{"id":49990,"date":"2021-09-23T09:38:25","date_gmt":"2021-09-23T06:38:25","guid":{"rendered":"https:\/\/forklog.com\/en\/?p=49990"},"modified":"2025-09-02T15:36:18","modified_gmt":"2025-09-02T12:36:18","slug":"bitcoin-org-team-restores-access-to-the-site","status":"publish","type":"post","link":"https:\/\/forklog.com\/en\/bitcoin-org-team-restores-access-to-the-site\/","title":{"rendered":"Bitcoin.org team restores access to the site"},"content":{"rendered":"<p>Unknown actors gained unauthorized access to the oldest information resource on Bitcoin, Bitcoin.org, and posted on its homepage a fraudulent announcement about a cryptocurrency giveaway. The domain registrar Namecheap restricted access to the site.<\/p>\n<div class=\\\"wp-block-text-wrappers-update-2 article_update\\\"><time class=\\\"gtb_text-wrappers_update_time\\\">23 September 2021 | 17:50<\/time><span class=\\\"gtb_text-wrappers_update_head\\\">Update: <\/span><\/p>\n<p>The project team has addressed the effects of the attack and restored access to Bitcoin.org. Cobra did not disclose details of the incident investigation, but deleted a tweet suggesting the hacking was due to Cloudflare issues.<\/p>\n<p>ForkLog sought comment from Cobra and Cloudflare.<\/p>\n<\/div>\n<blockquote class=\\\"twitter-tweet\\\">\n<p lang=\\\"en\\\" dir=\\\"ltr\\\">cc <a href=\\\"https:\/\/twitter.com\/Namecheap?ref_src=twsrc%5Etfw\\\">@namecheap<\/a> <a href=\\\"https:\/\/twitter.com\/NamecheapCEO?ref_src=twsrc%5Etfw\\\">@NamecheapCEO<\/a> in case y\u2019all want to take down the scam site of all scam sites, at least temporarily (looks like the domain was updated today\/stolen, possible?)<\/p>\n<p>\u2014 Matt Corallo (@TheBlueMatt) <a href=\\\"https:\/\/twitter.com\/TheBlueMatt\/status\/1440894787352104961?ref_src=twsrc%5Etfw\\\">September 23, 2021<\/a><\/p><\/blockquote>\n<p> <script async=\\\"\\\" src=\\\"https:\/\/platform.twitter.com\/widgets.js\\\" charset=\\\"utf-8\\\"><\/script><\/p>\n<p>On September 23, <a href=\\\"https:\/\/twitter.com\/search?q=bitcoin.org&#038;src=typed_query\\\">messages appeared<\/a> about a pop-up window displayed on the site&#8217;s homepage. Users were invited to send cryptocurrency to the specified address \u2014 the amount sent was promised to be doubled.<\/p>\n<blockquote class=\\\"twitter-tweet\\\">\n<p lang=\\\"en\\\" dir=\\\"ltr\\\"><a href=\\\"https:\/\/t.co\/yc0aKbZcer\\\">https:\/\/t.co\/yc0aKbZcer<\/a> is Hacked by Scam. <a href=\\\"https:\/\/t.co\/2qmRMS2lJh\\\">pic.twitter.com\/2qmRMS2lJh<\/a><\/p>\n<p>\u2014 Wu Blockchain (@WuBlockchain) <a href=\\\"https:\/\/twitter.com\/WuBlockchain\/status\/1440900061198577665?ref_src=twsrc%5Etfw\\\">September 23, 2021<\/a><\/p><\/blockquote>\n<p> <script async=\\\"\\\" src=\\\"https:\/\/platform.twitter.com\/widgets.js\\\" charset=\\\"utf-8\\\"><\/script><\/p>\n<blockquote class=\\\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\\\">\n<p>\u201cBitcoin.org was never hacked. And then we switched to Cloudflare and two months later we were compromised. Can you explain where you are routing my traffic? Because during the attack no traffic reached my real server,\u201d wrote Cobra.<\/p>\n<\/blockquote>\n<p>Within a few hours, the fraudulent address received over 0.4 BTC worth about $17,800 at the time of writing, according to <a href=\\\"https:\/\/www.blockchain.com\/btc\/address\/1NgoFwgsfZ19RrCUhTmmuLpmdek45nRd5N?page=2\\\">Blockchain.com<\/a>. Practically all of that amount was sent in a single transaction. It is possible that the hackers themselves carried it out.<\/p>\n<p>Fraudsters often stage fake cryptocurrency giveaways. Usually, they use the names of celebrities \u2014 for example, Google&#8217;s founder Sergey Brin, Microsoft&#8217;s founder Bill Gates, Apple&#8217;s co-founder Steve Wozniak, or Tesla&#8217;s head <a href=\"https:\/\/forklog.com\/en\/news\/elon-musk-themed-cryptocurrency-scam-nets-criminals-more-than-100000\">Elon Musk<\/a>.<\/p>\n<p>Earlier in September, attackers exploited the hype around Apple&#8217;s product launch, <a href=\"https:\/\/forklog.com\/en\/news\/fraudsters-stage-fake-bitcoin-giveaway-posing-as-apple-event\">organizing a fake cryptocurrency giveaway<\/a>.<\/p>\n<p>Follow ForkLog&#8217;s bitcoin news on our <a href=\\\"\/\/telegram.me\/forklog\\\" target=\\\"\u201c_blank\u201d\\\" rel=\\\"\u201cnofollow\u201d noopener\\\">Telegram<\/a> \u2014 cryptocurrency news, prices and analysis.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Unknown actors gained unauthorized access to the oldest information resource on Bitcoin, Bitcoin.org, and posted a fraudulent cryptocurrency giveaway on its homepage. The domain registrar Namecheap restricted access to the site.<\/p>\n","protected":false},"author":1,"featured_media":49991,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"select":"1","news_style_id":"1","cryptorium_level":"","_short_excerpt_text":"","creation_source":"","_metatest_mainpost_news_update":false,"footnotes":""},"categories":[3],"tags":[1565,1154],"class_list":["post-49990","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-analysis","tag-bitcoin-org","tag-crimes"],"aioseo_notices":[],"amp_enabled":true,"views":"20","promo_type":"1","layout_type":"1","short_excerpt":"","is_update":"","_links":{"self":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/49990","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/comments?post=49990"}],"version-history":[{"count":1,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/49990\/revisions"}],"predecessor-version":[{"id":49992,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/49990\/revisions\/49992"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/media\/49991"}],"wp:attachment":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/media?parent=49990"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/categories?post=49990"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/tags?post=49990"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}