Never give your password and double check on which website you really are!

New scams and phishing attempts are popping out every day. Be very careful and read this!

Scam Description

The scammer publish the following comment on user’s post

If you click on the link in the comment, you will be redirected to a website that looks exactly as steemit.com, with the exact same post as yours.

After a few seconds, a pop-pop windows will appear requesting you to re-enter your credentials.

NOTE: the domain name displayed and the background image may be different from the above screenshot

If you carefully look at the URL of the website in the address bar of your browser, you will notice that you are no more on steemit.com website.

You got it, someone is trying to steal credentials by luring users and ask them to relog on a fake Steemit website.

The sleemit.com website looks EXACTLY like Steemit.com and works like it. The risk is that a less paranoid user than me would think "oh … i’m logged out … let’s login back" and would provide its credentials to the malicious website.

Preventive action activated

I will add any account sending phishing links to the black list of my Warning-Bot and it will issue warnings with a link to this post, notifying users of the malicious activity of those accounts.

If you find similiar pishing attemps, contact me on steem.chat

To protect yourself, you can:

always double check before clicking on a link, especially if this links take you away from steemit.com.
verify the reputation of people writing comments on your posts. A user with a low reputation shoud trigger you attention.

Previous threat alerts

If you missed them, please find here the previous alerts I published:

reminder

A bit of paranoia is the basis of security.
There are a few simple rules to follow in order to avoid having your account hacked:

Rule 1: NEVER, I repeat, NEVER use or give your owner key or password!

Rule 2: Use your posting key to login, post and vote on trusted websites like steemit.com or busy.org.

Rule 3: NEVER give your active key as this key allows to control your funds! Only use your active key for special operation like money transfer or account update on trusted websites like steemit.com.

Rule 4: Anywhere else, if you are requested to provide any of the above key: RUN AWAY!!!

4 simple rules. It's not much to remember. Follow them scrupulously, and you will only have to laugh at unsuccessful attempts from scammers.

Spread the words, resteem this post to your friends, and you will make the platform safer.

Thanks for reading!

If you notice any new suspect activity like the one described above, drop a comment on this post or contact me on steem.chat

footer created with steemitboard - click any award to see my board of honor

Support me and my work to protect the Steemit community.

Vote for my witness

Sort:

Trending

[-]

guard (49) 7 years ago

WARNING! A link in this post by @arcange leads to a known phishing site that could steal your account.
Do not open links from users you do not trust. Do not provide your private keys to any third party websites.

$0.02

2 votes

arcange (78) 7 years ago

False positive?

$0.00

pjau (63) 7 years ago

I reckon @anyx just posted it manually just to mess with you :p

kalpona (39) 7 years ago

Don,t belive any third party.

bob-elr (57) 7 years ago

Meehn! New and advance thieves everyday. They just won't let Johnny have some good time with his cheese ball.

lynncoyle1 (63) 7 years ago

Thanks for the wealth of information here @arcange. I'm currently writing a post to raise awareness of this, and am going to link yours in it. Such valuable information...I guess if the bad guys can't be stopped, we good guys have to educate as many people as possible about the threat!

Thank you again!

Phishing site reported - steemiv