PSA: Really good phishing attempts ongoing, be extra careful where you enter your keys!
A quick warning to all steem users. There are some well-made phishing attempts going on who try to get you password. If you entered your password in a phishing site, please immediately change it at https://steemit.com/change_password !!! (this deserves three !!!)
One example of a phishing attempt is this post (I only provide screenshots and no links so users don't attempt to click them):
This user tries to get you to click on a link. Under it is a lot of intentionally blanc space to give you the feeling of a paywall. If you click the link you get to (Translation: not safe (no https, a first indicator that something is wrong) and not steemit.com as the url):
It now shows you a fake screenshot of the same article and a fake login box. If you enter your password here, the scammer succeeded. To iterate again: If you entered your password in a phishing site, please immediately change it at https://steemit.com/change_password !!! (this deserves three !!!)
I flagged this specific post and will flag all other attempts of this sort that I know of. Please always check the browser url before you enter your keys and use your brain. If something seems off even by a small bit, stop and think for a second. If you notice something new or something weird, go through this checklist:
- Is the url steemit.com?
- Is is a https site?
- If you can, verify that the certificate is valid:
- use a bookmark to steemit.com to be extra safe
- never click on links from email or inside posts
- if you are unsure, ask others to have a second look. You can always ping me on https://steemit.chat/direct/reggaemuffin if you think something is off
How to change your password:
Click on this link in the sidebar. Make sure it really is this url:
Enter your username and your old password. Then click on Generate Password and save it somewhere safe. reenter your password and check the disclaimers. Then click on Update Password.
If done fast enough this will lock out all scammers from your account. Be sure to not fall for them next time. If you use services like Steemvoter, remember that your keys changed and you have to give them your new key, if you want to continue using their service.
I am watching the comments under this post, so if you have something to add to this list, please leave your suggestion.
To support me, vote for @reggaemuffin as a witness:
Go to the witness page https://steemit.com/~witnesses
Scroll down and enter reggaemuffin in the box:
Click on Vote
Thank you for supporting me :)
-My original witness post-