HelloARI logo: vinyl signs and identity design home«    web design«    sign design«    blog«    contact« 

web design and wordpress development 94114
blog»
san frnacisco web design

Privnote vs PrivnoteS and other site imitators or possible phishing

The 2 sites are very similar looking.
https://blog.privnote.com/post/187789832972/there-is-one-and-only-one-privnote

I noticed a client was using https://privnotes.com/ (note the plural “s” in there) and not https://privnote.com/. – I am not sure if this is actually a problem but I found a blog post that suggests being wary of imitations:


https://privnotes.com/ has empty links to social media in the footer so that is one clear indication that it’s not the “original” service.

Google is allowing ads for the imitation site but you can see the “natural” listing for the original site below:

What is PrivNote? It is a free website that allows you to send private/secret notes. It requires no password or user registration. Just write your note get a link, copy and paste that link into an email (or IM). When the recipient clicks the link for the first time, they will see the note in their browser and the note will automatically self-destruct; which means no one (even the original sender) can read the note again. The link won’t work anymore.

UPDATE: the PrivnoteS site was confirmed to be fake and has been removed: https://krebsonsecurity.com/2020/06/privnotes-com-is-phishing-bitcoin-from-users-of-private-messaging-service-privnote-com/

But that’s not the half of it. KrebsOnSecurity has learned that the phishing site Privnotes.com uses some kind of automated script that scours messages for bitcoin addresses, and replaces any bitcoin addresses found with its own bitcoin address. The script apparently only modifies messages if the note is opened from a different Internet address than the one that composed the address.

This entry was posted in Web Design. Bookmark the permalink. Post a comment or leave a trackback: Trackback URL.

One Comment

  1. Posted May 5, 2020 at 11:05 am | Permalink

    So, why do they do it? To steal private messages? They rarely have any valuable date. It makes no sense

Post a Reply to SteveH82 Cancel reply

Your email is never published nor shared. Required fields are marked *

You may use these HTML tags and attributes <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>

*
*

© 2020
contact  |  links  |  rss