I went to bed at four o'clock, but I didn't fall asleep, and I wanted to get up and code another chapter, but I saw a book friend in the book review area sending a link, saying to get a free starting coin

At first glance, you know that this is a very low-level scam

This is a phishing website, used to steal the VIP account of the starting point, taking advantage of everyone's greed for small and cheap psychology

He applied for a space on a free personal homepage website (id666.com), and then put a simple single page on it, made it very similar to the starting point, collected some data from the starting point, and if you look at it now, you should still be able to see it.

Then, he registered a one-dollar cn domain name, and then said that there is a free starting point coin, and let you fill in the account number.

This method is the general method of number thieves.

When you enter the site, you can see that he is just going to make a jump

Looking at the source code of that page, it can be seen that he just made a form and used one of Yahoo's message board systems to save the data.

From the source code, you can see a link to Yahoo, which is the address of the data submission, and from the source code, it can be found that his registered name in Yahoo is chenguol203

Then I found it:

This is the address of the Yahoo message board, and the page he made is to submit data to this page, and the function of the two is the same.

Where is the submitted data stored? Using a search engine, I found the address where the Yahoo message board was viewed

From here, you can see the data, and when you open it, you can see that there are already readers who have been deceived.

Because the data has just been refreshed, I thought that the number thief may not have had time to change the password of the account, so I immediately used the above account number and password, logged in to the starting point, and then immediately changed the password to protect it...

Now there are only three accounts displayed, and only two are protected, one of which has been changed by the thief.

Presumably, the number thief also found out that someone was robbing his account, so he immediately made the message board private.

This way, you won't see the refresh of the data.

However, Yahoo's message board seems to have a feature, if it is set to private, he himself can't see the message on it, haha!

Another feature of Yahoo's message board is that it has limited data, and if you keep submitting junk data, you can fill it up quickly, so that even if a reader believes in the scam, they will not submit their account.

So I opened the snow tracing and planned to automatically submit the garbage data into it, but I found that this page was still a bit level, and the snow tracing couldn't analyze the form (it seems that this guy is a bit of a way)

There's no way.,I had to submit it manually.,Submitted about dozens.,Suddenly I saw it full.。。。 The hint says:

"This Yahoo! The GeoCities visitor list is full, and the register holder is required to delete some of the current comments before you can leave a message here. ”

Before the number thief cleans up the junk data, the account of the deceived reader is temporarily unavailable.

But before, there was no way. If you have already submitted data, please change your password immediately.

If you have time, you can go to this page to take a look, and if you see the data refresh, you can immediately help those deceived readers protect their accounts and return them to him.

Page address:

Now it is estimated that the guy has gone to sleep, everyone tells each other about this matter, let everyone pay attention, and if they are deceived, they will change their passwords immediately.

In the future, don't believe this kind of pie-in-the-sky thing, and when submitting your account password, you should be vigilant and pay attention to whether this website is a real official website.

Some readers have a password for all accounts, which makes it even more dangerous.

Here's an example.

I now get the reader's starting account number and password, and then according to his QQ number in the starting point information, it is very likely to log in to his QQ, so as to steal his QQ number, if his QQ has other data such as mailbox, bank account number, etc., it is very likely that even these will be stolen.

I've got in touch with a reader, and after verifying his identity, I've returned his account to him.

The other one is: flower belly pockets

I've already sent him a QQ message, and I haven't been contacted yet.

It's dawn, eat something, go to sleep, quack