Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
Scam Sniffer | Web3 Anti-Scam Profile picture
Scam Sniffer | Web3 Anti-Scam
@realScamSniffer
Crypto Anti-Scam🛡️ | User-safety advocate 🌐 🧩 Extension: https://t.co/How2d4sL8b 📲 | ✈️ TG: https://t.co/qbfM5Z44mZ
2 subscribers
Aug 26 4 tweets 2 min read
🚨 ALERT: Another victim lost $235,977 in tokens after signing malicious EIP-7702 batch transactions. Image victim:
0x4897e52525bFb35c2D0B6F4f93090bB9C9E9ddf5

scammers:
0x7fE37417B727Be5CDe96Fb2EfEefc51EA42DfAD8
0x93eF5c6Dc6B82B09D747151fa46C5375BffEc2b5

etherscan.io/tx/0xa2a6a9c8d…
Jan 10 8 tweets 3 min read
1/8 🚨 SECURITY ALERT: A victim lost 143.45 ETH ($460,895) through transaction simulation spoofing 1 day ago.

Here's how these attacks work... 🧵 Image 2/8 📱 Transaction simulation is a feature in modern Web3 wallets that shows users the expected outcome of their transactions before signing.

This feature aims to improve transparency and user experience. 🔍 Image
Dec 10, 2024 7 tweets 3 min read
1/7 🚨 SECURITY ALERT: New sophisticated scam targeting crypto users through fake Telegram groups.

Attackers are impersonating multiple crypto influencers and using malicious bots for verification. Here's how it works... 🧵 Image 2/7 📱 First, scammers create fake accounts mimicking popular crypto influencers.

They comment on legitimate posts, inviting users to "exclusive" Telegram groups promising alpha and investment insights. 🎭 Image
Image
Dec 3, 2024 7 tweets 3 min read
🧵 [1/7] 🚨 ScamSniffer November Phishing Report

$9,380,000 STOLEN
9,208 VICTIMS

November saw one victim lose $661K in stETH within minutes - and that's just the tip of the iceberg.

Let's dive into the dark side of Web3... 🧵 Image 🧵 [2/7] BIGGEST HITS 💸

• $661K stETH (ETH) - Permit
• $409K WBTC (ARB) - Permit
• $344K FET (ETH) - Uniswap Permit2
• $220K USDT (ETH) - Direct Transfer

Pattern? Malicious signatures remain the deadliest weapon 🎯 Image
Oct 11, 2024 4 tweets 2 min read
🚨 5 hours ago, someone lost 15,079 fwDETH($35M) after signing a "permit" phishing signature.💸 Image
Image victim:
0xeab23c1e3776fad145e2e3dc56bcf739f6e0a393

scammer:
0x0605edee6a8b8b553cae09abe83b2ebeb75516ec

Oct 4, 2024 8 tweets 3 min read
🚨 ScamSniffer September Phishing Report
In September, around 10K victims lost approximately $46 million to crypto phishing scams.

In Q3 2024, phishing losses totaled $127 million with an average of 11K victims per month. Two major victims accounted for $87 million. 💸

🧵 [1/8] Image 🧵 [2/8] One victim lost $32 million by signing a permit signature.

As users, always double-check for potential phishing risks before signing anything. 🔍💰

Aug 21, 2024 7 tweets 4 min read
🚨 5 hours ago, a victim lost $55.43M in DAI after signing a phishing transaction targeting its DeFi Saver Proxy.

How did this happen? 👇 Image By checking 0x2129F8a9b6C3092a600Da82Ce859B7A9a69983E4‘s transactions,

10 hours ago, the victim 0xf2B889437F243396b29E829908b5d8ebE2e13048 executed a `setOwner` transaction.

etherscan.io/address/0x2129…
Image
May 6, 2024 6 tweets 3 min read
🧵 [1/6] 🚨 ScamSniffer's April Phishing Report 🚨
April saw a significant decrease in losses from phishing attacks, with 34,000 victims losing $38 million.

This is a 46% drop compared to last month. 📉 Image 🧵 [2/6] Despite the overall decline, theft on the Base chain saw a substantial increase of 145% from the previous month.

Notably, 2 of the top 10 largest single thefts occurred on this chain, accounting for 21% of the month's total theft. Image
Mar 14, 2024 5 tweets 2 min read
🚨 someone lost $2 million worth of ETH to phishing scams about 1 hour ago. ether.fi

Image
Image victim:
0x39b28b4ef189ea7ecc961b08f4d3f89f39ad1ccf

scammer:
0x1af48964975ccf8fb66140873b3d16237587cbe7

etherscan.io/tx/0x16d1e7522…
Nov 12, 2023 8 tweets 3 min read
1/ Wallet Drainers are misusing Create2 to bypass security alerts in some wallets by generating new addresses for each malicious signature.

After a discussion with @SlowMist_Team, a group has employed the same technique in Address Poisoning to steal $3M since Aug. Image
Image 2/ What is Create2?

The CREATE2 opcode allows us to predict the address of a contract before it is deployed on the Ethereum network.

Uniswap uses CREATE2 to create Pair contracts.

Read more:
@WTFAcademy_

wtf.academy/en/solidity-ad…
Apr 27, 2023 11 tweets 10 min read
1/ 🚨 A recent surge in phishing scams via Google search ads has led to users losing approximately $4 million.
ScamSniffer has investigated multiple cases where users clicked on malicious ads and were directed to fraudulent websites.
#PhishingScams #GoogleAds Image 2/ 🕵️‍♂️ Investigation into the keywords used by victims has uncovered numerous malicious ads at the forefront of search results.
Most users, unaware of the deceptive nature of search ads, click on the first available option, leading them to malicious websites.
#Cybersecurity Image
Aug 28, 2022 12 tweets 4 min read
Weekly Update - 28th Aug

1. DNS change monitor and reminder
2. NFT honeypot attack detection
3. Sync malicious domains and addresses to Chainabuse
4. Tenderly API configuration 1. DNS change monitor and reminder
In the recent Curve DNS attack on 9th Aug. 2022, the Curve DNS vendor changed from Vercel to UAB Cherry Servers with no pre-notice.
We tried to build DNS change monitor and reminder for over 50 well-known projects: github.com/scamsniffer/Si…