You are viewing a single comment's thread from:

RE: Phishing site reported - www.steemitfollowup(dot)ml

in #steemit7 years ago (edited)

Sirs @anyx and @arcange Thank you both and I also have a phishing site to report, steemil (DOT) com (Sorry didntmean to trigger the antiphishing bot but I had to TALK about steemil with an L not a T o with an l instea of a t, its VERY powerful as a short name like that with such a close resemblance to steemit, and maybe on a phone keyboard or in another languages key setups its easy to confusethe t for a lowercase L? Anyway the steemi . com LOOKS JUST LIKE steemit.com because your BRAIn will MAKE UP for the lack of a crossed T and cross the t FOR you! The lack of space under the letter I completes the optical illusion!

It si a POWERFUl mis spelling of the name steemit, and when you have a name like steemil runnning around, it sucks. And I believe my friend @steem4depoor got hacked with THIS phishing scam, and has to use abackup account @steemgh now since account recovery from @steemit still hasn't gotten back to him according to him, and they seem backed up at the moment, maybe they did freze it thought because the attacler has nit powered down his steempower yet?

Anywaythat steemil . Com phishing site looks just like stem its very advanced and would easily fool noob,

THE ONLY way I see to solve this is to start PRESSURING the new users to ONLY USING POSTING KEYS and Active keys to withdraw, but that Posting keys should be the ONLY thing you use when you login to a new browser etc.

If users are just entering in their owner key to steemconnect its hard to avoid but for steemil and other sites, we should encoruage people to just NEVER login to ANY steemconnect page UNLESS they get there through their OWN entering in of the steemconect url!

Sometimes I think we should have an Optional Service to allow a big experienced company to hold Oner keys, and allow custoers to have posting and active keys OR no keys at all and just login with username and password and 2FA, it would eba fuck lot easier if wehad our own 2FA, maybe have insurance on oru accounts if we pay a small fee, man I think new uesre shiuldnt be hndling keys, I think we should havea third party service , but I don't k ow if Post Rewards would fund something like that?

I hope 2FA is included in HF21 or something :D

Anyway man, Thank you for all your work and I hope the damage done by scammers and KNOWN accounst associated wiuth phishing are somehow removed or have comments removed from the front end, so that people have the safety they deserve, AND it won't hurt OTHERpeoepls freedoms! It canbe an Opt In system to auo remove and BLACKLIST know scammer content form YOUR own brower, likethrough @armandocat ;s Steemit Plus crhome extension, we could EASILY just have a Blocked user black list, and intead of making a new uer manually go an block all the known black lited accounst we could have the extensin just remove them all automatical to make using steem a lot safer? Anyway sorry if I am rambling I am getting tired but I just have so many thoughts about ll of this stuff, its such a cray problem to deal with all the spheres of privacy blockchain secuity freeom all at once here!