Oh, now that's an interesting cryptocurrency-related phish.

Plaintext email that passed the spam filter, "new ICO offers free ETH".

The email links to hxxps:// which has a prominent "please sign in" section linking to hxxps:// - which Google Cache doesn't have,
so I'm guessing that site got pwned?

Email headers:

· · Web · 0 · 0 · 0
Sign in to participate in the conversation

Server run by the main developers of the project 🐘 It is not focused on any particular niche interest - everyone is welcome as long as you follow our code of conduct!