Blockchain.info wallet users fall prey to scam: a fake email alert is sent out to prospective targets from firstname.lastname@example.org, falsely claiming that unauthorized login attempts have made on their blockchain.info wallets. The fake message prompts users to either authorize the login or recover their wallet, and threatens to freeze the wallet and funds therein until one of these actions is taken.
The users are recommended to avoid clicking any of the links in the email, as they load a website at the URL http://blockchain.info.ht/#/ that asks users to enter wallet addresses and passphrases or private keys. Once a user surrenders this information, it is reasonable to assume that the contents of their now accessible wallet will be emptied by the scammer. Users should notice the lack of a secured http:// connection, which is indicated by the “https://” preceding the URL. According to ethnews.com, tracking the IP of the scam site (184.108.40.206) reveals that it is operating out of London.
It is advisable for users of the website to ensure that the URL they use is accurate when plugging in addresses, private keys, or passphrases to unlock wallets and check on funds.