[STEEM SECURITY TIP] Watch out for STEEM Mirror Sites - Never Login With Your Credentials
Hey Steemers
A potential security issue has come to my attention. Steem mirror sites are starting to pop up and something that will certainly continue as we grow in more popularity. One mirror is currently running at https://steemit.vlj.lt
Mirror sites like this can be potential risks for compromising your password and access keys. The steem account recovery is a great protection for everyone - but your steem dollars/steem are still at risk if your account is compromised.
For example the mirror site has a login form. Steemers might assume they are logging into steemit.com.. this is not the case. This mirror site has no official affiliation with steem.
Security tip
Absolutely never! log in/use your steem password on any site that isn't https://steemit.com. As further good practice periodically changing your steem password is also advised.
Also watch out for copycat sites that might try to look like steemit itself. Bookmark this site and use the bookmark don't click on links from other sites and log in using them. It's all too common for things like steemlt.com to show up in ads and searches.
Thank you! It's a good tip!
Thanks for sharing. A good reminder of something easily overlooked.
but!
many use to login through Facebook accounts and reddit ...:)
I would suggest developers to migrate to email instead login through Facebook or reddit.
Ok! thx!
Thank you for the tip. Much appreciated.
This advice really applies to all websites.... Facebook.com def very different than facebook.xxx ;)
Thanks for letting us know. Mirror sites are yet another sign that Steemit is becoming a major force.
Good for us!
@originate, Thanks for your advise.
Just a question: is ok to save our steem/password in my pc? I´m no sure if can do it or not.
Thanks an greetings from Colombia,
@jacksongarcia NP! Yes, for the most part that is fine (assuming your computer is free of malware, etc). Storing offline/non digital is another good security level. Tools like https://1password.com/ are good for an active password manager. Rotating/updating your passwords periodically is also good practice.
Oh! Really thanks for your soon answer! I had that doubth for somedays but now is clear for me.
Thanks also for the link. I will follow ´cause I think your posts are interesting. Nice to write you again.
Yes, I totally agree because there could be links that say https://steemit.com out on the web, but in reality take you to another place entirely. I have bookmarked the homepage, and that is the only navigation I will you to this site.