These sites are unusual. They are spread by unsolicited emails claiming to be updates to an account or someone who needs to recover an account. It gives a username and a password.
2024-03: The most recent incident I’ve seen of this uses the excuse that a friend of yours found a wallet on the ground and in the wallet was the bitcoin login, and asking how you cash out.
These sites are unusual. They are spread by unsolicited emails claiming to be updates to an account or someone who needs to recover an account. It gives a username and a password.
The username isn’t unique. When you sign in you are asked to set a password. This is used along with the username to identify you as a victim.
They then ask you to use a mobile number and they use an API or web service to trigger an SMS or call to the number. (This costs the scammer).
Once you’ve validated the account you are then shown a page claiming you have a bitcoin wallet or investment with a large balance. There are options to pay in or withdraw.
There are two modes of operation. One it forces you to send bitcoin to them for the annual account fee before you can do anything. The aim here is to just steal that fee.
The other mode is to error when you try to withdraw a large amount. They then say you need to withdraw a tiny amount (around US$2) as a test transaction before you can withdraw the remaining.
What is unusual about this is, the payment actually gets made. If you game this scam you can get $2 in bitcoin for free.
But… what they hope for is the victim then, after the test transaction works, tries to withdraw the remaining balance. Their system then fake errors and says you need a higher balance to withdraw. The scammers hope victims send a larger amount of bitcoin back to the scam site to increase the balance and allow withdrawal of the full amount.
They troll the victim into believing the site is real, they respond to online tickets like a normal organisation would.
Needless to say if you send bitcoin back to them, you won’t see any of it ever again.
It’s a sophisticated scam. The scammers send money, the scammers pay for a SMS and Phone one time code verification service! The scammers appear to be running multiple brands and sites. They look like they have a central operation to automate payments of bitcoin but multiple “agents” to scam victims. The agents are given a cut of the income which they can cash out every so often.
Other names they’ve gone under in the past:
bitforte.net
billkoin.com
orchidcoin.net
coinlux.net
coinforte.net
gokoins.com
coinstapro.com
coincrow.net
cryptoncoin.net
stackscoin.net
koincrest.com
nextkoin.com
fortcoin.net
coinloaf.net
koincrate.com
coinomac.com
heliumcoin.net
horizencoin.net
coinrow.net
coinfist.net
paxcoin.net
securecoins.net
orbitcoin.net
tatcoin.net
coins45.com
rendercoin.net
swancoins.net
koinlane.com
serumcoin.net
pdcoin.net
protoncoin.net
koinpulse.com
koinrise.com
bitcount.net
astarcoin.net
coinfolds.com
bitmantic.com
binancial.io
golemcoin.net
qtumcoin.net
To effectively game the site and get free money you would need lots of mobile numbers, lots of bitcoin wallets and lots of IP addresses. They also check for common VPN and Onion exit IP addresses.
The main person behind it appears to be in Nigeria as do the majority of the “agents”.
To date (2023-02-20) across all the agents since mid 2021 they’ve been paid $25,000 worth of bitcoin. The total losses from victims is likely much higher as I suspect the agents only get a percentage of the overall theft.
thecomputerperson 
Thank you for your information I just encountered the same thing you have explained and also received 0.0001 btc in my wallet. Now they were asking for 0.0301btc to withdraw the whole amount of account so I was curious if it’s legit or not. I was suspicious about whole process and now confirmed it. Saved my money.
You greedy thieves.
You receive an email, stating deposit was made into YOUR account.
1. You don’t have any account
2. You didn’t request or pay for any deposits
Clearly, you have received this email by error. The money(if real) is NOT yours.
Why the f*ck are you trying to login into another person’s account ? you bloody criminals.
So let’s say i mistakenly send my credit card details to you instead of my son, you’ll go in and empty my account?
I think every victim of this scam deserves what they get. Infact, if you’ve ever fallen for this, you are not a VICTIM. You are a bloody thief who got outwitted.
Two people doing bad things does not make the original bad thing ok. But ok scammer; you can continue believing your are the good guy. One day it will catch up with you.
I received an email from someone Solomon Chagala saying that I have successfully deposited bitcoins, but I haven’t deposited, and now it won’t even let me withdraw, it’s most likely a scam, but still why should I deposit again
“it’s most likely a scam”. No, it’s definitely a scam.
Hello, can you contact me via email about this scam? I first saw this last year and since then I have been trying to see how they work and what their domains are. If you could send me a message about how you think they operate and how you found so much info about them i would appreciate that
I can’t share any more, sorry. But I do know almost everything about their operation. The limiting factor is my available time to continue research and law enforcement’s disinterest in the information. When law enforcement is as passive as it is; it’s no wonder scams like this exist and last for years.
Do you know how their payment system works? What do they check for so a transaction can go through. They don’t succeed everytime
I have an idea it is automated but they also have a lot of protection in place to identify fake or duplicate accounts.
You’d need pretty much a different computer (or browser fingerprint), different IP, different phone number, different wallet address and possibly some other metrics for them to not identify you as a previous user. They also check if you are using a TOR exit IP or an IP known to be a VPN provider.
This scam is like binery. They just steal your money and pretend you made a profit. Recently my wife got an email from Paul Hill in Amsterdam saying her binary losses were secured and she has to open a bitcoin account to get her losses plus interest back after she pays 50 Euros to open this account. The dutch police informed me this is scam. The address n Amsterdam is an office for rent and Paul Hill is a fake person.
What is the binery website address?
Scam
Good work. Seeing you guys go ham on this and turn up all this info has stopped me from pouring useless time into it.
Yeah, pretty sophisticated scam.
Eu estou aqui por que também recebi um email, mas verifiquei quem me enviou esse email aparentemente “sem querer” é uma moça de uma empresa de noticias fica na Alemanha, consultei pelo site oficial com outro email de suporte e verifiquei que fazia parte desta empresa. Nesse caso ou alguem tem acesso email ou ela mesmo faz parte disso, esse site tem vários Ips encontrei nos EUA Endereço IP 172.67.195.251DNS reverso Provedor de Hospedagem AS13335 CloudFlare, Inc.Localização (EUA) Estados UnidosContinente América do Norte. Não fiquei curioso com a susposta plataforma de investimentos de BTC deles, mas sim da pessoa que me enviou email por uma empresa verificada (verdadeira) realmente tem muitas pessoas com péssimas atitudes.
Hey mate, any update abot this?
In what regard?
Did they shut down the operation or they’re still working? So far their logins don’t work and a new “your credentials are invalid” error pops up
I am not sure as I’ve been been checking up on them regularly.
Are there any new domains or logins?
If I knew about them, they would be here.