Upon logging onto Pandora, I am greeted with a message from 'Nostresssupport' apparently the support account of the vendor, NoStress, whom I've placed a few orders with before.
The message reads [Some information removed for security]:
Our account has been hijacked DO NOT ORDER FROM THE PANDORA SITE.
Stay away from the pandora site here is your referral link to join Agora: http://agorabasakxmewww.onion/register/*********
We have the same name
http://agorabasakxmewww.onion/vendor/Nostress#
http://agorabasakxmewww.onion/p/BNMDeXZg9D
http://agorabasakxmewww.onion/p/ERoCNuM3ch
You can always reach us for orders at ordersnostress@safe-mail.net
And thats all. The referal link did work for Agora, which I have been trying to get into for quite some time now, but this concerns me, has anyone else got messages like this? Any vendors get their accounts stolen my Pandora?
This worries me as I was planning on making a 10+ BTC order on Pandora, but now am considering using Agora.
Is this legit?
Should I still use Pandora?
Unless that info was signed (and you verified) with the NoStress PGP key, all of that could just be an elaborate phishing scam. The only way to make sure is to contact NoStress with an encrypted message using their original public PGP key which you hopefully have on your keyring. If they don't respond or can't read your message, perhaps their account has been hijacked. Do you have a different direct email address for them?