Share this page!

CertiK Alert Profile picture
Twitter logo
Dec 19 8 tweets 5 min read
#CertiKSkynetAlert 🚨

We are seeing multiple community reports that @BurstRoyale_NFT is a scam project that drains NFT wallets after downloading the game. Several individuals have reported that they fell victim to this phishing site over the past month.

Please stay safe!
@BurstRoyale_NFT 1/ Burst Royale appears to have a consistent modus operandi where a “team member” contacts their targets on Twitter offering them a job for the project and asking them to download their game, which is a proxy malware that drains wallets.
@BurstRoyale_NFT 2/ The malware is reportedly called RedLine Stealer which connects to a server to exfiltrate data. It can be found on underground forums for sale for ~$150.
@BurstRoyale_NFT 3/ This particular malware harvests information from browsers such as saved credentials, autocomplete data, and credit card information. The stealer targets Chromium-based browsers and Gecko-based browsers.
@BurstRoyale_NFT 4/ Burst Royale is believed to be a copy of the original game @blastroyale. Both websites, gitbooks, logos, graphics, animations and white papers are the same. @BurstRoyale_NFT was reportedly called Shadow Ages before.
@BurstRoyale_NFT @blastroyale 5/ Blast Royale gitbook: first-light-games.gitbook.io/blast-royale/

Burst Royale gitbook: burstroyalecom.gitbook[.]io/untitled/
@BurstRoyale_NFT @blastroyale 6/ The original game @blastroyale has already notified the community that there was a site impersonating their project through a message from their CEO on Twitter and Tiktok



tiktok.com/@blastroyale/v…
@BurstRoyale_NFT @blastroyale 7/ It appears that @BurstRoyale is another Twitter account connected to the scam website. Please always check your sources and make sure to not click on any links or download anything without doing your own research first!

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with CertiK Alert

CertiK Alert Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @CertiKAlert

CertiK Alert Profile picture
Dec 20
#CertiKSkynetAlert 🚨

1/ Ice phishing is a considerable threat to the Web3 community

Instead of gaining accessing to your private key, scammers trick you into signing permissions to spend your assets.

We’ll outline below what to look out for, and how to protect yourself!
2/ The scam begins when a victim is tricked into approving the ice phishing address.

The scammers address will be presented to you when you are interacting with a malicious URL or Dapp

Below is an example of this type of transaction 👇 Image
3/ The next phase comes when the ice phisher initiates a TransferFrom transaction

In the example below we can see the ice phisher (0x4632) initiates the transaction, which sends USDT to a recipient that is controlled by the scammer. Image
Read 6 tweets
CertiK Alert Profile picture
Dec 19
#CertiKSkynetAlert 🚨

1/ We are seeing a fake @Coinbase email scam. Here’s how it works 👇👀

The scammer targets individuals who are selling items online and promise to pay a large sum of BTC through Coinbase.
@coinbase 2/ They’ll then ask for the email address associated with the victim's Coinbase account.

Coinbase allows users to send crypto to an email address.

They then pretend to send you BTC and provide a fake screenshot of the confirmation.
@coinbase 3/ The scammer will then send an email pretending to be from Coinbase that will ask you to purchase BTC and send it to your 'activation address' in the email subject line. This is in order to ‘activate the encrypted fund’.

The activation address is the scammers BTC wallet
Read 4 tweets
CertiK Alert Profile picture
Nov 21
#CertiKSkynetAlert 🚨

1/ Let's break down the recent FTX Wallet Drainer activity.

The BSC wallet holds ~$1.6m DAI after converting ~44,232 BNB to ~$4m USDC, ~$3.5m USDT and $3.4m Binance Peg ETH.

The assets were then bridged over to ETH and sent back to FTX Accounts Drainer. Image
2/ Once the FTX Wallet Drainer amassed ~250k ETH, they began bridging funds to the Bitcoin Blockchain

On 20 Nov, 50k ETH was transferred to 0x866E which swapped ETH for renBTC.

Those assets were then bridged to the following addresses

Bc1qv…gpedg
Bc1qa…n0702
3/ BTC Bc1qv…gpedg began a peel chain.

This is a money laundering technique whereby BTC is sent through a series of transactions in which smaller amounts of BTC are transferred to a new address. Image
Read 6 tweets
CertiK Alert Profile picture
Nov 20
#CertiKSkynetAlert 🚨

FTX Wallet Drainer 1 has transferred 5k ETH to a new wallet 👀

etherscan.io/tx/0xe3f288d78…
0x866Ee has received another 10k ETH from FTX Wallet Drainer 1

They have also begun swapping ETH for renBTC.
0x866E has now swapped 8k ETH for ~575 renBTC (~$9.6m)
Read 5 tweets
CertiK Alert Profile picture
Nov 19
#CertiKSkynetAlert 🚨

The FTX Wallet Drainer 1 (0x59AB) has begun swapping BNB to ETH, BSC-USD, and USDC.

So far:

~14,558 WBNB swapped for 3,000 ETH across 2 txns

~13,663 WBNB swapped for 3.5M BSC-USD

~15,875 WBNB swapped for 4M USDC across 2 txns

Stay vigilant! ImageImageImageImage
The address still holds ~190.5 BNB.

Fifth transaction 👇 Image
Assets were sent to a new address: 0x2Cfe6a1ABC4F72065d3A640a5A006471794b2EcC

Which has begun bridging assets to their Ethereum wallet. Image
Read 4 tweets
CertiK Alert Profile picture
Nov 18
#CertiKSkynetAlert 🚨

In a matter of days, FTX, a company valued at $32B at the beginning of this year, went from a leading cryptocurrency exchange to bankruptcy.

🧵👇
2/ In the aftermath of FTX filing for bankruptcy we have seen the devastating impact the situation is having on a number of companies who had dealings with FTX.
3/ Some of the major companies hit by FTX’s collapse are:

Genesis Trading
Galaxy Digital
Galois Capital
BlockFi
Coinshares
Amber Group
Pantera Capital
Nexo
Voyager
Read 4 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us on Twitter!

Send Email!

:(