verification126

I received a message from user verification126 saying I need to verify my account. There  is a link i don't recognize at the bottom of the message. I've never received any email from any administrator mentioning this and the user account in question is a week old. I'm guessing this is a scam?

alexivy

I received a message from user verification126 saying I need to verify my account. There  is a link i don't recognize at the bottom of the message. I've never received any email from any administrator mentioning this and the user account in question is a week old. I'm guessing this is a scam?

I have received the same message from verification123 

It looks like a scam 

@Xavier @Jarcek please take action

https://en.numista.com/forum/liste_membres.php?q=Verification
several hundred bots created today

So it Is a scam. 
 

well that’s a shame. 🫠🥲🫤

I got one from Verification274. I looked at the terms of use, and there is no section 12.4. This seems to be a phishing scam.

Same for me, and this is the account:

https://en.numista.com/echanges/profil.php?id=554847

To everyone: do not click on the link!

Got one to, be careful that is a scam they ask for credit card information on the link, don’t give that information to them. 

Same here with 44!  

yep received one of these messages too from # 900-something I already deleted/blocked and didn't memorise the number.

edit - It was 901

Also got it from Notice5

Pretty bad there’s been no official email about this. 

Verification918

I have received a message from this account

Be careful everyone!!! Dont click on the link!! 

Hello @Xavier @Jarcek @dzmitry.huletski 

This is a phishing scam robbing people of their most private information such as credit card, IP addresses, saved passwords and etc., I suggest the team to stop the creation of new accounts or open a waitlist with properly vetting people and letting them in then.

Thank you

I think the mods should try to communicate something ASAP about this. I hope nobody gets suckered in by these vultures. 

I just received one of the phishing messages too, from a user “Notice45”. It looked pretty suspicious so I didn't click the link or anything, but agree with other commenters that the site owners should restrict new user account creation temporarily and clean out the mess. I've had an account on here for years and this is the first time anyone has ever sent me a message for anything.

Notice85 is another

DominusDeus

Notice85 is another

Yep reported that one and Verification2228 from another friend 

and also these were created today (a few from a long list)
coin_te96bb  0   Jan 8, 2026
coin_1jyo4s  0   Jan 8, 2026
coin_t5wg01  0   Jan 8, 2026
coin_5sxom2  0   Jan 8, 2026
coin_j87y7f  0   Jan 8, 2026
coin_z6wtul  0   Jan 8, 2026
coin_adjy69  0   Jan 8, 2026
coin_yup2be  0   Jan 8, 2026
coin_rau75l  0   Jan 8, 2026
coin_txoibt  0   Jan 8, 2026
coin_4yklun  0   Jan 8, 2026
coin_q4ra5n  0   Jan 8, 2026
coin_yf27yw  0   Jan 8, 2026
coin_mp4b6d  0   Jan 8, 2026
coin_qqc9jj  0   Jan 8, 2026
 

VerifyAcc160  0   Jan 8, 2026
VerifyAcc159  0   Jan 8, 2026
VerifyAcc156  0   Jan 8, 2026
VerifyAcc158  0   Jan 8, 2026
VerifyAcc157  0   Jan 8, 2026
VerifyAcc155  0   Jan 8, 2026
VerifyAcc154  0   Jan 8, 2026
VerifyAcc152  0   Jan 8, 2026
VerifyAcc153  0   Jan 8, 2026

Correction…some numbers were skipped

Current scorecard:

Verification - 941 

Notice - 142

Verify - 78

VerifyAcc - 233

coin_ - 69 (these started yesterday)

rsirian1

Current scorecard:

Verification - 12,044 with a new one every 4 seconds

Notice - 138 with a new one every 4 seconds

Good lord!

I think the only fix is an immediate halt to new accounts and a quarantine of all accounts made in the last 24ish hrs. 

The spam accounts aren't hard to find. If you have one just keep adding a “1” to the url ending and you'll see the next one they created 

I have pm’d the major players at numista asking them to temporarily suspend all private messaging until the accounts can be eliminated, I have not yet received any reply. I’m sorry, I do not have the access level to resolve any of this.

gyoschak

I have pm’d the major players at numista asking them to temporarily suspend all private messaging until the accounts can be eliminated, I have not yet received any reply. I’m sorry, I do not have the access level to resolve any of this.

Yeah well once they see a message they will then understand something is up.

silvergeek

gyoschak

I have pm’d the major players at numista asking them to temporarily suspend all private messaging until the accounts can be eliminated, I have not yet received any reply. I’m sorry, I do not have the access level to resolve any of this.

Yeah well once they see a message they will then understand something is up.

I messaged them over three hours ago … no reaction yet. 

BramVB

silvergeek

gyoschak

I have pm’d the major players at numista asking them to temporarily suspend all private messaging until the accounts can be eliminated, I have not yet received any reply. I’m sorry, I do not have the access level to resolve any of this.

Yeah well once they see a message they will then understand something is up.

I messaged them over three hours ago … no reaction yet. 

Oof

Could you please send warning message to all members?

