Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
Blockfence Profile picture
Blockfence
@blockfence_io
Investigation and protection layer for wallets, exchanges and enterprises against scams and fraud.
Apr 2, 2024 β€’ 14 tweets β€’ 5 min read
πŸ” March 2024 Blockchain Security Report
March was a quiet month with a relatively low amount of stolen funds ($124M vs. $398M in Feb), even more so when considering that $62M from Munchables was returned by the attacker, lowering the total losses for March to $62M.
Thread 🧡 > Image The Munchables attack was interesting due to its use of social engineering. The project, which runs on Blast, had an anon dev that controlled the keys for the main contract. This individual stole the funds and demanded $1M. After negotiations, all of the funds were returned. Image
Mar 7, 2024 β€’ 15 tweets β€’ 4 min read
Hi!

In previous threads, we have talked about SIM swap attacks and explained how they work. This method has gained popularity for being used to hack very famous people and organizations in the technology and finance industry.



Let's cover some of them 🧡 Jack Dorsey - Ex Twitter CEO

In 2019 his Twitter account got hacked and used to tweet racial and antisemitic messages. This was achieved by a group called Chuckle Squad who had carried out several attacks on famous influencers on Youtube and Instagram.
theverge.com/2019/8/30/2084…
Feb 27, 2024 β€’ 32 tweets β€’ 10 min read
πŸ” Telegram scam investigation πŸ•΅οΈβ€β™‚οΈ
Our team has recently discovered a rug pull scam involving the deposit of around 300 ETH of stolen funds into Biget and Bybit. It has been discovered that fraudulent activity was carried out through the Telegram β€œNoLiquids”.
Small thread 🧡.. This group has nearly 43K members. As per our investigation of four fake tokens, approximately 1K users may have fallen into this scam. However, considering this group has been active since mid-2019, we believe the number of victims may be significantly higher. Image
Feb 7, 2024 β€’ 18 tweets β€’ 6 min read
πŸ” January 2024 - Blockchain Security Report πŸ“Š
Check out our monthly security report on what happened during the first month of the year.
Here you have a brief summary or you can also download it (link in last message).
Let's go! 🧡... Image πŸ“… January began as a relatively quiet month with no significant attacks involving lost funds. Image
Jan 12, 2024 β€’ 34 tweets β€’ 15 min read
🚨 MASSIVE $32M RUG PULLS OPERATION UNVEILED πŸ”’
We are sharing an investigation conducted by our team, which resulted in:
- More than 1.300 different token rug pulls
- More than $32M stolen
- More than 42.000 victims
- Novel techniques used to avoid being detected
A thread 🧡 ... Image In this thread, we will provide a detailed explanation of how scammers carry out a series of rug pulls and the deceptive techniques they use to mislead traders while avoiding detection by scam detectors. We also traced some used funds to a well-known exchange.
Oct 4, 2023 β€’ 24 tweets β€’ 6 min read
🚨 Millions of dollars are being stolen daily due to private keys mismanagement.
πŸ”‘ How do they work?
πŸ” What measures should you take to avoid getting hacked and having your wallet drained
A thread about this ...🧡 As you may already know, the security of the most used wallets nowadays, relies on private keys. Private keys are a string of alphanumeric characters that protect the assets in your wallet. If you lose it or it gets stolen, your coins are gone. Image
Sep 18, 2023 β€’ 13 tweets β€’ 4 min read
Last week, Mark Cuban's wallet was hacked for about USD 850K. What happened and what simple security measures can we take in order to avoid these risks?
Let's see them one by oneπŸ‘‡
Image
Image Due to the nature of the attack, where many different tokens were drained (USDC, USDT, ENS, stETH, etc.), it seems to be a clear case of stolen private key. When this happens, your funds in all EVM networks can be stolen as they share the same private key.