Wikipedia has been the subject of multiple cyber attacks in the past few years, with a majority of them being phishing schemes. In a recent criminal act, an attacker replaced links on the Alphabay Wikipedia page with fraudulent ones.
Because Wikipedia pages can be easily modified by the community virtually anyone can change and add content, whether it is accurate or not. In this case, users were directed to a fake version of the Alphabay market and were prompted to enter their usernames and passwords. Often times, victims were unaware they were phished because they were then redirected to the authentic website. Attackers were then able to use the stolen account information to steal Bitcoin and other money from
In this most recent phishing attack, criminals are said to have employed tools such as Scallion to create custom .onion URL’s that looked similar to genuine address. The fake URL had similarities to the genuine one and many users would not be able to tell the difference at first glance.
Fraudulent URL: pwoah7p6o5e67qul.onion