I got that scam too, by two accounts. The message only said “Quarantined”. I came here to report the post, I've actually never posted on the forum before. I looked up the username and “Numista” and it links to this EXTREMELY shady pay website

 I sent them all datas from my card.
I must block my card.
I believe in Numista very much!  
If you safe one Member you saveed all…
 

I stopped it and quarantined the messages.

  There are members with ages over 80.
I am over 70.
They are not all so good in scam… 

dzmitry.huletski

I stopped it and quarantined the messages.

Thank you.

Also, if this helps anyone, the account that notified me was Verification12050

Always remember NEVER click on links!! 😰

We have been notified of large scale scam attack via private messages.

Please note that Numista won't be asking you to confirm anything via private message nor we operate any bot that would be doing that. Please refrain from responding in to those messages in any way.

zdravko

 I sent them all datas from my card.
I must block my card.
I believe in Numista very much!  
If you safe one Member you saveed all…
 

Banks have numbers that are available 24/7 for blocking cards, contact them as soon as you can!

I think to prevent this in the futur, new accounts should only be able to send private messages one week after been created or only after have a certain amount of coin/banknotes registered on their account, true new collectors ill accept it easy and everyone would be protected from this kind of things 

Benficarlos

I think to prevent this in the futur, new accounts should only be able to send private messages one week after been created or only after have a certain amount of coin/banknotes registered on their account, true new collectors ill accept it easy and everyone would be protected from this kind of things 

I agree. And no one wants messages from people without coins/banknotes/tokens in their collection 😄

Although, some people only collect gold coins, so they might only have a few coins in their collection. And Im sure scammers can program their bots to add coins. And making accounts wait until they can send messages, won't do anything, since they can just start scamming after the time limit. Which would be worse, because people will see that its not a fresh new account, and they will be more likely to trust the scam

On the plus side, all these new accounts will help drive the advertising rates up.  🤪

Received the same …
This is serious because its a trigger loophole. 
Users (like me) get a notification straight to the email inbox on messages and this is exactly how scams are initialized.

A very simply mitigation could be to prevent certain keywords and abbreviations or circumvention (eg unicode) in pm subjects and bodies until a certain “trust” threshold is reached.

 

Hello,

I confirm the messages were not sent by Numista or its team. They were sent by malicious actors attempting a phishing attack. The message contained a link redirecting to an external, fraudulent website designed to collect credit card information.

If you entered your credit card details via this link, please contact your bank or credit card provider immediately to block the card.

Dzmitry took action yesterday to quarantine the fraudulent messages already sent and block further messages. Additionally, the fraudulent messages were completely deleted this morning for members who didn't read it yet, and I contacted all the members who already read it.

The attackers used multiple automated accounts to bypass messaging limits and send these messages. We are currently working on enhancing the protection measures to reduce the risk of similar attacks in the future.

I sincerely apologize for this incident and for any concern or inconvenience it may have caused.

As I am quite new member of Numista I was unaware of the security and went by the link. Unfortunately provided my info including address and credit card. Two fraud transactions were initiate  later. I  was able to block them. But I worry if my other info can be also compromized

alekberk

As I am quite new member of Numista I was unaware of the security and went by the link. Unfortunately provided my info including address and credit card. Two fraud transactions were initiate  later. I  was able to block them. But I worry if my other info can be also compromized

I'm really sorry to hear about this. I recommend you cancel you credit card and get it renewed.
Your account on Numista and associated personal data were not compromised. Only the information you provided on that link went to the scammers.

Yes, I canceled the card. But home address was shared. I don't know if it dangerous.  

Physically dangerous?  I wouldn't think so. 

But it gives them another tool to use for further attempts and social engineering. Especially if they correctly deduce your username is your legal name. You need to exercise absolute vigilance from here on out. Any time you get any request to follow links or provide details because it is “urgent” or “failure to do so will mean consequences” you do nothing. There are no protections for you if somebody gets what they need to take every cent you have. 

Just reading this, and want to make a remark. The fact that this thing happend / started on January 8th is no accident and tells you who's behind this. It's the first working day after othodox Christmas when the trollfarms of a certain aggressor state get back to work with all hands on deck after a week of holiday break. 

The pattern of new accounts for phising or agressive posting in comment sections of news sites being created at the first of a month or quarter is always broken in January, when the accounts get created on January 8th. 

In addition to the credit card details for a quick cash grab, I believe they are trying to figure out the identities and locations of collectors that could be potential targets for future exploitation (= adresses where there is a chance of valuables to be found). 

Always be careful with your personal information, especially payment info, and do not click on links!  

BTW: A possible scenario could be that the next contact would be from someone impersonating a police officer, DA, lawyer or judge, asking questions about the blocked / or successful credit card transactions, thus gaining more info and access. 

Yes, quite a few years ago I got a couple emails from bogus law firms with plain wrong or untenable claims.

When looking closer at the information provided I saw that they used a wrong telephone number I only used in my eBay account. So either eBay or more likely a seller on eBay that has dealt with me leaked or sold my data. Fortunately no valuable information got out and it stopped after a few weeks of non respondence.