Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
Baptiste Robert Profile picture
@fs0c131y
Apr 7, 2020 23 tweets 9 min read Read on X
Scrolly
Good morning Twitter! Ready for a new thread?

Some people see the #Covid19 pandemic as an opportunity to make money on people fears. Someone on the Internet decided to sell the Oxybreath Pro, a "high-quality" crap. Let's find this assh*le ⬇️⬇️⬇️
Few days ago, I received a tip. A lot of french websites are redirected to a site which is selling a mask: jumps.me
The redirected websites are:
- cups-corp.fr
- christophe-beche.fr
- aulnois.net
- bourgeois-serigraphie.fr
- pose-ton-couplet.fr
- jeff64blog.fr
- justinepaper.fr

I can smell something here. I decided to investigate.
On jumps[.]me, if you click on "Check the availability" you are redirected to hyperstech[.]com to validate your order.
In the legal mentions of the website the name of the company is "Novads OU"
By searching this company name on the Internet, we can find the exact same legal mentions on amazingtechsale[.]com
According to the company registry, Novads OU is located in Tallinn, Estonia and they have only 2 employees dnb.com/business-direc…
They have a website novas[.]co where they sell some crappy gadgets
Did you notice the logo on the previous screenshot? The website drone720x[.]com is hosted on the same pair. This website is selling low quality drones
When you check the company address on maps, you can see... an UPS office. Weird 🤔
The reconnaisance phase is done. Now, it's time to find who is behind this company
The WHOIS record of drone720x[.]com gives us the name of "Pjotr Novikov" who is one of the Novas OU employee
Pjotr also registered shamannn[.]xyz with his personal email 😁
According to the company registry, Pjotr is the founder of Novads OU
In the WHOIS record of hyperstech[.]com, we can find a new name: "Laurent Astoul"
Laurent used the contact email address of advico[.]fr to register the website.
advico[.]fr and adscom[.]co are identical. On the website they wrote: "ADSCOM Advertising Agency is an integrated promotional advertising firm" and the credits at the bottom of the page are "Copyright © 2012 Adscom Ltd"
Adscom Ltd was a UK company dissolved on 2 July 2019 beta.companieshouse.gov.uk/company/111664…
It has been founded by Adam Harding
I'm not really surprised. Adscom Ltd also sell low quality drone on gadgethqs[.]com
This company is supposed to be dissolved. They don't have the right to sell stuff anymore...
Additional note on our friend Pjotr. Pjotr is a business man, he is part of the 6 company boards. Impressive for a 30 years old guy... teatmik.ee/en/personpriva…
That's the end of this #OSINT session. Hope you like it!

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Baptiste Robert

Baptiste Robert Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @fs0c131y

Baptiste Robert Profile picture
Sep 17
Few things about exploding communication pagers

Thread ⬇️
First off, it's still early, and reports are developing. Keep an eye on the news in the coming hours or days for more updates.

theguardian.com/world/2024/sep…
Relax, we're talking about pagers here, not smartphones. Pagers are much older and far less powerful compared to the smartphones we use today.

en.wikipedia.org/wiki/Pager
Read 14 tweets
Baptiste Robert Profile picture
Sep 8
Three days ago, the @FBI released photos of "GRU 29155 cyber operatives": five Russian military intelligence officers and one civilian.

It's #OSINT time!
@FBI I zeroed in on Denis Igorevich Denisenko and, with the help of , mapped a portion of his digital footprint in just a few minutes.

Nothing groundbreaking, but I did uncover some interesting bits! beta.predictagraph.com

Image
Image
@FBI Денис Игоревич Денисенко appears in the Alfa-Bank data leak, with the date of birth matching the FBI's information: May 14, 1997.

The leak also includes an associated email, dalpha777@gmail.com, and phone number +7910275 0864. Image
Read 11 tweets
Baptiste Robert Profile picture
Aug 26
On Linkedin, Jean-Michel Bernigaud, (OFMIN chief of staff) wrote

"At the heart of this case is the lack of moderation and cooperation from the platform [..] particularly in the fight against pedocriminality."

Ultimately, it's all about content moderation.
Image
The legal showdown over this case will be monumental
I don't get why OFMIN didn't organize a press conference at this point
Read 4 tweets
Baptiste Robert Profile picture
Aug 25
The woman who accompanied Pavel Durov on his journey that led to his arrest is Juli Vavilova

It's #OSINT time!
Image
On August 21, Pavel Durov posted on his VK account:

"Telegram delegation visit to Azerbaijan

In Azerbaijan, Pavel Durov honed his target shooting skills and prepared for Formula 1."

The post was accompanied with 2 videos

Image

On his Instagram, Julia published a video from the same car
Read 20 tweets
Baptiste Robert Profile picture
Aug 23
Today, the famous hacker USDoD has been doxed by CrowdStrike.

You want to know how?

It's #OSINT time!
First the recap. This morning @TecmundoDigita published an article based on a report from CrowdStrike received from an anonymous source.

"The likely leader of the USDoD group is a 33-year-old man named Luan BG who lives in Minas Gerais, Brazil"

tecmundo.com.br/seguranca/2885…
@TecmundoDigita The article is full of info, more or less partial, without any sources. We don't have access to the initial report. I don't like that. So, at @PredictaLabOff we decided to find the truth by ourselves

Thanks to and the job is done! predictasearch.com
beta.predictagraph.com
Image
Read 27 tweets
Baptiste Robert Profile picture
May 20
The owner of the "Incognito Market" has been arrested. It's #OSINT time!

THREAD 1/n
Today, the @FBI announced today the arrest of RUI-SIANG LIN, a/k/a “Ruisiang Lin,” a/k/a “林睿庠,” a/k/a “Pharoah,” a/k/a “faro,” in connection with his operation and ownership of “Incognito Market,” an online dark web narcotics marketplace

justice.gov/usao-sdny/pr/i…
Image
@FBI Of course, they are doing #OSINT at the FBI. In the indictment, they mentioned the "publicly available information" about Rui-Siang Lin Image
Read 19 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us!

Send Email!

:(