Yosemite Scam
Master of Clone Pages & False Logins
THREAT TYPE
THREAT LEVEL
Yosemite Scam forges convincing clone websites and fake login pages to steal your credentials faster than a data rustler on the run. Learn how to spot a fake login page before he strikes.
Yosemite Scam builds entire clone websites that mirror trusted banks, shops, and crypto exchanges. His fake login pages trick users into handing over usernames and passwords, which he sells or uses to raid accounts.
He perfects the design-logos, colours, legal text-to make each phishing website clone almost indistinguishable from the real one. If you ever wondered how to spot a fake login page, look for odd spellings in the URL, missing HTTPS padlocks, or redirects that feel out of place.
Telltale signs:
- URL’s misspelled or uses odd extensions (.co vs .com, hyphens or extra letters).
- No padlock or strange certificate issuer.
- Page arrived from an unsolicited link.
- Redirect hops before the site loads.
REWARD
40,000
Ranger’s Rules for Riding Safe Online
Stay one step ahead of Yosemite Scam and his clone websites:
• Always type addresses yourself instead of clicking links.
• Check certificates to verify legitimate sites.
• Use a password manager—it won’t autofill on fake login pages.
• Enable two-factor authentication.
• If you suspect a phishing website clone, change your password and report it.
