Bitcoin.org, one of the first websites about Bitcoin (BTC), has been hacked by online scammers and down as of the time of writing.
Cobra, Bitcoin.org’s anonymous curator, announced on Sept. 23 that Bitcoin.org was compromised, with hackers managing to put up a scam notice on the site.
“Looks like Bitcoin.org got hacked and the entire site replaced with a scam asking for free Bitcoin. Do not send funds to that address,” Bitcoin developer Matt Corallo reported on Twitter.
Following a query from Corallo, Namecheap temporarily disabled the website. According to Cobra, the Bitcoin.org website “may be down for a few days.”
Prior to Bitcoin.org going offline, users reported that Bitcoin.org was showing a classic fake giveaway announcement, with scammers reportedly managing to collect about $17,000 to their addresses.
https://t.co/Tp6AcXavUW has been breached. Visiting the website displays the classic ‘double your money’ scam. The scammers have profited (as of this writing) roughly $17,000.#Bitcoin pic.twitter.com/BXFMqC61EW
— vx-underground (@vxunderground) September 23, 2021
After disabling the website, Cobra suggested that the hackers exploited a flaw in the DNS, stating that Bitcoin.org’s Cloudflare accounts and servers were not compromised.
https://t.co/OsFgRFRRZb hasn’t been hacked, ever. And then we move to Cloudflare, and two months later we get hacked.
Can you explain where you were routing my traffic too? Because my actual server didn’t get any traffic during hack. @Cloudflare @eastdakota.
— Cøbra (@CobraBitcoin) September 23, 2021
Related: Bitcoin.org blocks access to Bitcoin software download in the UK
The latest attack comes after Bitcoin.org fell victim of a DDoS attack in early July, alongside a ransom demand for an undisclosed amount of Bitcoin. The attack came just one week after a court in the United Kingdom ordered the website to stop hosting the Bitcoin white paper, ruling in favor of self-proclaimed Satoshi Nakamoto and Bitcoin SV proponent Craig Wright.