Cybercriminals allegedly created a fake version of privnote.com. The fake version can be transferred to other users to steal bitcoins.
According to a June 14 message from KrebsOnSecurity, the creators of the encrypted note service complained about a fake cloning site for privnotes.com, whose fraud scheme consists of the following:
“Any messages containing Bitcoin addresses will automatically be changed to include another Bitcoin address, provided the message URL and recipient do not match.”
Privnote.com mentions in the report that phishing does not implement encryption systems. In addition, online criminals can read and / or modify all messages sent by users, in addition to using an automated script that scans messages to Bitcoin (BTC) addresses and replaces them with a fraudulent wallet address.
On a fake website, Alison Nixon, chief scientist at 221B Cybersecurity, said the scam was “very smart” and explained:
“Because of the design of the site, the sender will not be able to see the message because after it is opened, it will self-destruct, and the type of people who use footnotes is not the type of people who send this bitcoin. Wallet otherwise verifies.”
One of the factors that warns the company is the fact that since there are two similar URLs when they search on Google using the phrase “special footnotes”, the user will see the first snapshot of Google’s paid help – a phishing site. The second result is a legitimate website.
Introducing Privnote.com Cointelegraph, highlighting the role of Google:
“It’s important to know if scammers use Google search services, and that’s how they managed to attract a certain audience. Although we notified Google several times, they allowed us to abuse the scam because they were paying for ads. People trust Google so most of them have not thought about the search results, so give them something like our service. ”
In May, Harry Denley, an encryption security researcher, discovered about 22 Google Chrome browser extensions designed to steal cryptocurrency for their users. The plugins he found played out for well-known crypto companies like Ledger, KeepKey, MetaMask and Jaxx.
Cointelegraph contacted privnote.com, but did not receive a response before publishing. This article will be updated if the answer comes.