CRYPTO HACKS/SCAM by @cutlass- 10% to TRON_FAN_CLUBsteemCreated with Sketch.

in Tron Fan Club2 years ago

CRYPTO SCAMS.png
editedoncanva

Hello everyone my name is Oshoke and in this post, I will be taking you through security loopholes we have in blockchain and how hackers can exploit users who don’t have knowledge of how these hacks are carried out

1.png


Everyone in the blockchain space is familiar with the whole blockchain cannot be hacked, blockchain is impenetrable etcetera, although this may be true to some certain degree the blockchain is not 100% safe from hackers as different methods are implemented on a daily basis to steal users assets.
No matter how up-sided a feature is they are always people seeking out new ways to take advantage of it, cryptocurrencies are no exception in this context, many new ways to exploit the blockchain or newbies are being cooked up daily and lots of people without experience are losing their life savings and assets on a daily basis, basically, a cryptocurrency scam is simply obtaining cryptocurrency through fraudulent means

Below are a list of some ways users can have their assets stolen

  • 51% ATTACK
  • PHISHING/IMPERSONATION
  • SOCIAL MEDIA SCAM

1.png


51% ATTACK

FINANCIAL SECURITY IN BLOCKCHAINS.jpg
Source

The 51% attack can only be achieved when a hacker gains control of a little over half of the active nodes in a blockchain implying that he has mining advantages on the blockchain over other blockchains hence he can mine and approve blocks in a blockchain
When over 50% of the blockchain is taken over by a single node he can mine and confirm new blocks, the user can also transfer or reverse funds he sent earlier back to his wallet depending on the mining power the hacker collects he can do a whole lot of unwanted things to your assets like delay transaction or reject transaction etc
The 51% targets mostly blockchains who use mining to reach consensus like the bitcoin, although the likes of Bitcoin and Ethereum might be too far fetched for the likes of the 51% attack cause it has its node all around the world and you will have to practically hack half of the world to get this done which I don’t think it’s possible. This attacks are usually targets of small and private blockchains that use miners to validate blocks, below is a list of blockchains that have been successfully hacked using 51% attack

VERTCOIN
BITCOIN GOLD
GRIN


PHISING/IMPERSONATION

FINANCIAL SECURITY IN BLOCKCHAINS.jpg
Source

PHISHING as we know it is all about impersonation in order to attain sensitive information for malicious intent, in most cases hackers often create either sites very similar to the original website, for instance let’s assume from website was www.tron.network this hackers will create site links very similar to the original thing with in some cases an almost identical web design , UI and UX even close web address like tron.to or tronx.cc, anything close to the real thing to convince you it’s legit
On getting your attention they will require you to put you log in details and submit your pass phrase or private key with which they will quickly move to your actual account in the real website and steal your assets. The easiest way to avoid PHISING is to avoid any site that is not the official site or avoid typing in your keys any where you are asked to apart from the official website
IMPERSONATION on the other hand is usually done to attain one’s log in details especially in cases of wallets, someone will call you pretending to be a customer with the Exchange and claim to want to help you sort out issues in your account you didn’t know about or claiming to help you win bonus meanwhile once you divulge your information to them they will immediately steal your data and block the line


SOCIAL MEDIA SCAM

2.png
Source

A very common way people get their assets stolen is via social media, the most prominent one on this list is the Malicious Airdrop.
Airdrops are marketing and awareness incentives adopted by blockchains to help widespread their publicity and reward users for performing tasks with tokens sent directly to their wallets. There are often cases where some airdrop bots will request for someone’s private key which should serve as a red flag that it is a scam some ignorant people will still go ahead and send and have their assets stolen
Above is a twitter account that was created with the aim of spreading false information about a particular arbitrage platform which started off with rewarding its users with 5% daily reward for trading, the projects started off and rug pulled users with millions worth of USDT.

1.png

HOW TO AVOID CRYPTO SCAMS

  • NO official costumer service would ever call you and ask for your Private key.
  • Make research on a project before you join, some project don't have proper security backing as the Bitcoin and Eth to carry out PoW hence are vulnerable to 51% attack, make sure your blockchain is widely adopted before you join in with your assets
  • One of the most effective ways to avoid your asset from getting stolen is to never divuldge your private key anywhere part from an official blockchain website
  • A second way would be to always verify activities on official blockchian website, most of this scam are built on false information
  • Most social media campaign are announced in the official website, if its not there don't participate and even if you must never give out your pass phrase or keys to any bot
Sort:  

Yeah I've heard alot about the 51% attack, I even did a little research on it back in the days, it's nice seeing it on Steemit. That would be bad for any Blockchain though probably some cryptocurrencies have taken measures against it

Yeah. The most effective measure is to be widely adopted, that way the hacker will have a lot of trouble hacking half of the blockchain. Thank you for your input

Thank you so much dear for sharing such an important awareness post with us.

You are welcome my friend

Wow this update really nice. I like your post. Thanks for sharing.

There's a lot of crypto scams out there and we should be veer y careful while investing in cryptocurrencies.

Thank you for this clear information.

You are very much welcome my friend