Yesterday I stumbled onto a new link to Alphabay that I was told was the new one after being DDOS'd... sounds plausible. So I use it and it asks me to verify my username which didn't seem familiar, and then asks for password which I entered, and then asks for my pin which sketched me out. I've been doing this a while, but it never hurts to have a reminder to stay vigilant!
I used the links on the sidebar here to change my password/pin and don't reuse passwords so I think I'll be ok, but yikes, almost got me with that url!
DO NOT CLICK: alphabayglhogl2h.onion
STAY SUPER: https://www.reddit.com/r/darknetmarkets/wiki/superlist
Don't click alphabay period.