Phishing E-mail Scam - November 2022

[Cherrypowah]

should i be worried about my personal data?

[BOYGIRA]

Just now, Cherrypowah said:

should i be worried about my personal data?

No need worry just ignore it.

[oPartial]

1 minute ago, Lordxx said:

So how bad could it be clicking on the link from your phone which has multi important accounts open/password saved on it? 

From what I can see it's literally just a phishing setup to make you type your Stake account details into. No virus or anything that I can see from looking at it.

[dubbelyou]

3 minutes ago, Cherrypowah said:

should i be worried about my personal data?

Besides that your email, and if you’re verified they probably have phone numbers, names, addresses etc

[girliegirl]

on twitter they say the l in noreply@stake. com is replaced by capital I. But still the question how did they get the email adresses

[mktgeran]

I knew it's scam. That's why I ask chat support first.

It's too obvious they say sign up here to get bonus when we already log in our account 

[BOYGIRA]

I just received email that contains a messages like below:

Hey there

This is an email congratulating you on reaching your current account status. 

You now have additional VIP bonuses and have been added into the private high-rollers club! (heck-yeah!)

Please sign in here and check out the additional bonuses we have added to your account.

Thanks, - Stake

It was scam/phising, dont click or visit that link.

Note: Stake have been warned you on telegram also.

 

 

[gyulter]

how its possible our personal information to get leaked from billionaire company !???? what now my ID card and other stufff are in hands of some scammer ???

[Snickers]

3 minutes ago, girliegirl said:

on twitter they say the l in noreply@stake. com is replaced by capital I. But still the question how did they get the email adresses

Untrue.

I copy pasted it and used a different font ant its 100% an L and not an i .

[Avisraj]

3 minutes ago, oPartial said:

E-mail spoofing is not difficult.

Yes email spoofing not difficult. But as per my view as an email marketer. They can't send email from [email protected] because the domain is own by stake.com.

If they any how used stake.com domain to send email on technical terms DKIM,SPF should be failed but it was DKIM,SPF is passed. 

And most importantly the mail is come not only from [email protected] email id which stake use but the mail also come from same server IP which stake use.

I think email server was hacked then only it's possible to send mail from same email id [email protected] and same server IP.

And The link is redirecting to sso-stake.com. if stake didn't own this domain sso-stake.com then i think the scammer probably planning users to click the link and ask the users to login into the link to get user login details.

 

 

 

 

 

[girliegirl]

2 minutes ago, Snickers said:

Untrue.

I copy pasted it and used a different font ant its 100% an L and not an i .

I didn't check. But that worries me even more. Stake should have a 1 hour withdrawel stop for everyone who don't have 2fa to chance their passwords

[dubbelyou]

Looks like only sendgrid got hacked thankfully,which is good news since that means only email addresses got leaked.

[Lordxx]

What a funny hacker. Not sure he stole 10M from one account though 

21 minutes ago, oPartial said:

From what I can see it's literally just a phishing setup to make you type your Stake account details into. No virus or anything that I can see from looking at it.

 

8 minutes ago, dubbelyou said:

Looks like only sendgrid got hacked thankfully,which is good news since that means only email addresses got leaked.

I don't receive any email from stake anymore, I'm even requesting my statistics which usually arrive instantly and not receiving it. 

What do you think happened? 

[dyli21]

GUYS I dont receive any email log in code after I changed the password I clicked on the link and was scared so I changed the password now I cant log in into stake anymore where the heck is the log in code mail now ???

[oPartial]

Stake has announced already it's a phishing link but here's the facts.

1. For people claiming it's a capital I instead of L it '[email protected]'
No it actually does say [email protected] appearing to be official. This just means it's a spoofed e-mail. Give it a google if you want to know about that. Not hard to do.

2. It is indeed a phishing link. Looked at the link on a separate computer. Can confirm. If you haven't entered any details you should be fine but no trouble in changing up your details anyway just to be on the safe side as we're unsure what or if anything else other than e-mail addresses have been leaked.

3. The most important part of this is how did everyone's e-mail addresses get leaked? And what else may of been potentially leaked?

 

Also just saying but if the guys behind this phishing attempt changed their layout and title to reflect that of a 'pre-monthly' or 'early monthly' could you imagine how many users would of instant clicked on that link.

 

[anthobogda06]

Hello there,

Support is currently really busy so your patience is much appreciated.

If you are contacting us regarding e-mail you got recently regarding your account status, please do not click any links and ignore all stake related emails whilst we investigate, if you have attempted to login please change your password.

This is phishing mail, and best thing to do is to delete it, since it is not sent from Stake.

Please, make sure to setup 2FA on your account if you haven't already done so.
You can check how to do it here:
https://stakecommunity.com/topic/21882-how-to-enable-2fa/

If your question is related to something else, please reply to this message and let us know.

Once again, if you are contacting us regarding recent e-mail you got, please leave this conversation closed.
We will update users when we have some news regarding this via Telegram or social media.

Your patience and understanding is really appreciated.

[girliegirl]

7 minutes ago, Lordxx said:

What a funny hacker. Not sure he stole 10M from one account though 

damn I think I recognize this guy from discord same language and expressions

[Lordxx]

I don't receive any email from stake anymore, I'm even requesting my statistics which usually arrive instantly and not receiving it. 

What do you think happened? 

[Avisraj]

Stake Sendgrid account with our stake database has been stolen that's why the email id and ip address are same. 

 

I think stake need to buy a new sendgrid account to start mailing again.

[Lordxx]

1 minute ago, Avisraj said:

Stake Sendgrid account with our stake database has been stolen that's why the email id and ip address are same. 

 

I think stake need to buy a new sendgrid account to start mailing again.

So do you think that's why I'm not receiving any email from stake anymore? Requested statistics few times and received nothing

[Avisraj]

If they stolen the login details of sendgrid account it's possible to send email with same domain and same IP address. And ofcourse in sendgrid it has all our email database store to send emails. So our email id has also been hacked.

[StakeLoverGirl]

no difference between Stake email and this email.. i checked all... how it is possible?

[girliegirl]

4 minutes ago, Avisraj said:

Stake Sendgrid account with our stake database has been stolen that's why the email id and ip address are same. 

 

I think stake need to buy a new sendgrid account to start mailing again.

haha for sure no monthly then. 

[oPartial]

No doubt everyone's e-mail addresses have been leaked. I don't think they use SendGrid for their e-mailing.

Spoofing can be done in multiple ways.

[Lordxx]

1 minute ago, girliegirl said:

haha for sure no monthly then. 

Try to request your statistics and tell me if you receive it please