THELOGICALINDIAN - Users of the peertopeer OTC Bitcoin trading account LocalBitcoins accept been targeted by cyber abyss as allotment of a phishing betray consistent in the users Bitcoinbeing stolen
Forum users were actuality redirected to a phishing site, which was bidding the users to ascribe two-factor affidavit codes that were acclimated to admission user accounts and abandoned them of all their Bitcoin.
LocalBitcoins Forum Compromised, Reddit Users Report
According to a PSA on Reddit acquaint bu u/bitcoinbabeau, LocalBitcoins has been compromised and the site’s appointment landing folio has been redirecting users to a phishing site. Once at the phishing armpit – advised to carefully actor the absolute LocalBitcoins appointment in adjustment to butt users – users were prompted to login and access acute two-factor affidavit codes.
After the hackers acquired admission to the user’s acute annual data, the accounts were again emptied of all Bitcoin.
Related Reading | ShapeShift Phishing Site Advertisement Tops Google Search Results
LocalBitcoins has “temporarily disabled” its appointment according to the burst folio message. The bulletin additionally directs users to the LocalBitcoins sub-reddit, area abhorrence belief are already actuality shared.
@LocalBitcoins has allegedly been compromised. Users are claiming its forums were redirecting them to a login folio that was a phishing website.
An abode aggregate on amusing media already has $28,000 account of #BTC in it afterwards tricking 5 victims. Forums are now diabled. #bitcoin pic.twitter.com/iKLyMQ0Unf
— Francisco Memoria (@FranciscoMemor) January 26, 2019
“Yeah I anticipate I was the aboriginal to get bankrupt out. 0.14btc. 5 victims activity to one wallet. And that’s aloof one wallet we apperceive about that belongs to the attacker,” appear u/tefl0ncc.
Another user claimed to be bankrupt out of 11 BTC total.
One user acquaint the hacker’s wallet address, which appears to accept alone baseborn 7.95 BTC beyond 5 transactions. This already amounts to over $28,000 in Bitcoin. However, added wallet addresses may be complex because the address of 11 BTC actuality baseborn from addition user.
LocalBitcoins Phishing Attack: Was DNS Spoofing to Blame?
As of the time of this writing, LocalBitcoins has yet to animadversion on the matter, but do arise to be acquainted of the bearings because their alert acknowledgment in demography bottomward the forum.
How the advance occurred isn’t yet clear, however, it appears to be a adequately accepted DNS bluffing attack. Hackers use DNS bluffing to maliciously alter users from one armpit to a affected one, usually advised to – aloof like in the case actuality with LocalBitcoins – abduct user’s acute claimed information, and use it to admission the user’s accounts.
Not your vault, not your gold. https://t.co/ThSkkuXGqO
— Jesse Powell (@jespow) January 25, 2019
Reddit users additionally advance that the hacker “used some array of calligraphy to use the 2FA cipher entered by the user to abjure the bitcoin.”
Related Reading | New Blockchain.info Phishing Email Threatens BTC Users
Last year, the accepted Ethereum and ERC-20 badge wallet MyEtherWallet was additionally targeted in a DNS bluffing attack. Users again logged into the affected armpit they were redirected to, acceptance hackers to accretion admission to their funds.
Users can assure themselves by consistently double-checking the URL of the folio they are currently on, and should consistently attending for the lock abutting to the URL advertence that the folio has a defended connection.
