3/ Perhaps you thought it was a one time off incident and I am making assumptions that it’s his wallet. Let’s examine some undisclosed $EULER shilling.
a) Received 78,610 EULER on 5/3
b) Shilled on Twitter on 5/4
4/ Let’s look at $SAVE which which was a BSC coin advertised as a “charity coin”
From BSC scan you see he received coins for promoting which wasn’t disclosed.
6/ Now let’s move over to his paid group WWG so we can examine if it’s any different.
They have thousands of paying members with a monthly membership fee of ~$175
I would hope you’re not taking advantage of people with your “signals”
7/ Let’s examine this TRB signal by CryptoEliz.
a) Call made at 11:28 pm
b) Exits 3 minutes later & posts screenshot
c) Significant volume & price surge immediately after the signal from 11:28 pm to 11:31 pm
Perhaps this was a one off incident!
8/ Here’s another TRB call made by CryptoEliz
a) Entry signal made at 3:04 pm
b) Exits 5 minutes later and posts screenshot
c) Significant volume & price surge immediately after the signal from 3:04 pm to 3:09 pm
Not so much of a coincidence now anon?
9/ Let’s look at one more for good measure. Here’s a LIT signal given.
a) Entry signal made at 11:32 am
b) Exits for a “scalp” 8 minutes later
c) See chart for evidence.
Imagine paying this much monthly just to get dumped on.
10/ Lastly here’s the WWG analyst BullChain calling out anyone promoting the token $LEGS
Hours later CryptoEliZ tweets about $LEGS pretending to have genuine interest. Another shill not disclosed…
Another WWG fail
11/ Another sketchy tactic used by the group is their marketing & branding.
By using wealth/warren buffet memes they look to attract as many newbies as possible.
Avoid anyone with “god” in their username.
12/ For a while during spring when it was up only I did follow him for a bit thinking he was legit but little did I know.
These people do not want to help you and are not your friend.
I’m sure his army will come attacking but they are naive and it’s hard to continue to watch
13/ Well that concludes this thread!
Follow for more in the future.
Oops
From the WWG Discord
“Why do you spend all this time”
So John claims he “reimbursed” everyone in the Discord.
@SECGov@GaryGensler@FBI Instead of going after legit projects trying to innovate when can we go after bad actors like the ones displayed in this thread that investors keep getting wrecked by.
This is where protection should be given.
Further evidence this is Johns wallet.
More like EliZ losing money from less people to dump on
I’m not too well versed in this area but everyone involved is under US jurisdiction.
Would be happy to formally file a complaint or take legal action granted someone can help guide through the process.
1/ An investigation into how @cryptobeastreal scammed followers by lying they were not behind the $190M -> $3M $ALT market cap crash where 45+ connected insider wallets sold $11M+ on July 14, 2025.
2/ Earlier this month Crypto Beast began aggressively promoting $ALT on X and TG.
On July 14, 2025 ALT crashed from 0.19 to 0.003 after insiders sold a large percent of the total supply.
All of these posts promoting the token. have since been deleted.
3/ Crypto Beast previously shared a public wallet on X & TG in now deleted posts.
1/ My recent investigation uncovered more than $16.58M in payments since January 1, 2025 or $2.76M per month has been sent to North Korean IT workers hired as developers at various projects & companies.
To put this in perspective payments range from $3K-8K per month meaning they have infiltrated 345 jobs on the low end or 920 jobs on the high end.
2/ Here’s a look into one of the six clusters I have been monitoring and was able to attribute 8 different DPRK ITWs that obtained roles at 12+ projects.
I traced out the payment addresses from the table to two consolidation addresses.
1/ Multiple projects tied to Pepe creator Matt Furie & ChainSaw as well as another project Favrr were exploited in the past week which resulted in ~$1M stolen
My analysis links both attacks to the same cluster of DPRK IT workers who were likely accidentally hired as developers.
2/ On Jun 18, 2025 at 4:25 am UTC ownership for ‘Replicandy’ from Matt Furie & ChainSaw was transferred to a new EOA 0x9Fca.
Jun 18, 2025
6:20 pm UTC: 0x9Fca withdrew mint proceeds from the contract
Jun 19, 2025
5:11 am UTC: 0x9Fca unpauses the mint
The attacker then minted NFTs and sold into bids causing the floor price to fall to zero.
3/ On Jun 23, 2025 the attacker transferred ownership from the ChainSaw deployer to 0x9Fca for Peplicator, Hedz, Zogz.
Similarly the attacker minted NFTs and sold them into bids causing the floor price to fall to zero.
1/ An investigation into how the New York based social engineering scammer Daytwo/PawsOnHips (Christian Nieves) stole $4M+ from Coinbase users by impersonating customer support, bought luxury goods, and lost most of the funds gambling at casinos.
2/ Daytwo operates a small call centre group and also works as a caller.
His group primarily coerced targets into setting up Coinbase wallet with a compromised seed on phishing sites.
Below is a video of his panel used and a sample of his voice when calling.
1/ In late 2023 a former Yuga Labs security researcher was stopped at the airport after law enforcement mistakenly linked them to a $1.1M phishing theft from a Bored Ape owner.
Here’s an investigation into where the stolen funds went and who’s actually responsible.
2/ In Dec 2022, a victim had 14 X BAYC NFTs phished in a social engineering scheme where purchased X accounts were used to convince the victim they wanted to license the IP rights for a film.
The scammer directed the victim to a phishing site where they had them sign a message draining their assets.
3/ In Sep 2023, Sam Curry a well known whitehat and former Yuga Labs security engineer was detained at the airport by law enforcement for questioning and was served with a grand jury subpoena (later dropped).
In reality as part of his security work at Yuga, he had been investigating the theft and used a private key put in the JavaScript of the website by the threat actor.
LE then had mistakenly reviewed logs from OpenSea which included his home IP address and used this to incorrectly link him as the suspect.
1/ An investigation into the alleged identity of the mysterious Hyperliquid whale tied to illicit activity that profited ~$20M via highly leveraged positions over the past couple weeks.
2/ A trader opened multiple highly leveraged positions on Hyperliquid and GMX from Jan - Mar 2025.
They gained lots of attention this month after two onchain trades:
-Large ETH & BTC long position on 50X leverage just before Trump’s crypto reserve announcement by 0xe4d3 ($10M profit)
-Large BTC short position on 40X leverage by 0xf3F4 ($9M profit)
3/ I went and identified the main counterparties of 0xf3f: