Leak -- Compromised ACTIVE key successfully protected
(Edited)
āāā š ā ļø š ā ļø āāā
It's a new day and another user leaked one of their private keys into the Hive Blockchain.
They COMPROMISED their...
private ACTIVE key
HOW: in a transfer operation
The compromised account owner has now been notified in multiple ways. The identity of the user will be disclosed only in the monthly report in order to give them time to address the issue.
Compromised account stats:
Reputation: 62
Followers: 80
Account creation: 8/2020
Last action on chain: 2021/6/23
Estimated account value: $ 77
Top 5 private ACTIVE keys protected:
1. @nextgen622: ~$ 28,000
2. @cryptoandcoffee: ~$ 8,400
3. @runridefly: ~$ 3,300
4. @globalmerchantio: ~$ 250
5. @j3dy: ~$ 120 (500 HIVE automatically protected for 9 days)
2. @cryptoandcoffee: ~$ 8,400
3. @runridefly: ~$ 3,300
4. @globalmerchantio: ~$ 250
5. @j3dy: ~$ 120 (500 HIVE automatically protected for 9 days)
My security disclosures for Hive:
- XSS vulnerabilities in #########.com
- XSS vulnerabilities in hive-db.com
- XSS vulnerabilities in scribe.hivekings.com
- XSS vulnerabilities in hiveblockexplorer.com
- Malicious ads redirecting all Steemit iOS users to a phishing site
- Reverse tabnabbing and clickjacking in steem.chat and steeemit registration page
Other contributions:
- Universal script to prevent phishing in all Hive frontends
- Commands for community reports and ban lists
Future development: Ā plan
- XSS vulnerabilities in #########.com
- XSS vulnerabilities in hive-db.com
- XSS vulnerabilities in scribe.hivekings.com
- XSS vulnerabilities in hiveblockexplorer.com
- Malicious ads redirecting all Steemit iOS users to a phishing site
- Reverse tabnabbing and clickjacking in steem.chat and steeemit registration page
Other contributions:
- Universal script to prevent phishing in all Hive frontends
- Commands for community reports and ban lists
Future development: Ā plan
Keys-Defender features:
- Keys protection [live scan of transfers/posts/comments/other_ops.
Warnings (reply and memo), auto-transfers to savings until fully restored, auto-reset of keys, ..] {see automatic posts on leak and monthly reports}
- Phishing protection [live scan of comments and posts to warn users against known phishing campaigns and compromised domains or accounts, scan of memos and auto-replies, anti phishing countermeasures - eg. fake credentials]
- Re-posting detection [mitigates the issue of re-posters]
- Code injections detection [live scan of blocks for malicious code targeting dapps of the Hive ecosystem]
- Anti abuse efforts [counteracts spam from hive haters and milking campaigns]
- Phishing protection [live scan of comments and posts to warn users against known phishing campaigns and compromised domains or accounts, scan of memos and auto-replies, anti phishing countermeasures - eg. fake credentials]
- Re-posting detection [mitigates the issue of re-posters]
- Code injections detection [live scan of blocks for malicious code targeting dapps of the Hive ecosystem]
- Anti abuse efforts [counteracts spam from hive haters and milking campaigns]
To support this project..
0
0
0.000
Well done ny friend
You are doing good job..
!PIZZA
!ALIVE
!LUV
@keys-defender! I sent you a slice of $PIZZA on behalf of @guurry123.
Learn more about $PIZZA Token at hive.pizza (2/10)
thx!
You Are Alive and have been rewarded with 0.1 ALIVE tokens from the We Are Alive Tribe, and it's paid for by the earnings on @alive.chat, swing by our daily chat any time you want.
@keys-defender, you were given LUV from @guurry123. About LUV: https://peakd.com/@luvshares
!PHISHING https://leofinance-steem.web.app
Thank you for your report, entry added to @keys-defender's database "PHISHING".
Thank you for your report. The PHISHING domain [leofinance-steem.web.app"] was already in the banlist. - @keys-defender
!HACKED @guider
Thank you for your report, entry added to @keys-defender's database "HACKED-USER".
Thank you for your report. The HACKED-USER domain [guider"] was already in the banlist. - @keys-defender
!PHISHING https://justnetwork.tech
Thank you for your report. The PHISHING domain [justnetwork.tech"] was already in the banlist. - @keys-defender
Thank you for your report. The PHISHING domain [justnetwork.tech"] was already in the banlist. - @keys-defender