A warning about RS/MU/HF password phishing

  • Throughout the month of April 2024, participate in the FileJoker Thread Contest OPEN TO EVERYONE!

    From 1st to 30th of April 2024, members can earn cash rewards by posting Filejoker-Exclusive threads in the Direct-Downloads subforums.

    There are $1000 in prizes, and the top prize is $450!

    For the full rules and how to enter, check out the thread
  • Akiba-Online is sponsored by FileJoker.

    FileJoker is a required filehost for all new posts and content replies in the Direct Downloads subforums.

    Failure to include FileJoker links for Direct Download posts will result in deletion of your posts or worse.

    For more information see     this thread.
Status
Not open for further replies.
R

Rollyco

Team Tomoe
Oct 4, 2007
3,562
34
To owners of Megaupload, Rapidshare, Hotfile, etc accounts:

There have been several recent cases on Akiba-Online of people posting links to specially crafted websites that are designed to steal your RS/MU/HF/etc passwords (i.e. "phishing".) Here's how they work:

1) A password stealer (phisher) makes a new post in the forums with a camouflaged URL. For example, the second link in this list is a phishing link (roll your mouse over it to see the real destination):
http://www.megaupload.com/?d=EI762N6E
http://www.megaupload.com/?d=YDKDTO6S
http://www.megaupload.com/?d=T31AXZB2
http://www.megaupload.com/?d=QT6CUYD0
http://www.megaupload.com/?d=OB19ANS1
Click to expand...

2) If you click on the second link, it will not take you to megaupload.com, but to the phisher's own site. It looks exactly like a normal megaupload page. If you attempt to login to megaupload from that fake page, the phisher will capture your username and password.


We need your help in detecting these scumbags, so if you ever come across a suspicious post, just click on the
report.gif
Report Post button.
 
CL™©®

CL™©®

"Sucker for Seifuku"
May 21, 2007
681
56
How do we know the difference from the real MU site & a phishing site?
I had an Email account hacked by phishing & the login looked exactly the same as the home page.
 
R

Rollyco

Team Tomoe
Oct 4, 2007
3,562
34
Simple: roll your mouse over my 2nd URL and you can see the destination is not [noparse]http://www.megaupload.com/?d=YDKDTO6S[/noparse] but [noparse]http://example.com/phish_me[/noparse]

P.S.: your signature pic is extremely distracting and huge...
 
W

wyvern2

PERVERT LOLI
Apr 16, 2008
197
1
ok I will be careful


Hmm..in my firefox I use greasemonkey and then install rapidshare/Mu/Hf checker link..


attachment.php



So it's easy for me to look the phising site

Cheer's
 
F

fr0stbyte

Member
Former Staff
Apr 8, 2008
739
10
Rollyco said:
Simple: roll your mouse over my 2nd URL and you can see the destination is not [noparse]http://www.megaupload.com/?d=YDKDTO6S[/noparse] but [noparse]http://example.com/phish_me[/noparse]

P.S.: your signature pic is extremely distracting and huge...
Click to expand...

Distracting and cute. :cool:

This phishing scam will only work for those who click links one by one.. For those who copy paste links into JDownloader and your typical download manager, it won't. I'll report links if and when I see them.

:notice:
 
redrooster

redrooster

赤いオンドリ - 私はオタクです!
Staff member
Super Moderator
Sep 25, 2007
18,799
113
since the last firefox update you cannot see properties (real link) by right mouse click anymore as the item in the mouse menu has been removed. Any clue how to see it nevertheless?
 
R

Rollyco

Team Tomoe
Oct 4, 2007
3,562
34
Roll over the link with the mouse and look at the status bar at the bottom of the browser window.
 
A

aviant_greek

Just a JAV Collector
Jul 30, 2008
149
4
from what i read from here
Code: 
rapidfind.org

it simple to prevent someone to phished your account,
always keep log on to any file hosting (megaupload, rapidshare or else)
and the real link will after you click always get you straight to the download page / download button, without asking u'r user id n password since you already log on

IF you are asked for your user id n pass eventhough you already had chose keep log on, you can say something is not normal, and it would be better to avoid to download the file

other way, you can use IDM (internet download manager), put your user id and pass in IDM, so every time you click a link, the IDM will get straight to download option.
After that, always copy paste the link you want to download to a notepad and save it.
Use Task --> Import --> From text file --> open your notepad file with the link you want to download

hope this help
 
Q

qwerty07

Member
Mar 3, 2010
295
10
I think you should always be logged on to your account, so if the website prompts you to sign in, you know something's up. That's what I do.

Thanks for the warning, though.
 
P

porkar

New Member
Apr 2, 2007
177
6
Thanks Rollyco, your post #7 showed me the answer.
 
C

covax

New Member
Sep 4, 2009
4
0
:fever:

thank you, I have been lost my RF once but it's only one and a half month left .

:cool:
 
hypemx7

hypemx7

Intriguing JAV Hunter
Mar 6, 2009
419
124
Indeed.

As mentioned, this douchebaggery can be circumvented with ease by using a download manager that verifies the links.
 
A

anticlient

New Member
Feb 26, 2009
1
0
why don't moderator urge member to put the link inside code tag? hence the link won't be an active/click able link
 
D

dannythedevil

New Member
Jul 9, 2009
4
0
Some sugesstions :hi:

1. Make a Rule or Urge Posters that they MUST code their Links.
2. If the links arent coded and you want to donwload the file then highlight the link.
3. Make sure that the coded link is http://www.megaupload or www.rapidshare in the beginning ( sometimes some digits come when you download from rapidshare )

mostly if the links arent coded, the chance is higher that a link is hidden behind it, and as mentioned earlier that it leads to another site where your account gets phished.
 
Status
Not open for further replies.
Top Bottom