Never give your password on suspect or unknown websites!!
I already warned you about several scam attempts (see bottom of this post for a list of them). Here is a new one.
Scam Description
The scammer will post a comment like this one:
or
NOTE: the author or the content of the comment may be different from the above screenshot
If you click on the link in the comment, you will be redirected to the following website:
NOTE: the domain name displayed may be different from the above screenshot
The site is a simple “static” website created using the gooyaabiteloates.com website creator.
Lower on the website, your are invited to click on a “Join Now” button to get 5 "free" STEEM
If you click on the “Join Now” button, you will be redirected to a FAKE SteemConnect page
The website looks EXACTLY like steemconnect.com, but its behaviour will differ as it clearly want to steal your credentials to hack your account!
What is Phishing?
Phishing is the attempt to obtain sensitive information such as usernames, passwords, and credit card details (and money), often for malicious reasons, by disguising as a trustworthy entity in an electronic communication.
source: Wikipedia
The goal of the creator of this website is to steal your credentials to hack your account and funds!
Preventive action activated
This phishing scam has been added to the black list of my Warning-Bot and it will issue warnings with a link to this post, notifying users of the malicious activity of those accounts.
If you find similar phishing attempts, contact me on steem.chat
To protect yourself, you can:
- always double check before clicking on a link, especially if this links take you away from steemit.com.
- verify the reputation of people writing comments on your posts. A user with a low reputation should trigger you attention.
Previous threat alerts
If you missed them, please find here the previous alerts I published:
- Scam alert and white hat counter-strike
- Phishing exploit has been stopped - Scammers thwarted!
- Potential scammer reported- @jones420
- Fake Steemit website try to steal your password!
- Phishing attack to steal your active key
- Potential scammer reported - @minnowpond
- Scammer reported - @russiann
- Scammer reported - @steemitrobot
- Scammer reported - @tripadvisor.com
- Scammer reported - @harquick
- Scammer reported - @gtg.witnesses
- Phishing site reported - sleemit(dot)com
- Phishing site reported - www.steemitfollowup(dot)ml
- Phishing site reported - www.steemitfollowup(dot)cf
- Phishing site reported - www.autosteemer(dot)com
- Phishing site reported - www.autosteemer(dot)club
- Phishing site reported - upperwhale
- Phishing site reported - steamit(dot)ga
- Phishing site reported - steenit(dot)cf
- Phishing site reported - steemautobot(dot)ml
- Phishing site reported - autosteem(dot)info
- Phishing site reported - steemij(dot)tk
- Phishing site reported - steemitservices(dot)ml
- Phishing site reported - uppervotes(dot)ml
- Phishing site reported - steemupgot(dot)ga
- Virus infection threat reported - searchingmagnified(dot)com
- Phishing site reported - steemrobot(dot)ga
- Phishing site reported - postupper(dot)ml
- Phishing site reported - steembot
- Phishing site reported - steemone
- Phishing reported - Scammers use account's profile
- Phishing site reported - steemitfoto
- Scammers must really hate me a lot to create a dedicated scam link
- Phishing site reported - pixz
- Anti-phishing war - The crooks continue their bashing campaign
- Phishing site reported - SteemitProtection
- Phishing site reported - myaprotection
- Phishing site reported - TPM Rotator
- Phishing site reported - SteemPix
- Phishing site reported - minnowboosternetwhitelistinvite
- Phishing site reported - steemituper
- Phishing site reported - steemiv
- Phishing site reported - Post copied without your permission
- Phishing site reported - Black Steem
reminder
A bit of paranoia is the basis of security.
There are a few simple rules to follow in order to avoid having your account hacked:
Rule 1: NEVER, I repeat, NEVER use or give your owner key or password!
Rule 2: Use your posting key to login, post and vote on trusted websites like steemit.com or busy.org.
Rule 3: NEVER give your active key as this key allows to control your funds! Only use your active key for special operation like money transfer or account update on trusted websites like steemit.com.
Rule 4: Anywhere else, if you are requested to provide any of the above key: RUN AWAY!!!
4 simple rules. It's not much to remember. Follow them scrupulously, and you will only have to laugh at unsuccessful attempts from scammers.
Spread the words, resteem this post to your friends, and you will make the platform safer.
Thanks for reading!
If you notice any new suspect activity like the one described above, drop a comment on this post or contact me on steem.chat
footer created with steemitboard - click any award to see my board of honor
Thanks for useful info!...:)...
Thanks bro for informing to all of us.
Very good job and very usefull post... Great information. I currently don't have information about using keys... Can u explain their functions?
In your wallet you will find several keys. One is your owner key(the third key in wallet)...NEVER and I mean NEVER give it to anyone. And anyone asking for it is probably a scammer.
Next you have an active password,(second key in your wallet) it if for if you want to send someone SBD or Steem, and for voting for winesses. IT CONTROLS YOUR MONEY!!!! So, also don't give it out to anyone, unless you are 100% sure you can trust them. Itshould only be used here on steemit and for trusted third party apps, such as steemconnect. However, you should always check the URL address to make sure you are in a secure connection and that the web page is the real one.
Then you have your posting key,(first key in your wallet) it allows you to vote and comment and basically interact on the Steemit site.
When you log in you should Always log in using your posting key.
What key are you logged in under right now? If you don't know the answer or you know it's not your posting key, you should copy down your posting key. Then log out and log back in using your posting key. This will also help you keep your account safe. I hope this helps, and if you have any more questions or need help, please feel free to ask. I am here for you, should you need me, just call on me.
Thank you so much for such a detailed reply. I have another question after reading this. There are two types of posting key one is public and other is private. What are their uses?
The private ones are the ones YOU will always use for performing actions.(as far as I know.) And I personally have never used the public keys, so I'm not sure if they have a use other then blocking your private keys from being seen. Sorry I couldn't offer a better answer on this one.
Thank you so much for your answer i really appreciate your support...
Good job arcange.
What a bastard, fool and a waste of space to society.
Well done @soufianezelmimi for looking like a cock on the steemit platform.
You made me smile with that one.😁 BIG SMILE! I agree with your sentiments exactly!
Haha, was a bit harsh but he deserved it eh :D
I just don't know how somebody could do that.
Mind boggling.
Cheers John.
Thank you for the information. in case by mistake if joined what to do now. it happned by mistake befor i got your warning. please suggest.
good informatin
If you still have control of your account, change your password immediately!
thanks for best information wow bro u r too good
Really.. be Safe!!!
Thanks for the Info.
thanks bro <3
Thank you for the warning arcange
자나깨나 스캠 조심~!
알려주셔 감사합니당~ ^^
'스파'시바(스빠씨-바)~!
Thank you very much for the information, I have very little time in steemit, I am a continuous learning process and this makes me vulnerable to this kind of malicious actions. how good it is to be able to count on experienced users who give their contribution in favor of helping the community
Thank you to warn us!
Check out @chnak -left a hidden comment for me on my video. https://steemit.com/travel/@squirrelbait/ral8yapp. Please and thank you.
Very good information, thank you!
Thanks for alerting us on this matter. I resteem your post.
Nice....
you really help me
It is better to use the password and not the key.
If you've provided the password in response to a phishing website, change your password immediately.
Act fast and that's all.
Wrong! Your password is like your owner key and you should avoid using it!
For daily tasks, there is no reason to use anything else than your posting key.
Thank you so much for this information resteemed your post!
Keep fighting the good fight my dear friend. Thanks for your diligence and awesome community-mindedness!
gracias buena y concisa info