Speaking to, Lior Kohavi, CTO at Cyren, revealed a phishing site that aims to steal credentials from Bitcoin blockchain users.

Using Google AdWords to spread, it uses the domain ‘biocklchain dot info' as its web address. The legitimate website is 

"The fraudsters' motivation is perfectly clear here – swindling bitcoin users for a fast, sizeable payout," Kohavi stated.

Kohavi said, “As a side note to this specific attack, and interestingly enough, Bitcoin addresses are Base58Check encoded so they exclude potentially confusing characters such as 0 (number zero), O (capital o), l (lower L), I (capital i), and the symbols ‘+' and ‘/,'”.

To show just how legitimate it looks, Kohavi provided a screen of what it looked like in the wild.