Ninjastic
PostEdited versionsQuotes to this post
Post
Topic
Board Service Discussion
Re: BTC-e suspended accounts [Gathering]
by
Thran
on 12/02/2014, 21:42:28 UTC
Another example from the trollbox archive.

Here is a user claiming what happens as he signed up for the predict coin page.
Its of course not to verify he is honest, but there are some signs:

- a normal character starts to spread automated spam lines out of nowhere (why should he? At last he should use a different sentence).
- he is explaning it with a twink and see how confused he is
- there is no one helping as you can see
- the bad domain get posted over and over by more and more accounts
- mods KNOW that domain is malware and even warn & ban it !
- different users told out of nowhere the same story

The twink: http://trollboxarchive.com/search.php?search_type=username&search=Thomassmulders
The original account: http://trollboxarchive.com/search.php?search_type=username&search=thomas89

and again the phishing domain (is a bunch of "predict" domains all using the same layout and all), still active TODAY posted and spread by the btc-e chat:
http://trollboxarchive.com/search.php?search_type=all&search=predictcoin

Please look at the insane amount of used chars - some of that have history never doing anything wrong.
Then, boom, they spread the malware domain - all with the same sentence.

These are, with a good chance, hacked people. Hacked by links who are spread even now by btc-e because
they can't deal in a sane way with domains in the chat.

Example: i just clicked on the users in the link above. http://trollboxarchive.com/search.php?search_type=username&search=wimmah1985

You see how he is starting to spam that link. then something happend.
When i should guess he logged in (the original owner). Then he starts to wonder what happens. Then he is gone - no post anymore
close after he posted the link. That means with a chance he is also suspended.


As far i know there are alot more cases like that. Just check the users!

It can't be that out of nowhere such many users without any negative history started to pop out as long hidden hackers.
I assume many make it not public for some reason, at last they fear a permanent ban and the lose of all asset.

And yes of course - joining such a phishing site with logins/emails you use on your trading site IS stupid.
But not everyone is a computer nerd and to be naive and missing a security mind is no reason to thread people like we see here.

Would it make a difference when the malware domain would be a zero day infection adding a trojan to your site by an automated drive-by-attacken
who added a keyboard logger? I think not.