Bitpay Targeted By Phishing Attacks Again

Published at: Aug. 27, 2014

Phishing attacks are nothing new on the internet. While most are relatively amateurish (the African Princess) some are quite well put together and will fool most people if you are not paying attention. Phishing incidents have been happening more and more frequently in the virtual coin industry and the latest group targeted seems to be customers of BitPay, one of the largest cryptocurrency payment platforms in the world.

image: Bitpay via Imgur

Different companies react differently to events like this, but BitPay is already stepping up to the plate with a public statement to Cointelegraph about what happened and where the attack was coming from. BitPay’s public statement is as follows:

 

There has been an email phishing attempt spoofing BitPay’s late payment notification email. As always, BitPay’s security is the main priority.  There has not been a breach to our system.  It’s very unfortunate that these malicious attacks have been made on the bitcoin community. These emails came from [email protected] - any link in an email from this address should not be clicked.  This email address is not a legitimate BitPay email address. Many of BitPay’s system emails do come from [email protected] (please note the lack of an underscore in the correct address). The phishing attempt was mimicking a late payment notification from BitPay. A screenshot of the attempt can be found here: imgur.com/SHOEqpO. The attack prompts the receiver to click a link to invoice-bitpay.com - this is not a BitPay site. As soon as the phishing attempt was identified, BitPay reported the fraud attempt to the domain company and were successfully able to have the site taken down (invoice-bitpay.com).If a BitPay client has already clicked on the phishing link and entered a username and password, PLEASE go to https://bitpay.com/merchant-login and click on the Forgot Password button to reset the password immediately! To stay vigilant and avoid any breaches, always look for the green BitPay, Inc SSL certificate indicator in the browser window. Always be extra cautious about checking the domain name and EV SSL certificate when entering a password. If you use a personal computer with good password protection, let your browser store and populate userids and passwords for you -  the browser will not mistakenly enter your password on a phishing site. BitPay also strongly advises all of its merchants to enable Two-Factor Authentication on their accounts. BitPay is continually working with its merchant base to educate them on the best security practices.  Please reach out to [email protected] if you have any further questions.

Phishing attacks are very easy to avoid if you keep just a few rules in mind. Remember that reputable websites never ask for passwords, usernames or personal information in emails. There are also certain types of files often used in these attacks, such as .jar files, because filters are not designed to recognize them as potentially hostile.

Tags
Related Posts
City in North Dakota now accepts cryptocurrency for utility payments
A city in North Dakota is joining the cryptocurrency adoption race in the United States by starting to accept crypto payments. Hercules Cummings, finance director for the City of Williston, announced Thursday that the city administration has partnered with crypto payment firm BitPay to start accepting cryptocurrencies like Bitcoin (BTC) as payment for utility bills. “We have partnered with BitPay, the largest virtual payment merchant whose partners include Microsoft and Facebook. We are the first municipality in the State of North Dakota, and the third in the nation, to offer this service,” the city executive stated. Utility bill payments will …
Adoption / May 14, 2021
BitPay Says It Has ‘Paused’ Processing Bitcoin Payments in Germany
Bitcoin (BTC) and Bitcoin Cash (BCH) payment processor BitPay confirmed that it suspended its operations in Germany in an email sent to Cointelegraph on Aug. 1. BitPay: “We have paused operations in Germany” In the aforementioned email, a BitPay PR rep. Jan Jahosky cited regulation coming into force next year in Germany as the reason why the company decided to suspend its services in the country. The firm added that it is currently evaluating adding support for Germany again in the future. A BitPay spokesperson told Cointelegraph: “Germany has publicly stated that they want crypto companies to apply for a …
Bitcoin / Aug. 1, 2019
BitPay Goes Beyond 26 Thousand Merchants
As of previous week, BitPay has surpassed an impressive number of 26,000 approved merchants that are willing to use the service to process their Bitcoin payments. Maybe 26 tons is not as round number as 10 that service managed to reach half a year ago, but that doesn’t make it less respectable in or eyes. Only three and a half month ago, a fellow author wrote about yet another milestone reached – 15,500. That definitely counts as successful expansion in my books. As a short recap. BitPay is PayPal for Bitcoin. Customer makes a purchase using bitcoins but seller receives …
Bitcoin / March 20, 2014
Cold Storage: AZ Cryonics Lab taking Cryptocurrency
Add artificial life extension to the list of things payable in cryptocurrency: an Arizona cryonics lab is taking donations in Bitcoin. Donors to the Alcor Life Extension Foundation, a non-profit organization based in Scottsdale, can now make one-time donations in Bitcoin in any monetary amount using the company’s Bitcoin donation page, which is powered by popular cryptocurrency service Bitpay. “The generosity of [Alcor’s] members and supporters…permits Alcor to do more than what would be possible with membership dues alone,” the company’s donation page says. “Your generous tax-deductible donation will help us preserve the future for all of our members.” The …
Bitpay / June 30, 2014
NFT owners reminded to be vigilant after 29 Moonbirds were stolen by clicking a bad link
A Proof Collective member has fallen victim to a scam, losing 29 highly-valuable Ethereum (ETH)-based Moonbirds. According to a tweet by Cirrus on Wednesday morning, the victim lost 29 Moonbird nonfungible tokens (NFTs) worth $1.5 million after clicking a malicious link shared by a scammer. 29 Moonbirds were just stolen in a hack. ~750e (~$1,500,000) in value lost by clicking on a bad link. Sickening seeing stuff like this. Let this be a reminder to never ever click on links and to bookmark the marketplaces/trading sites that you use. pic.twitter.com/7iWO5LMovL — Cirrus (@CirrusNFT) May 25, 2022 Dollar, a Twitter personality …
Nft / May 25, 2022