Okay, recently I tried to deposit some BTC to Nucleus and for some reason the wallet address was different, I didn't think anything of it as the link I used to get to the site, was from dnstats.net, now I'm not blaming dnstats but the only way I could've clicked a phishy link would be if it were supplied on there, I only ever used to use the Nucleus forums or dnstats to get the link for the market.
An extremely strange thing which made no sense at all during all of this, I was waiting on this BTC to come through to my Nucleus wallet so I could pay for a custom order, right? And I noticed I had enough BTC in my wallet to order myself some weed. I used the PGP to supply my address to the vendor, marked as shipped, job done, and the bud come the next day.. So let me explain what I'm trying to get at, during this whole process I was logged into Nucleus with the onion provided from dnstats.net and this phishing happened during that time, I never logged out of where the wallet address was provided. Well I say I was phished, it just doesn't add up that my BTC still isn't in my wallet after an absurd amount of confirmations.
Now, I always had faith in Nucleus as I did over 100 transactions as a buyer and NEVER had any issues like this before. I'm super paranoid and thinking with the Nucleus forums down it is making the market vulnerable to more phishing as most of the Nucleus Market pretty much only used the forums for feedback with market issues, vendor feedback, etc. With that down due to "spammers" which in all fairness was happening but it could've easily been controlled without bringing the whole forums down.
I'm not here to say Nucleus is pulling something or anything I simply want answers on how the fuck this could've happened.
Can you give more information about the vendor and the custom order? There is a common way for vendors to gain control of accounts using social engineering tactics (or phishing sites) to do exactly this. Via some other method of communication, such as other site, they set up a "just a little too good, but not too good to know a problem is happening" where the vendor gains access to your account, finalizes, (even write the vendor to say thanks and leave awesome feedback) and the buyer is screwed.
I've seen it happen a lot and happened to me once, but it was actually a social engineering issue with the market, not with me as a buyer. Once we figured out how it happened and found it was the market's fault, (they started ignoring me once i said they were social engineered) - we were writing a market warning and since I don't tie my position here to markets, I did that ONE time as while we were writing, he posted an ad saying how he made 70k in sales since evo grew. So we approached him with his ignoring me and the whole story and had it fixed withing 24 hours.
But there is another version of the scam that does not require the market issue, but it does require outside communication (usually) and it's always a custom deal.
So, can you explain from start to finish everything that happened? I got my money back (but that could be the market was new and a moderator here explaining exactly how a script and protocol issue cost me several hundred dollars. But they can freeze the vendors withdrawals and investigate despite finalizinig. But to help, we need a lot more info, as sadly, I believe there will be somewhere that you made a mistake you wouldn't dream would be a problem.
This is a sub full of clever people. Let's see what we can do for you. Good luck!