ππ¦ΈββοΈ [monthly report - May 2021]
@keys-defender activity report for the month of MAY
Β
K E Y S Β P R O T E C T I O N:
PRIVATE KEYS LEAKS protected:
- Chain: Hive (Hive only account π)
- Type: Memo key
- Operation in which the key was leaked: transfer
Leaked account stats:
- Estimated Account Value: $ 8.40- Reputation: 39
- Followers: 7
- Account age: Joined April 2021
Β
2. @bukkyi4u
- Chain:
Steem(Steemonly account π) - Type: Posting key
- Operation in which the key was leaked: post publishing
Leaked account stats:
- Estimated Account Value: $ 455.00- Reputation: 60
- Followers: 8
- Account age: Joined March 2021
Β
3. @random7
- Chain: Hive (Hive only account π)
- Type: Active key
- Operation in which the key was leaked: transfer
Leaked account stats:
- Estimated Account Value: $ 6.94- Reputation: 38
- Followers: 0
- Account age: Joined January 2021
Β
4. @mark-greek
- Chain:
Steem(Steem only account π) - Type: Posting key
- Operation in which the key was leaked: transfer
Leaked account stats:
- Estimated Account Value: $ 0.03- Reputation: 25
- Followers: 0
- Account age: Joined May 2021
Β
5. @ivonne
- Chain:
Steem(Hive and Steem account) - Type: Posting key
- Operation in which the key was leaked: comment
Leaked account stats:
- Estimated Account Value: $ 559 on steem + 4 on hive- Reputation: 56
- Followers: 222
- Account age: Joined Jan 2018
Β
6. @florrs0616
- Chain:
Steem(Steem only account π) - Type: Posting key
- Operation in which the key was leaked: post edit
Leaked account stats:
- Estimated Account Value: $ 0.0- Reputation: 25
- Followers: 8
- Account age: Joined February 2021
Β
7. @abhi369
- Chain: Hive (Hive only account π)
- Type: Active key
- Operation in which the key was leaked: transfer
Leaked account stats:
- Estimated Account Value: $ 0.0- Reputation: 25
- Followers: 8
- Account age: Joined May 2021
Β
8. @iv********es
- Chain:
Steem(Steem only account π) - Type: Active key
- Operation in which the key was leaked: transfer
Leaked account stats:
- Estimated Account Value: $ 4.60- Reputation: 48
- Followers: 59
- Account age: Joined March 2021
NOTE: @keys-defender still scans the STEEM blockchain because your private keys are shared across the two chains unless you reset your password at https://wallet.hive.blog/@your-username-here/password ! - do it.
Cold scan
- part 1:
- 3x PRIVATE MEMO KEYS
- 39x PRIVATE POSTING KEYS
- 2x PRIVATE ACTIVE KEYS
- part 2
- 1x PRIVATE ACTIVE KEY
- 55x PRIVATE POSTING KEYS
- 13x PRIVATE MEMO KEYS
- + Live scan:
o a a a a a a p p a a p p a a a p p p p p a p p p p p p m m p p p a p o p m a m m p p p p p p p p p p p p p p p p p p a m p m m m m m p m p p p p m p pm p a p p p a a
= TOT:
Β Β 30 memo keys, 144 posting keys, 20 active keys, 2 owner keys.
PHISHING LINKS detected (and auto-replied to): Β 0 βοΈ (keeping the bad guys away! π)
SCAM LINKS:
- new reports: 1
- detected (and auto-replied to): Β 3 β
https://peakd.com/@spencer567ss/qu2d5n
https://peakd.com/@james56da/qsikgo
CODE INJECTIONS detected on Hive: Β 1
Nothing harmful, just a test: https://hiveblocks.com/test/@brutalisti/test
Β
UNSAFE LINKS detected:
- Shortened links: 23.4/h -> ~16,848/month. Auto-replies/warnings throttled 1/20.
- HTTP links: 17.6/h -> ~12,672/month. Auto-replies/warnings throttled 1/20.
NOTE: links that do not use a secure protocol (https) and shortened links (eg. bit.ly) are NOT a threat per se but can lead to theft of credentials if misused or used in a malicious attack.
