February 2021 - activities report
K E Y S P R O T E C T I O N:
PRIVATE KEYS LEAKS protected:
1. @shiningst
- Chain: Steem (steem only account 👎)
- Type: Posting key
- Operation in which the account was leaked: comment
- Estimated Account Value: $ 2.75
- Reputation: 43
- Followers: 1
- Account age: Joined July 2020
2. @florrs0616
- Chain: Steem (steem only account 👎)
- Type: Posting key
- Operation in which the account was leaked: comment
- Estimated Account Value: $ 00.00 (on Hive)
- Reputation: 25
- Followers: 8
- Account age: Joined Feb 2021
3. @minato
- Chain: Steem (Hive + steem account)
- Type: Posting key
- Operation in which the account was leaked: comment
- Estimated Account Value: $ 1.35 (on Hive) + $ 1.16 (on Hive)
- Reputation: 36
- Followers: 321
- Account age: Joined Aug 2017
- Chain: Hive (Hive only account 😎)
- Type: ACTIVE key
- Operation in which the account was leaked: transfer
- Estimated Account Value: $ 53.49
- Reputation: 58
- Followers: 164
- Account age: Joined May 2020
- Chain: Hive (Hive + steem account)
- Type: Memo key
- Operation in which the account was leaked: transfer
- Estimated Account Value: $ 19.59 (on Steem) + $ 31.21 (on Hive)
- Reputation: 56
- Followers: 45
- Account age: Joined May 2019
6. @rimungjuah
- Chain: Steem (Hive + steem account)
- Type: Posting key
- Operation in which the account was leaked: comment
- Estimated Account Value: $ 0.67 (on Hive) + 0.94 (on Steem)
- Reputation: 40
- Followers: 238
- Account age: Joined May 2018
NOTE: @keys-defender still scans the STEEM blockchain because your private keys are shared across the two chains unless you reset your password at https://wallet.hive.blog/@your-username-here/password!
active keys: // todo
memo keys: // todo
owner keys: // todo
PHISHING LINKS detected (and auto-replied to): ~155❗
See @hivewatchers's post for more info: https://hive.blog/phishing/@hivewatchers/phishing-warning-no-critical-wallet-update-no-airdrop-no-giveaway
Auto-replies in wallet memos will be developed shortly.
CODE INJECTIONS detected on Hive: 1
- No harm, just a dev testing his own site:
UNSAFE LINKS detected:
- HTTP links: ~72.3/h -> ~52,056/month. Auto-replies/warnings throttled 1/20.
- Shortened links: ~30.7/h -> ~22,104/month. Auto-replies/warnings throttled 1/20.
NOTE: links that do not use a secure protocol (https) and shortened links (eg. bit.ly) are NOT a threat per se but can lead to theft of credentials if misused or used in a malicious attack.
O T H E R A C T I V I T I E S:
Confirmed re-posting authors: 0 ✔️
One false positive:
critical bug fixes required
Downvotes of @keys-defender (and its trail) against hive-abusers: 87 ❗
Accounts:
- antonireviews
-> see phishing wave that hit Hive this week: https://hive.blog/phishing/@hivewatchers/phishing-warning-no-critical-wallet-update-no-airdrop-no-giveaway
- hugojimenez
-> another compromised account used for the same phishing attack
- aljif7
-> same as above
- joyceimo
- world-travel-pro
- srmallara
- cityhelper
- flaws
- daio
- project.hope
- kingscrown
@keys-defender currently follows the @steemflagrewards volonteers' downvote trail
- Followers of my downvote-trail: 3 (plus their own trail - about 10 accounts total)
What does this bot do?
- Phishing protection [live scan of blocks to warn against phishing campaigns, compromised domains and accounts]
- Code injections detection [live scan of blocks to detect malicious code targeting dapps of the Hive ecosystem]
- Re-posting detection [mitigates the issue of re-posters]
- Anti spam efforts [counteracts spam from hive abusers]
- XSS vulnerabilities in #########.com
- XSS vulnerabilities in hive-db.com
- XSS vulnerabilities in scribe.hivekings.com
- XSS vulnerabilities in hiveblockexplorer.com
- Malicious ads redirecting all Steemit iOS users to a phishing site
- Reverse tabnabbing and clickjacking in steem.chat and steeemit registration page
(+ ethos, dating site, ..., small crypto exhange.)
To support this bot:
Upvote all my posts
with a fixed weight
using hive.vote
There are new phishing accounts
"nobutsd"
"ridoykhan22"
!hacked @nobutsd @ridoykhan22
Thank you for your report, entry added to @keys-defender's database of HACKED-USER domains.
My account was hacked. But i am recovered my account last month. Now my account is ok.. @goattacinque @keys-defender
Please provide proof that you re-gained control of your account to @logic @guiltyparties or @pfunk
(soon they'll be able to remove you using the !RECOVERED command)