Observation and Analysis - New Victim of the Scam 观察与分析之新的受害者 🔍

in #steemit7 years ago (edited)

IMG_0064.JPG
Eclipse of 2016 二零一六的月蚀

Searched bittrex memo of 612036a11c5c4b2ead6 and found there is a new victim of the scam. The new victim is @lndesta120282

Screen Shot 2017-10-24 at 7.07.43 AM.png
630 SDB transferred from @lndesta120282's wallet to the scammer's bittrex account.

My experience shows bittrex SBD wallet address cannot be changed. So we can use the bittrex address in transfer memo to find out the transfers to the scammer.

Steemd shows the scammer already changed victim's password:
Screen Shot 2017-10-24 at 7.08.07 AM.png

Scammer used @twinkledrop, the account of a victim, to send a phishing comment to the new victim:
Screen Shot 2017-10-24 at 7.10.30 AM.png

The scammer has a new trick: insert a large white image after his message, so the victim won't see other people's reply to his comment. Please note the background JPG in the comment.

Now the scammer uses a shortened url at bit.ly and use html tag to pretend it as a steemit url. I already alerted @pfunk, @cheetah, @patrice, and @steemcleaners for the new victim of the scam.


骗子又用骗来的 @tiwnkledrop的账号骗了新的受害者 @lndesta120282,并且转走了600多SDB到他的bittrex钱包,并修改了密码。虽然受害者号码还没有出来骗人,我先踩了他一脚,并且报告了cleaners的人。

我发现bittrex里SDB钱包的地址不能改变,所以可以通过查询bittrex转账的memo来寻找骗子转账的信息。

现在骗子有获得了新技能:在给别人的钓鱼留言后面加入一个很大的全白图片。这样受害者难以看到其他人对他钓鱼留言的回复。


数据、观察、分析系列


更多系列游记


加勒比海系列


技术系列


© Copyright 所有照片与文字皆为 @nationalpark原创。All photos taken by @nationalpark. All rights reserved.

Sort:  

Hello & Cheers!! I'm a content detection and information bot. You are receiving this reply because a short link or links have been detected in your post/comment. The purpose of this message is to inform your readers and yourself about the use of and dangers of short links.

To the readers of the post: Short links are provided by url shortening services. The short links they provide can be useful in some cases. Generally their use is benign. But as with all useful tools there are dangers. Short links can be used to hide all sorts of things. Quite frequently they are used to hide referral links for instance. While not dangerous this can be deceptive. They can also be used to hide dangerous links such as links to phishing sites, sites loaded with malware, scam sites, etc. You should always be extremely cautious before clicking on one. If you don't know and trust the poster don't click. Even if you do you should still be cautious and wary of any site you are sent to. It's always better to visit the site directly and not through a short link.

To the author of the post: While short links may be useful on some sites they are not needed on steemit. You can use markdown to format your links such as this link to steemit. It's as simple as [steemit](https://steemit.com) Unlike short links this allows the reader to see where they are going by simply hovering over the link before they click on it.

This message was created by a bot. It is part of the ongoing fight against spam and phishing attacks on steemit. If you did not use short links in your post and feel you have received this message in error you can contact @fubar-bdhr on discord or @fubar.bdhr on steemit chat to report the issue.

骗子防不胜防啊!

@minnowpond1 has voted on behalf of @minnowpond.
If you would like to recieve upvotes from minnowponds team on all your posts, simply FOLLOW @minnowpond.

            To receive an upvote send 0.25 SBD to @minnowpond with your posts url as the memo
            To receive an reSteem send 0.75 SBD to @minnowpond with your posts url as the memo
            To receive an upvote and a reSteem send 1.00SBD to @minnowpond with your posts url as the memo

這真的太讓人生氣了!!! :(