URL Spoof phishing
To access www.iMoose.com ï¼ please pay attention to below security rulesï¼
One more rules shall be notedï¼
Donât enable API if it was not required.
User may be attacked by phishing website via search engine referrals,browser plugins/extensions,third party or invalid appsã
It is recommended to install Netcraft extension to protect you from phishing attacksï¼https://toolbar.netcraft.com/
Risky search engine referalls, navigate user to phishing website
Risky brower plugins/extensions, navigate user to phishing website
Risky email with phishing link
Some users may install third party application to manage their investment portfolios, or install invalid APP from app store.
Phishing websites may induce user to expose their confidential information such as password, 2FA code. Therefore, Hackers can steal usersâ coins through API withdrawls, abnormal buy/sell orders.
Below logs illustrate a phishing attack through searching engine referralsï¼
Server logs listed the process of coins stolen:
- Login: 184.108.40.206 2018-02-05 09:54
- Modify API : 220.127.116.11 2018-02-05 10:00
- Confirm API withdraw : 18.104.22.168 2018-02-05 10:01
- Login: 22.214.171.124 2018-02-05 10:02
- Complete API withdraw : 126.96.36.199 2018-02-05 10:02
- Delete API : 188.8.131.52 2018-02-05 10:03
One victim attacked by phishing website described details as blow:
Appendix suspicious phishing website list