I used the lchudify....onion link which has been on their masthead. The page had info about the additional mirror links and suggested all users should change their passwords as a precaution. So i did. I also saved the page for it listed all the new mirror links and I read the mod post above about being banned if you publish mirror links.
this morning i clicked on the html page i saved and what opens on my screen is the dream page with no graphics, normal, but in the middle of the page is a big red box that says "Phisher Site." WTF?
I then looked at the source code and saw that 2 of the mirror links had onion addesses different than what was displayed on the html page and both had "phisher site" in the souce code description field.
they had also created an html div class YouHaveBeenPhished, which is the only thing that made me smile as it is perverted humor meaning that they knew they were fucking first class so they paid attention to details.
As i said, i changed my PW but thanks to the OPSec of this subred, it was created only for dream and i have no BTC in my wallet.
use the search function of this sub.
nothing new at all.