Hacker says "I WOULD ADMIT THAT THE POLY HACK IS NOT AS FANCY AS YOU IMAGINE [...] I WOULD SAY FIGUING OUT THE BLIND SPOT IN THE ARCHTECTURE OF POLY NETWORK WOULD BE ONE OF THE BEST MOMENTS IN MY LIFE"
"BEING THE MORAL LEADER WOULD BE THE COOLEST HACK I COULD EVER ARCHIVE!"
Hacker: "THE _POLYGON_ NETWORK IS SO UNRELIABLE
FOR MANY TIMES I THOUGHT I HAD SENT THE TRANSACTION BUT IT VANISHED. LOL"
Hacker is having some difficulties with Polygon L2 @0xPolygon
Hacker is getting tired of the people asking for money saying "HELLO BEGGARS, WHY NOT ASKING MONEY FROM THE POLY MULTISIG WALLET? 0x71Fb9dB587F6d47Ac8192Cd76110E05B8fd2142f"
⚠️ Have you heard of MEV frontrunning bots? This scam tries to capitalise on this term with other technical jargon to steal crypto from users
Typically, it is advertised as "How to make $XXX/day on Uniswap"
With 97k views on a YouTube channel boasting 26.4k subscribers
This scam works by convincing users that their smart contract is capable of monitoring the mempool and frontrunning transactions to profit from DEX trades
When actually, it is a simple proxy contract to forward your ETH deposits to the bad actor...
But where is manager configured?
Well, you'll see it is initialised within the constructor. IT is not a parameter in the contract deployment, but instead imported from a remote
⚠️ As of block 151,223,32, there has been 73,399 address that have been sent a malicious token to target their assets, under the false impression of a $UNI airdrop based on their LP's
Activity started ~2H ago
0xcf39b7793512f03f2893c16459fd72e65d2ed00c
Now that an address sees that "Uniswap V3: Positions NFT" sent them a token (without knowledge of the event pollution attack), they would get curious and check the token.
The token name directs them to a domain "/uniswaplp.com", which imitates the real @Uniswap branding
This community twitter account (@EnsTimeKeepers) with authenticate your Ethereum address and (timekeeper) @ensdomains ENS before it allows you to tweet.
For example: If you own 14h20.eth, then you can tweet during 1400-1459 (inclusive) on the UTC timezone
I recently came across a very niche "subsection" of the EthereumNameService that involved people minting ENS names around the 24H clock.