Stellar Lightning Phishing Scam Targeting Stellar Lumens (XLM) Users Exposed By Security Expert
It hasn’t been even a week since we bought you a story of LocalBitcoin ’s users having reported that various quantities of Bitcoin having been stolen, thanks to a phishing scam that made its way around. It had affected those active users on the company's forum, where its users were misled into giving away their essential information. Another phishing scam has come to the surface now.
Twitter user @sniko_ and the maintainer of etherscamdb.info reported that there have been attempts to phish for people’s public key for giving out free Stellar Lightning [XLL].
— harrydenley.eth ◊ (@sniko_) January 31, 2019
Phishing is the fraudulent attempt to obtain sensitive information such as usernames, passwords, and credit card details by disguising as a trustworthy entity in electronic communication. Typically carried out by E-mail spoofing or instant messaging, it often directs users to enter personal information at a fake website, the look and feel of which are identical to the legitimate site.
He goes on to say that this apparent cam is run under the domain name of xllwallet[.]com AS206397. He tagged the domain registrars Namecheap who ensured that the corresponding team is checking the website.
Apparently, people receive an email with the subject as “Get free XLL- Stellar Lightning!” The mail contains a link that redirects the user to a page that asks them for their private key to get this token.
According to the website,
“Stellar Lightning is a hard fork of Stellar that leverages the power of the Lightning Network – a revolutionary second-level payment protocol. With Stellar Lightning, payments become even faster, cheaper, and more private.”
Harry added that the domain is blacklisted for @EthAddrLookup and @metamask_io users.