Β
Apologies to @asgarth and @jarvie for autoreplying to shortened gmaps links on their contest ("guess where this picture was taken"), they didnt enjoy that.. π
.. π€£
I could have sweared I already whitelisted those but apparently I did not. I now added to my backlog to allow top40 witnesses and whitelisted users to whiteslist new domains. That will prevent this issue in the future.
O T H E R Β A C T I V I T I E S: Β --> This section will eventually be moved to @hive-defender
Confirmed re-posting authors: Β 0
No one is monitoring my bot's (a bit noisy) warnings.. :(
Downvotes of @keys-defender (and its trail) against abusers: Β
https://hive.blog/@amaliasteva -> plag
https://hive.blog/@dame.art/posts / https://hive.blog/@dameart/posts -> reposting
https://hive.blog/@willy7855/posts -> plag
https://hive.blog/@eloy-drawing/posts -> id theft
Blacklisted farmer: https://peakd.com/@crystalan/payout
+ Various reports thanks to my bot auto-detecting suspicious behavior:
Β
@keys-defender currently follows the hiveflagreward team's downvote trail
@keys-defender is downvoting: farming waves, phishing waves and old hive haters.
Followers of my downvote-trail:
Β 7 Β (plus their own trail - about $ 10 downvote power in total) ->Β
DEVELOPMENT UPDATE:
Not much development in May. I put on my calendar to do hive coding every wednesday night this month. π€
Β
- Future development -
My priorities remain the same:
- Mute lists and tests in testing community using @key-defender.shh - waiting for @blocktrades's fix in hivemind to be released. (is it out?)
- Formula to counteract exact votes (plus UI?) -- ** deferred **
- Universal script to use new banlists. + other improvements + PR for condenser
- Allow community to remove entries from ban lists
- pwnd emails check (quick feature)
- Abuse reports (rewarded) and separate abuse lists (plagiarism, farming, etc)
- Tech-only proposal to cover expenses ??
- Old (huge) backlog. Eg. bug fixes ( boring.. =] ).
π
- XSS vulnerabilities in #########.com
- XSS vulnerabilities in hive-db.com
- XSS vulnerabilities in scribe.hivekings.com
- XSS vulnerabilities in hiveblockexplorer.com
- Malicious ads redirecting all Steemit iOS users to a phishing site
- Reverse tabnabbing and clickjacking in steem.chat and steeemit registration page
Other contributions:
- Universal script to prevent phishing in all Hive frontends
- Commands for community reports and ban lists
Keys-Defender features:
- Phishing protection [live scan of commentsa and posts to warn users against known phishing campaigns and compromised domains, scan of memos]
- Re-posting detection [mitigates the issue of re-posters]
- Code injections detection [live scan of blocks for malicious code targeting dapps of the Hive ecosystem]
- Anti abuse efforts [counteracts spam from hive haters and milking campaigns]
To support this project:
Follow my curation trail on hive.vote to upvote all my posts with a fixed weight.
Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β If you like what I'm doing please
upvote
, delegate π or auto-vote π my posts. Thx! π
hahah it's all good :)
Thanks for working on that though
!discovery 25
This post was shared and voted inside the discord by the curators team of discovery-it
Join our community! hive-193212
Discovery-it is also a Witness, vote for us here
Delegate to us for passive income. Check our 80% fee-back Program
Top work and than you very much for this service! I have a quick question if I may. If I don't have my master password key but have all the rest, can I reset my account and make it safe? TIA
Unfortuanately without the owner key or password you cannot reset your keys.
Electronic-terrorism, voice to skull and neuro monitoring on Hive and Steem. You can ignore this, but your going to wish you didnt soon. This is happening whether you believe it or not. https://ecency.com/fyrstikken/@fairandbalanced/i-am-the-only-motherfucker-on-the-internet-pointing-to-a-direct-source-for-voice-to-skull-electronic-terrorism
!SCAM https://dogeroix.com https://bitcocity.com/dogeroix-giveaway https://kudochange.com https://sandrcoin.com
Thank you for your report, entry added to @keys-defender's database "SCAM".