In a six hour trek through an insecure server, security researcher Harry Denley was able to reconstruct - and apparently shut down - a clever phishing attack that is targeting users of the Binance crypto exchange.
His Medium post details the activity on a phishing site - logins-binance.com12754825.
Ml - that collected logins and two-factor codes from confused users.
The server presented what looked like a standard Binance login and the user would type in their credentials and then be forced to wait, presumably while the hackers logged in on their side.
Luckily the server was wide open and Denley was able to find tools, logs, and even email addresses for the hackers.
Jeremiah O'Connor forwarded me a domain that has been phishing for Binance logins - logins-binance.com12754825.
This domain has a different phishing kit to previous ones we've seen, as it changes the user sign-in journey to collect personal information to eventually use in social engineering methods - this server does not communicate with the Binance domain.
The domains he found, including the nonsensical com12754825.
As we see, security is almost 90% about making sure that login screens and URLs look right and the rest, it seems, is luck.
Denley is Director of Security at MyCrypto.com and he last reported on a massive hole in an open source paper wallet generator.
Security Researcher Tears Up a Binance Scam Site to Find the Hackers
Publicado en Jun 3, 2019
by Coindesk | Publicado en Coinage
Coinage
Noticias recientes
Ver todo
Blockchain Bites: Bitcoin's Run, Uniswap's Hemorrhaging Value, Anchorage's Banking Bid
Bitcoin is nearing all-time highs in price and market cap last set three years ago.
Japan's megabanks to lead experiment with digital yen
We have, in order, Cheese Bank with a $3.3 million theft, Akropolis with its $2 million loss, Value DeFi with a whopping $6 million exploit and finally Origin Protocol's loss of $7 million.
Number of new Bitcoin addresses spikes amid growing FOMO
Japan's three largest banks, as part of a group of 30 private sector actors, are set to collaborate on an experiment with a digital yen.
Not just Wall Street: Quant trader explains why Bitcoin price is going up
Sam Trabucco, a quantitative trader at Alameda Research, believes four general factors are pushing up the price of Bitcoin.