming this post. Thanks and be safe!


Authors get paid when people like you upvote their post.
If you enjoyed what you read here, create your account today and start earning FREE STEEM!
STEEMKR.COM IS SPONSORED BY
ADVERTISEMENT
Sort Order:  trending

This one's very helpful especially for someone like me whose still new to the community. Thanks @cloh76 and. I voted you too as one of the Steemit witnesses !!!

·

Thanks for the support @jennybeans. Never hurts to get the information out there for everyone to see. Sharing knowledge and experience will help protect people from making similar mistakes

Ohw my. I admit, i have never been that serious checking the url whenever I visit a link. Good thing, i have never been a victim yet in steemit and hopefully will never be. This just got me in time. A lot of scammers around.

()

Even just looking at the url, it seems true unless a person is having an attention to it. Thank you so much @cloh76. This will surely helps everyone to be attentive with the scams around.

·

Sure thing. I hope this helps to warn everyone and helps them avoid getting scammed

·
·

I'll let my friends be aware of this.

Cryptos are like a Digital Wild West. Plenty of opportunities to make money, but also dangerous. Stay safe, kids.

·

That's a great analogy and exactly the best way to describe it. We are defining the landscape as we grow.

Thank you for warning us all,

·

Just doing my part. Take care!

😫😫omg. Just last night I visited a link from a comment and then it redirected me to the post but I cant upvote and write comment bc I wasnt logged in to my account and has to put in the details. I hope it wasnt a scam. I havent checked the url 😫

·

Be careful. Sounds a lot like the phishing scam. Better check the URL and if you did log in, you may want to change your password and keys!

Fingers Crossed!

·
·

Whooo. Thank you for this info. I did changed my password. This is so helpful.

·
·
·

Great. That's good!

Thank you for calling attention to this, and for sharing with me! Hopefully we can keep other people from falling into the same trap as I did.

·

Yea. Im sorry to hear and read about your incident. I hope no one else falls victim to this phishing scheme.

I came across to a number of comments like those. The moment they direct me unto another page and ask me to re-log in, I thought not to proceed. This post just confirmed that I did the right decision. Thanks for this warning, it is indeed very helpful @cloh76

·

Anytime. Just trying to do whatever I can to protect others. Good Job on avoiding scams like this!

·
·

Thank you soo much :)

Thank you for the warning. This are useful who doesn't know very much about scam.

·

Yep. Some people have already fallen for the scam and my heart goes out to them. Especially if they lost their account which they worked so hard for.

Thanks for this info ♥
God bless you! Keep steeming

·

Anytime. Be Safe and careful with your information.

Thanks for the heads up @cloh76, you have invariably saved many of their hard-earned reputation, sbd and steem. Its just so sad that one lowlife will just steal all those hardwork with just a click of a button.

Thanks once again!

·

Yes. Unfortunately, this isn't the only low life out there who cant do an honest job of making money. Wish these people could put as much effort into positive things - I'm sure they would be more successful - or maybe not since they can get rich off the efforts of other people with zero to little at all.

·
·

And they will never know the joy and satisfsction that comes with honest income from hardwork and dedication

·
·
·

Agreed.

This scams is so scary... you are working hard spending time and effort to make a quality content, then just in a one snap, all your hardwork will suddenly deminish. That was so sad.
Thank you very much @cloh76 for the warning.
This is really helpful, I have seen one, same the kind of scam you mention. Luckily I did not bother to click it, for curiosity.

·

This is the latest one that seems to be widespread and picking up steam, so best to get the word out before more it spreads. It is scary - I dont know what I would do if I lost my account and all the work I put into it building my reputation and brand.

You got a 1.68% upvote from @postpromoter courtesy of @cloh76!

Want to promote your posts too? Check out the Steem Bot Tracker website for more info. If you would like to support the development of @postpromoter and the bot tracker please vote for @yabapmatt for witness!

You got a 2.63% upvote from @buildawhale courtesy of @cloh76!
If you believe this post is spam or abuse, please report it to our Discord #abuse channel.

If you want to support our Curation Digest or our Spam & Abuse prevention efforts, please vote @themarkymark as witness.

Your posts are awkward. I like the meaning of the post

·

I'm not sure what you mean by that? How are they awkward?