It appears to be exploiting a badly designed payment system, which allows a user to unilaterally cancel a payment by altering the timezone.

This leads the payment processor to think too much time has elapsed (many payment processors impose a time limit by which a deposit must be made to avoid price fluctuations and other issues). Per normal procedure for an expired invoice, any payment is refunded to the user.

The site mentioned in the link appears to credit the user regardless of whether an invoice is expired or not. This is entirely the fault of a poor system design/integration between the payment processor and the integrating website, and exploits absolutely nothing in the Bitcoin protocol, node software, or wallet implementations.

It's basically the equivalent of you selling me something for $1000 on the condition that I pay you within 10 minutes, and cancelling our transaction because I showed you the time on my phone (which I can change as I want to) which indicates more than 10 minutes has passed. Then, you refund me $1000 if I pay you (since you think the transaction is cancelled), but your accountant considers it complete and ships out the goods anyways.

This exploit is still working, I have tested it with 500$, after 3 confirmations, my wallet was refunded with 1000$

He wrote a paper about this exploit, u can find it here:

GofileGofile is a free and anonymous file-sharing platform. You can store and share data of all types (files, images, music, videos etc...). There is no limit, you download at the maximu…gofile.io