Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
Scam Sniffer | Web3 Anti-Scam Profile picture
@realScamSniffer
Apr 27, 2023 11 tweets 10 min read Read on X
Scrolly
1/ 🚨 A recent surge in phishing scams via Google search ads has led to users losing approximately $4 million.
ScamSniffer has investigated multiple cases where users clicked on malicious ads and were directed to fraudulent websites.
#PhishingScams #GoogleAds Image
2/ 🕵️‍♂️ Investigation into the keywords used by victims has uncovered numerous malicious ads at the forefront of search results.
Most users, unaware of the deceptive nature of search ads, click on the first available option, leading them to malicious websites.
#Cybersecurity Image
3/ 🎯 Some of the malicious ads and websites target brands such as @zapper_fi , @LidoFinance , @StargateFinance and @DefiLlama.
These advertisers have been identified as placing these malicious ads:
ТОВАРИСТВО З ОБМЕЖЕНОЮ ВІДПОВІДА­ЛЬНІСТЮ «РОМУС-ПОЛІГРАФ»
TRACY ANN MCLEISH. ImageImage
4/ 🛡️ Malicious ads employ several techniques to bypass Google's ad review process, including parameter distinction and debugging prevention.
These tactics allow them to deceive Google's ad review process and cause significant harm to users. #AdReview #Bypass ImageImageImage
5/ 🔧 Recommended improvements for @GoogleAds include the integration of a Web3-focused malicious website detection engine (e.g., ScamSniffer) and continuous monitoring of landing pages throughout the ad placement lifecycle.
#GoogleAds #Security
6/ 💰 Analysis of on-chain data from addresses associated with the malicious ad websites reveals that approximately $4.16 million has been stolen from around 3,000 victims.
Details: dune.com/scamsniffer/go…
#CryptoTheft #OnChainData Image
7/ 🌐 By analyzing several larger fund collection addresses, it was found that some funds were deposited into @SimpleSwap_io , Tornado.Cash, @kucoincom , and @BinanceUS. Image
8/ 📈 Ad analysis platforms suggest that the average cost per click for these keywords is around $1-$2. Based on an estimated conversion rate of 40% and 7,500 users clicking on the ads, the advertising cost is approximately $15K.
Estimated ROI of about 276%.
#ROI #PhishingScams Image
9/ 🚀 You should exercise caution when using search engines and actively block content in the advertising area.
Furthermore, it's crucial for @GoogleAds to strengthen its review process for Web3 malicious ads to better protect users.
#CybersecurityAwareness #GoogleAdsProtection
10/ 🙏 Thanks to @IM_23pds from @SlowMist_Team@tayvano_@bax1337 from @convex_labs, @1nf0s3cpt, @zachxbt and @DeFiTeddy2020 for reviewing the data and content!
drops.scamsniffer.io/post/4-million…

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Scam Sniffer | Web3 Anti-Scam

Scam Sniffer | Web3 Anti-Scam Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @realScamSniffer

Scam Sniffer | Web3 Anti-Scam Profile picture
Dec 3
🧵 [1/7] 🚨 ScamSniffer November Phishing Report

$9,380,000 STOLEN
9,208 VICTIMS

November saw one victim lose $661K in stETH within minutes - and that's just the tip of the iceberg.

Let's dive into the dark side of Web3... 🧵 Image
🧵 [2/7] BIGGEST HITS 💸

• $661K stETH (ETH) - Permit
• $409K WBTC (ARB) - Permit
• $344K FET (ETH) - Uniswap Permit2
• $220K USDT (ETH) - Direct Transfer

Pattern? Malicious signatures remain the deadliest weapon 🎯 Image
🧵 [3/7] TREND ANALYSIS 📊

NOV: $9.38M (-53%)
OCT: $20.2M
SEP: $45.8M

Losses are down, but the victim count remains high. Image
Read 7 tweets
Scam Sniffer | Web3 Anti-Scam Profile picture
Oct 11
🚨 5 hours ago, someone lost 15,079 fwDETH($35M) after signing a "permit" phishing signature.💸 Image
Image
victim:
0xeab23c1e3776fad145e2e3dc56bcf739f6e0a393

scammer:
0x0605edee6a8b8b553cae09abe83b2ebeb75516ec

Token spenders are temporary addresses pre-computed by CREATE2.

Image
Read 4 tweets
Scam Sniffer | Web3 Anti-Scam Profile picture
Oct 4
🚨 ScamSniffer September Phishing Report
In September, around 10K victims lost approximately $46 million to crypto phishing scams.

In Q3 2024, phishing losses totaled $127 million with an average of 11K victims per month. Two major victims accounted for $87 million. 💸

🧵 [1/8] Image
🧵 [2/8] One victim lost $32 million by signing a permit signature.

As users, always double-check for potential phishing risks before signing anything. 🔍💰

🧵 [3/8] One victim $1 million by copying the wrong address from a contaminated transfer history.

🚫 Never copy the address from transfer histories.
Read 8 tweets
Scam Sniffer | Web3 Anti-Scam Profile picture
Aug 21
🚨 5 hours ago, a victim lost $55.43M in DAI after signing a phishing transaction targeting its DeFi Saver Proxy.

How did this happen? 👇 Image
By checking 0x2129F8a9b6C3092a600Da82Ce859B7A9a69983E4‘s transactions,

10 hours ago, the victim 0xf2B889437F243396b29E829908b5d8ebE2e13048 executed a `setOwner` transaction.

etherscan.io/address/0x2129…
Image
This resulted in the owner of its DeFiSaver Proxy contract pointing to a phishing address:
0x0000db5c8B030ae20308ac975898E09741e70000

etherscan.io/tx/0xb721c8d60…
Image
Read 7 tweets
Scam Sniffer | Web3 Anti-Scam Profile picture
May 6
🧵 [1/6] 🚨 ScamSniffer's April Phishing Report 🚨
April saw a significant decrease in losses from phishing attacks, with 34,000 victims losing $38 million.

This is a 46% drop compared to last month. 📉 Image
🧵 [2/6] Despite the overall decline, theft on the Base chain saw a substantial increase of 145% from the previous month.

Notably, 2 of the top 10 largest single thefts occurred on this chain, accounting for 21% of the month's total theft. Image
🧵 [3/6] 🪙 A whopping 88% of the stolen assets were ERC20 tokens.

Most thefts were due to phishing signatures like Permit, IncreaseAllowance, and Uniswap Permit2, leading to significant losses.

Please do more research when you meet these signatures.🛡️

Image
Image
Image
Read 6 tweets
Scam Sniffer | Web3 Anti-Scam Profile picture
Mar 14
🚨 someone lost $2 million worth of ETH to phishing scams about 1 hour ago. ether.fi

Image
Image
victim:
0x39b28b4ef189ea7ecc961b08f4d3f89f39ad1ccf

scammer:
0x1af48964975ccf8fb66140873b3d16237587cbe7

etherscan.io/tx/0x16d1e7522…
the victim signed a malicious increaseAllowance transaction.

etherscan.io/tx/0xcbd90ad59…
Read 5 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us!

Send Email!

:(