Share this page!

CertiK Alert Profile picture
Twitter logo
Mar 22 7 tweets 3 min read
#CertiKSkynetAlert 🚨

Scammers will always try to take advantage of hype.

We have seen multiple phishing attempts mimicking the Arbitrum airdrop.

Here are some of the signs to look out for so you don’t lose your assets 🧵👇
1/ Scammers will often use Twitter bots to tag users in tweets pointing them to a fake Twitter profile displaying a drainer.

Many wallet drainers have a similar layout 👇

We have recorded 6 of these drainers in March alone, although it’s likely that there are more. Image
2/ These drainers will trick users into approving malicious transactions

learn more about the dangers of approving malicious transactions below

certik.com/resources/blog…
3/ Scammers also employ more classic phishing techniques where they trick victims into sending assets with value in exchange for a fake ARB token.

Below is an example 👇



We have discovered over 10 fake ARB tokens deployed since 16 March 23.
4/ It’s possible we’ll see an increase in these types of scams once the airdrop goes live.

If you’re interacting with the airdrop, be extra vigilant!
5/ So how do you protect yourself from these scams?

Don’t click any links sent to you, and always verify official accounts through multiple sources.

Go to their verified accounts, or check links from reputable sources like CoinMarketCap or similar
6/Always be sure to verify Twitter handles and URLs through official sources.

Here’s the links for Arbitrum:

Official Twitter: @arbitrum

Official URL: arbitrum.io

Foundation URL: arbitrum.foundation

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with CertiK Alert

CertiK Alert Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @CertiKAlert

CertiK Alert Profile picture
Mar 22
#CertiKSkynetAlert 🚨

Today the @SECGov charged Justin Sun & 3 of his companies for the unregistered offer and sale of crypto assets.

Additionally, 8 celebrities were charged for allegedly promoting crypto without disclosing the fact that they were being paid to do so.

See 👇
@SECGov 1/ Celebrities including Lindsay Lohan, Jake Paul and a group of rappers and R&B stars such as Soulja Boy, Akon and Lil Yachty are being charged for shilling Tronix (TRX) and BitTorrent (BTT) without disclosing the fact that they were being compensated for it.
@SECGov 2/ Six of the eight celebrities facing charges agreed to pay a total of more than $400,000 to settle those charges, with the exception of Cortez Way and singer Austin Mahone.
Read 4 tweets
CertiK Alert Profile picture
Feb 21
#CertiKSkynetAlert 🚨

What we know so far regarding the @fRiENDSiES_Ai exit scam:

On 20 Feb, fRiENDSiES Ai posted on their twitter that they were pausing the project due to market volatility.

Let’s see what went down 🧵 👇 Image
@fRiENDSiES_Ai 1/ In March 2022, the fRiENDSiES #NFT project conducted a Dutch-style auction which raised ~1,530.78 $ETH.
@fRiENDSiES_Ai 2/ According to the roadmap, which has been deleted, the team promised 1.25% of the royalties to be given back to token holders. However, investors have not received anything.
Read 6 tweets
CertiK Alert Profile picture
Dec 20, 2022
#CertiKSkynetAlert 🚨

1/ Ice phishing is a considerable threat to the Web3 community

Instead of gaining accessing to your private key, scammers trick you into signing permissions to spend your assets.

We’ll outline below what to look out for, and how to protect yourself!
2/ The scam begins when a victim is tricked into approving the ice phishing address.

The scammers address will be presented to you when you are interacting with a malicious URL or Dapp

Below is an example of this type of transaction 👇
3/ The next phase comes when the ice phisher initiates a TransferFrom transaction

In the example below we can see the ice phisher (0x4632) initiates the transaction, which sends USDT to a recipient that is controlled by the scammer.
Read 7 tweets
CertiK Alert Profile picture
Dec 19, 2022
#CertiKSkynetAlert 🚨

We are seeing multiple community reports that @BurstRoyale_NFT is a scam project that drains NFT wallets after downloading the game. Several individuals have reported that they fell victim to this phishing site over the past month.

Please stay safe!
@BurstRoyale_NFT 1/ Burst Royale appears to have a consistent modus operandi where a “team member” contacts their targets on Twitter offering them a job for the project and asking them to download their game, which is a proxy malware that drains wallets.
@BurstRoyale_NFT 2/ The malware is reportedly called RedLine Stealer which connects to a server to exfiltrate data. It can be found on underground forums for sale for ~$150.
Read 8 tweets
CertiK Alert Profile picture
Dec 19, 2022
#CertiKSkynetAlert 🚨

1/ We are seeing a fake @Coinbase email scam. Here’s how it works 👇👀

The scammer targets individuals who are selling items online and promise to pay a large sum of BTC through Coinbase.
@coinbase 2/ They’ll then ask for the email address associated with the victim's Coinbase account.

Coinbase allows users to send crypto to an email address.

They then pretend to send you BTC and provide a fake screenshot of the confirmation.
@coinbase 3/ The scammer will then send an email pretending to be from Coinbase that will ask you to purchase BTC and send it to your 'activation address' in the email subject line. This is in order to ‘activate the encrypted fund’.

The activation address is the scammers BTC wallet
Read 4 tweets
CertiK Alert Profile picture
Nov 21, 2022
#CertiKSkynetAlert 🚨

1/ Let's break down the recent FTX Wallet Drainer activity.

The BSC wallet holds ~$1.6m DAI after converting ~44,232 BNB to ~$4m USDC, ~$3.5m USDT and $3.4m Binance Peg ETH.

The assets were then bridged over to ETH and sent back to FTX Accounts Drainer. Image
2/ Once the FTX Wallet Drainer amassed ~250k ETH, they began bridging funds to the Bitcoin Blockchain

On 20 Nov, 50k ETH was transferred to 0x866E which swapped ETH for renBTC.

Those assets were then bridged to the following addresses

Bc1qv…gpedg
Bc1qa…n0702
3/ BTC Bc1qv…gpedg began a peel chain.

This is a money laundering technique whereby BTC is sent through a series of transactions in which smaller amounts of BTC are transferred to a new address. Image
Read 6 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us on Twitter!

Send Email!

:(