Dear Steem Inc, @ned, etc all, you have erroneously recovered the account @kibria365

in #bank5 years ago

Dear Steemit, @ned, etc all

You have incorrectly recovered the account of @kibria365. This account rightfully belongs to me. I shall submit the evidence:

https://steemit.com/bank/@neoxian/the-venetian-bank-of-neoxian-daily-contacts-2018-10-23

We have a signed contract where I loaned him 45 steem and he voluntarily gave me his account password as collateral. He signed this contract and the deal was done. Later he replaced his signature with the word "scam", but if you examine the blockchain you will see he agreed to it originally.

If @kibria365 succeeds in his attempt to scam me, then this is going to destroy my business model and I'm probably going to have to stop making loans (or at least increase the requirements to the point where most won't be able to get them anymore.)

I would humbly ask that you honor my request to recover the account @kibria365 back to me.

Thank you,
The Bank of Neoxian

PS. Yes I know this was bound to happen sooner or later. We'll see how it goes.

Sort:  

but if you examine the blockchain you will see he agreed to it originally.

Can you link the transaction where he agreed with steemd.com? It would make it more straightforward for people to see.

Edit: Here it is:

https://steemd.com/tx/70190105abed46a31b2b69f1aafa2a7f70daaa4e

Honestly I think account passwords are a poor form of collateral. You are effectively forcing Steemit Inc and other account creators to be the arbitrator in your process, without any payment for that service. Accounts are not designed to be easily transferable, account recovery is not meant to be a general purpose arbitration service.

It is obvious 45 steems was sent to him and he replied ten days ago

Screenshot_20181102-182507.png

Then he edited his comment here with scam..

Screenshot_20181102-182429.png

Thanks for providing that. Well sure I agree but there not a lot of options really. It's either Steem Monster cards or account password for collateral.

Passwords are ok for collateral, but pulling the account creators into it is awkward. You could require them to change the recovery account to you and wait 30 days before making a loan.

Sure but many people can't wait 30 days for their loan.

I'm not "pulling" the account creators in. The scammer did.

That's what I was thinking too, changing the recovery account. But then he's on the hook for recovering their accounts should they get hacked.

private keys prove ownership regardless

You are right at this point. While the loan service he provided adding much value to its followers who are in need. The Steem ecosystem is unfortunately not designed to ease process like this.

I am so sorry for your loss.

I saw his acceptance comment and here is the blockchain proof using https://scribe.steemian.info.

Screenshot from 2018-11-02 23-24-38.png

From Steemit FAQ. Note without your consent. It is now incumbent upon steemit to return rightful ownership to neoxian. Steemit failed to determine (which would have taken all of two minutes to look at the wallet at the most), to see if he had consented to giving away of his password.Had they looked and then looked at his reteem there is no doubt about the fact the password was given over voluntarily.

How does the stolen account recovery process work?
If your password has been changed without your consent, then the account designated as your recovery account can generate a new owner key for the account. The account recovery must be completed within 30 days of the password being changed, and you must supply a recent owner key that was valid within the last 30 days.

Steemit Inc. owns the default recovery account (@steem) for all users who sign up using steemit.com. Steemit can only identify users by their original email, Facebook, or Reddit logins that were used to signup via steemit.com.

If you don't have the master password or owner key that was valid the past 30 days, or are unable to prove that you are the original owner of the account, then your account will be unrecoverable.

The stolen account recovery process can only restore ownership of the account. It is not possible to recover funds that were stolen.

Source:https://steemit.com/faq.html#How_can_I_keep_my_Steem_account_secure

That's a great point about the consent aspect.

I agree, that is a quite significant find, according to those terms it seems like steemit should return the account to you.

Have you tried using the account recovery process to recover it? :-)

Yes I tried that. They honored the scammers account recovery request, but couldn't be bothered to do the five minutes research to honor my legitimate account recovery request.

I dropped back in to see if you had an update. That really sucks that Steemit would do that. Did they even look into it, or did they just honor the request without even investigating? Did they say on what grounds they were rejecting your request?

Given the speed in which they replied, I'm sure they didn't look into it. Too much trouble for them. They replied with a generic and thoughtless corporate email (you can read it in my next post).

This is why I don't trust companies (and most people for that matter).

Let me know neoxian.

  1. Nukes the Account to zero Rep
  2. DM me direct.
  3. We do have the capacity to engage this sort of Behaviour.

It's bigger group of Bangladesh users:
@kibriakk and @kibria365 both used same binance memo: 102487765

And there is lot of transfers between many Bangladesh accounts like @avantika, @ujashim... Some of them (@ujashim) are also used for plagiarism (and boosting posts with bots). I'm sure there is far more accounts.

Comment reward farming: @steemjet.sks

I will try to find more accounts.

I will report them to @steemcleaners & @spaminator.

While this recovery issue is out of our scope, we will investigate the plagiarism/faucet abuse described here.

Edit/update: After taking a close look, it's clear that this user has two accounts. The remainder of accounts are friends but are not the same person.

Thanks for looking into it.

@avantika is also his account or controlled by his girlfriend. He also created @onlinetutorial using our account creation service. @kibria365, @avantika, and @onlinetutorial all 3 got banned by utopian-io for using multiple account submiiting contributions.

Thanks, that's useful information.

I am sorry to hear this Neo. I for one think that Steemit Inc is the one to blame here for erroneously intervening in the account recovery process.

They are only allowed to activate the recovery process if the account is "compromised" to which it is not, since he gave you the key himself in his own volition in exchange for 45 Steem to which can be checked in the blockchain as you've said.

They obviously didn't check much the account's transaction and transfers as they would have seen your 45 liquid Steem transfer which was immediately transferred to another account seconds after. That itself is already suspicious and should have been a red flag for Steemit Inc to make more background checks before starting the recovery process.

You should probably add next time in your loan contracts, in addition to the "I agree with this contract", a memo transfer to you stating they agree with the contract with the url of the said loan contract. Since that cannot be edited out and is easily viewable in public (I don't think Steemit Inc will check every accounts comment/edit history)

Oh my! That's a really sad one. As a beneficiary of multiple loans from Neoxian, I am first appalled that anyone would act so badly and unethically. And I am gutted that STINC hadn't thought it necessary to carry out another layer of investigation before recovering the account. I hope with this post, and maybe a formal application/notification to them, they can review the process going forward. Meanwhile, count on the rest of us to keep doing the right thing. My solidarity, friend. Regards.

One of the Evidence that he obtained a loan. He even resteemed it.. What a petty thief

Screenshot_20181102-180737.png

After going through all the options, the best deterrent to not have this happen again is to blacklist accounts with severe penalties.

Fuckin' wasteman scammer... :/

Coin Marketplace

STEEM 0.35
TRX 0.12
JST 0.040
BTC 70638.80
ETH 3565.34
USDT 1.00
SBD 4.73