I wasn't paying attenttion today and went to Agora throuh the hidden wiki. Yes, I know, that's my fuck up. I tried to log in a couple of times and it said the captcha was wrong, but I know it wasn't. Look up, oh fuck it's the Agora login page but the wrong address. As fast as I could I got to the correct link but it just says username/password incorrect. So a couple of questions.
How the fuck did they change my password without my pin? I know they don't have it and that is crazy if they allow passwords to be changed without the pin.
I have no active orders other than one small one the was FE'd a couple of days ago. Not sure what to do here as I cannot make a new account.
I assume I can't get the account back, but I don't care. There was only a tiny fraction of a BTC in there. I really would like to let them know so they can disable my account before someone uses it for God knows what else. Anyone know who I should contact to let them know it was compromised?
This sucks. I have been around since SR1 and never once been phished. Unfortunately someone edited the wiki and I just happened to click on that Agora link and got lazy about looking at the address. Thanks for any advice.
Well, since you said they changed your password I assume you didn't have 2FA enabled.
2FA forces you to decrypt a message with your private key, so even if you get phished, they couldn't do anything with it because they can't decrypt the login message.
That being said, if you had your PGP key on your profile you could message Agora support and verify that you're the real owner. The account is lost, but I doubt someone could do anything other than order something or try to withdrawl so I wouldn't worry about trying to close it.