Stats of the past: 7 days
Β
K E Y S Β P R O T E C T I O N:
PRIVATE KEYS LEAKS protected:
1. @kiel91
- Chain: Hive (account both on hive and steem)
- Type: Posting key
- Operation in which the account was leaked: title of post , permlink
Leaked account stats:
- Estimated Account Value: $ 737.00 on Hive $ 12 on Steem- Reputation: 60
- Followers: 138
- Account age: Joined September 2018
2. @mllg
- Chain: Hive
- Type: Posting key
- Operation in which the account was leaked: comment
Leaked account stats:
- Estimated Account Value: $139 on Hive, $ 184 on steem- Reputation: 66
- Followers: 1238
- Account age: Joined September 2017
NOTE: @keys-defender still scans the STEEM blockchain because your private keys are shared across the two chains unless you reset your password at https://wallet.hive.blog/@your-username-here/password!
Β
PHISHING LINKS detected (and auto-replied to): Β 0
Auto-replies in wallet memos currently being developed..
Β Β
CODE INJECTIONS detected: Β 1 β
- @techcoderx's comment -- he then disclosed in a post the vulnerability he found: https://hive.blog/hive-139531/@techcoderx/xss-vulnerability-found-in-one-of-the-hive-block-explorers
People that try to put code into Hive blockchain get immediately notified of their suspicious activity by @keys-defender, it's a good deterrent in my opinion.
UNSAFE LINKS detected:
- HTTP links: 52.11/h -> ~8,754/week. Auto-replies/warnings throttled 1/20.
- Shortened links: 23.5/h -> ~3,948/month. Auto-replies/warnings throttled 1/20.
NOTE: links that do not use a secure protocol (https) and shortened links (eg. bit.ly) are NOT a threat per se but can lead to theft of credentials if misused or used in a malicious attack.
O T H E R Β A C T I V I T I E S:
Confirmed re-posting authors: Β 0 βοΈ
critical bug fixes required
Β
Downvotes of @keys-defender (and its trail) against hive-abusers: Β 10 Β β
Accounts:
kingscrown, dbroze, radiv, bluengel, cryptopie, librepensadora, natichi
- Followers of my downvote-trail: 2 (plus their own trail - about 10 accounts total)
What does this bot do?
- Keys protection[live scan of transfers / posts / comments / other_ops. Auto-transfers to savings, auto-reset of keys, ..] {see automatic posts on leak and weekly reports}
- Phishing protection [live scan of blocks to warn against known phishing campaigns and compromised domains]
- Re-posting detection [mitigates the issue of re-posters]
- Code injections detection [live scan of blocks for malicious code targeting dapps of the Hive ecosystem]
- Anti spam efforts [counteracts spam from hive haters]
- Phishing protection [live scan of blocks to warn against known phishing campaigns and compromised domains]
- Re-posting detection [mitigates the issue of re-posters]
- Code injections detection [live scan of blocks for malicious code targeting dapps of the Hive ecosystem]
- Anti spam efforts [counteracts spam from hive haters]
My security disclosures:
- XSS vulnerabilities in #########.com
- XSS vulnerabilities in hive-db.com
- XSS vulnerabilities in scribe.hivekings.com
- XSS vulnerabilities in hiveblockexplorer.com
- Malicious ads redirecting all Steemit iOS users to a phishing site
- Reverse tabnabbing and clickjacking in steem.chat and steeemit registration page
- XSS vulnerabilities in #########.com
- XSS vulnerabilities in hive-db.com
- XSS vulnerabilities in scribe.hivekings.com
- XSS vulnerabilities in hiveblockexplorer.com
- Malicious ads redirecting all Steemit iOS users to a phishing site
- Reverse tabnabbing and clickjacking in steem.chat and steeemit registration page
Discord server
Gracias por el apoyo que me brindaron, @keys-defender