Players only lost 0.05 BTC as a result of this. If you made a deposit to the phishing site you must sign the address you sent from to claim a refund from us.
wow, very nice... primedice's prompt action made this happenthe perp must be disappointed
getting only 0.05 BTC off this ruseHere's what the attacker was able to do through his phishing site:
-Collect Usernames/Passwords for users who logged in to his phishing site during the brief period of time it was up.
-Display an obviously erroneous deposit address offering a 10% deposit bonus.
pretty slick hacker eh? offering 10% bonus -Collect Usernames/Passwords for users who logged in to his phishing site during the brief period of time it was up.
-Display an obviously erroneous deposit address offering a 10% deposit bonus.
is there a possibility they collected email addresses too? as I remember we can set this optionally, right?
they could try email phishing soon or later, so heads-up guys... be cautious
Hey,
The phishing site actually required you to enter your email. So that is defiantly something we look out for.
Also if you visited phishing site they got your IP which is also bad.
We are doing all we can to still protect users so that is why withdrawals are currently manual and will stay that way untill we are sure all users got their accounts and changed passwords.
Also strong recommendation again and this should not even be optional is to use 2FA. Please guys use 2FA everywhere you can!