Search the Community
Showing results for tags 'flare users at risk'.
This message is to inform all holders of Songbird (SGB) , XRP, and users of the Flare Network of a possible phishing attack against users of the Flare Network and the aftermath of this attack is still in effect. It was confirmed unofficially that the url: EXFI.XYZ was a Phishing website set up by scammers in lieu of the anticipated EXFI airdrop. The website appeared roughly mid-December 2021 bearing the name, EXPERIMENTAL FINANCE. A close examination of the Songbird blockchain shows an issuance of EXFI token under an id bearing exfi.xyz. It is likely that several Flare Network users were attracted to this site and logged in to test its features. But as people tried to log in, their credentials were likely compromised. The phishing website looked very similar to Flare’s current websites like Flare X, Flare Farms, and Flare Loans. However, the site did not function as the other three. The site attempted to get visitors to connect their wallets in order to interact with its services. The site gave three options to connect which was either via Secret Key, Metamask, and Ledger. The site as of now has been taken down by the Flare Team. But if anyone made attempts to log in to the site are likely compromised. It is likely but not confirmed that the individuals responsible for the attack are a hacking group out of Northern Africa. So far it is believed that users of Bifrost, DCENT, MetaMask, and LEDGER wallets may be compromised along with some others. As of now, corrective actions need to be taken in order to protect upcoming airdrops. If you are reading this message and has made attempts to login to that phishing site, you are likely compromised. At this time, you are urged to move your SGB, XRP, ETH and related tokens to a new wallet quickly as possible. If you have any tokens in Flare farms, Flare X, and Flare Loans, move them to the new wallet as quickly as possible. Unfortunately, the 0x…. addresses set to receive the EXFI and Flare airdrops cannot be changed at this time. So those wallets that are affected must be emptied shortly after the airdrops are distributed to them. As a temporary measure, please ensure that are no SGB are in the wallet as this will block any songbird tokens from being stolen For those who did not interacted with the phishing site, your coins and wallets are safe.