Probable scammer impersonating Sigaint

I am making this post as a normal user and anything expressed in it is my own opinions.

I received an email from support@sigaint.org earlier this afternoon claiming that he was bringing the service back up and would be charging for access to accounts. The email claimed he had been hit by the feds and this was why he shutdown. He claimed the feds had gained access to the private key of the sigaint onion, therefore he would be using a new onion address. The email requested I make an announcement on my own service about this as users might be interested in paying to delete the content of their accounts.

This was almost certainly a spoofed email so I am posting this as a warning to any user or vendor who is contacted. The message was not signed with Sigaint's key and sounded nothing like sigaint. It also was not like Sigaint to try to extort funds in this way. I remember a lot of users on here were really frustrated by the loss of their accounts and one even offered to pay a lot of money to recover the content, which is probably why this email shit started up. I would be surprised if users on the sub aren't targeted.

Whoever sent this email was said there would be an onion up in a few days. This isn't the real deal so don't fall for it. This is a good reminder to always require gpg proof about important stuff.

I've requested a signed message and in the nearly impossible scenario that this is the real Sigaint I will post the signed message here and update the post.


Comments


[55 Points] magiclampcompany:

upvoted for significantly more importance than fidget spinners


[6 Points] None:

Good loooking out.

I do wish the service would come back though.


[4 Points] shillface:

If the feds had stolen the private key... he'd still have it too. There's not just one key which he carried around in his pocket and dropped one day while out shopping.

If he wanted to start up a new onion he'd just have to sign a message plus a new key with his old one. Easy peasy. Unless he can do that he's an impostor.


[3 Points] TheGhostOfNobility:

I'm still curious as to what exactly happened. Sigaint literally just vanished overnight with no trace. I'd be damn interested to hear the details.


[2 Points] Joskins:

Does it mean anything that the sigaint.org domain info was last updated April 6th, 2017? Or is that just something the registrar could have done without the domain owner's actions?

sigaint.org is registered

Registrar: Namesilo, LLC

Created: 2014-05-23T00 | Expires: | Updated: 2017-04-06T21

Name Servers: CARL.NS.CLOUDFLARE.COM, LUCY.NS.CLOUDFLARE.COM

Status: clientTransferProhibited https//icann.org/epp#clientTransferProhibited

whois.iana.org (root)

whois.pir.org (registry)

Domain Name: SIGAINT.ORG

Registry Domain ID: D172671718-LROR

Registrar WHOIS Server:

Registrar URL: www.namesilo.com

Updated Date: 2017-04-06T21:17:10Z

Creation Date: 2014-05-23T00:50:32Z

Registry Expiry Date: 2019-05-23T00:50:32Z

Registrar Registration Expiration Date:

Registrar: Namesilo, LLC

Registrar IANA ID: 1479

Registrar Abuse Contact Email:

Registrar Abuse Contact Phone:

Reseller:

Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited

Registry Registrant ID: C163311772-LROR

Registrant Name: Domain Administrator

Registrant Organization: See PrivacyGuardian.org

Registry Tech ID: C163311772-LROR

Tech Name: Domain Administrator

Tech Organization: See PrivacyGuardian.org

...

...

Name Server: CARL.NS.CLOUDFLARE.COM

Name Server: LUCY.NS.CLOUDFLARE.COM

DNSSEC: unsigned

URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/

Last update of WHOIS database: 2017-05-18T02:20:47Z <<<

For more information on Whois status codes, please visit https://icann.org/epp

Access to Public Interest Registry WHOIS information is provided to assist persons in determining the contents of a domain name registration record in the Public Interest Registry registry database. The data in this record is provided by Public Interest Registry for informational purposes only, and Public Interest Registry does not guarantee its accuracy. This service is intended only for query-based access. You agree that you will use this data only for lawful purposes and that, under no circumstances will you use this data to: (a) allow, enable, or otherwise support the transmission by e-mail, telephone, or facsimile of mass unsolicited, commercial advertising or solicitations to entities other than the data recipient's own existing customers; or (b) enable high volume, automated, electronic processes that send queries or data to the systems of Registry Operator, a Registrar, or Afilias except as reasonably necessary to register domain names or modify existing registrations. All rights reserved. Public Interest Registry reserves the right to modify these terms at any time. By submitting this query, you agree to abide by this policy.


[1 Points] Joskins:

Thanks for the notice!


[1 Points] penguinmixer:

Maybe the sigaint.org domain expired and this imposter registered it?


[1 Points] 3methOxy_Gin:

Hey man, you offering a free helicopter ride for this scammer?


[1 Points] calicollective:

I'm shocked no one has filled the niche sigaint did.


[-2 Points] None:

[deleted]