SCAM ALERT @mubaraksogadar! (NEVER GIVE OUT KEYS!)
There are many ways to trick users in handing over their account rights.
This account, @mubaraksogadar, does it by 'giving away free services'.
The link to the page is masked with AURL shortener and reads http://nullrefer.com/?https://t.co/BADyAbNr0S
which takes you to the page of http://autobotsteem.ga
.
Don't hand out your active keys, ever!
When you click 'Join Now' it will take you to the steem connect service, which is fully legit, but it asks you for your MASTER, OWNER OR ACTIVE keys!
What's the difference?
Your account consists of the following keys you should NEVER give out
- Your Master Password
- Owner Key
- Active Key
The master password and owner key can do everything including changing your credentials and transfer funds! Your active key can transfer funds.
There is only ONE key you could use, and that is the 'Posting Key'. With this key, the service can post on your behalf.
Be careful when using external services!
Vote for me as Witness
Enjoy what I contribute to the community? Consider voting for my Witness on Steemit or BitShares. You can also vote for me as a Steemit Proxy Voter. On BitShares I would like to promote @fav as an excellent proxy.
By voting for me as a witness, you will support an active witness on Steem and BitShares.
Read my Witness Posts: BitShares, Steemit
There are so many scammers on Steemit giving away free services and new, unexperienced Steemit users should be warned more often through posts like this. If they already clicked on such links and made mistake by giving away their passwords to a scammer it is good to know there is Stolen Account Recovery option which can be used only up to 30 days since their password had been stolen. Also, such scammers should be immediately reported to Steemit support!
Just flagged him on my blog... Thank you for the heads up!
Thanks for the warning. It’s extremely difficult to get a message spread around here.
So I came up with a contest in which I ask people to write a blog post about the phishing attack and how to stay safe.
The idea behind it was that if I would write a post, reach would be very limited. The more people that write a post, the more people can be reached and warned.
It’s important to spread the word, because for more than a month, people are falling victim on a daily basis.
If you won’t mind me asking, could you please take a look at the post, and if you consider it worthy to share, that would be very much appreciated.
Since SteemIt Inc. doesn’t act, we need to educate people if we want this to stop.
You can find the contest on my blog. Look for the post I published 2 days ago; ‘💰 [20SBD CONTEST] Protect People From The Ongoing Phishing Scam’
Any constructive feedback would alse be appreciated..,
@simplymike
Are the legit sites that ask fir that owner key? Is there any way to tell if not coins have been taken? Thanks for the info. ;)
Joy
It depends on the type of action you wish to perform. Steem Connect can handle actions that require you Owner key, like sending assets, delegating steem power etc.
Pages like the minnow booster can request these types of actions.
The vital thing to understand is what type of action is performed and what the end result will be for you as an account holder.
This should be explained in
FAQ i believe. It is so important.
Thanks
WARNING! A link in this post by @sc-steemit leads to a known phishing site that could steal your account.
Do not open links from users you do not trust. Do not provide your private keys to any third party websites.
Where is the phishing link?
I guess its trigger on this part of my post
Well, duh!
I'm warning people about it and you shouldn't flag me. The links aren't click able you dumb bot.