LocalBitcoins Resumes Outgoing Transactions After Warnings of Phishing Link on Forum

Published on by Cointele | Published on

Mentioned in this article
A link to a phishing LocalBitcoins clone website had been placed on the official LocalBitcoins forum, but the attack has since been stopped.

A LocalBitcoins community manager warned of the attack on Reddit on Jan. 26.

According to the post, an unidentified hacker or hacker group detected a security vulnerability in the LocalBitcoins forum and linked it to a phishing forum.

"When visiting the localbitcoins forum users are prompted to log into their account, as if they have been logged out. This only seems to happen if you are already logged in. This is is [SIC] a PHISHING SITE and 2FA codes are being used to empty customer accounts. Withdrawals have since been suspended by LocalBitcoins."

"Please get the address 13WaahhsiGph4ysmQtjVhVTdgQUSL62KJr blacklisted on exchanges."

In the Reddit post published by the community manager, LocalBitcoins claims that the identified vulnerability was contained in third-party software, and confirmed six known cases of users being affected.

The company also reportedly stopped the attack and re-enabled outgoing transactions.

Still, the post notes that the forum feature is still disabled until further notice.

As Cointelegraph recently reported, following international police collaboration, a 36-year-old individual suspected of the theft of over $11 million in IOTA through another phishing scam was arrested.

News broke earlier this month that Indian police have arrested an associate of a group accused of conducting a crypto scam involving 5 billion rupees.

x