Reasons why you should be using a Burner Wallet [Web3] 🔥

◻️ Secure your assets 💰
◻️ Maintain your privacy 🕵️
◻️ Test out new projects 💻
◻️ How to create a Burner Wallet 🔥

// THREAD🧵 // 💰 Secure your assets //

By using a burner wallet for your web3 transactions, you can increase the security of your assets and protect them from potential threats. If you happen to interact with a malicious transaction, your other wallets will remain safe.

State of Web3 Security [November 2022]

By: @Wallet_Guard x @SlowMist_Team For an easier-to-read PDF visit:
walletguard.app

⚠️ URGENT

Google has released a patch for a vulnerability in Android that allows for REMOTE CODE EXECUTION over Bluetooth with no additional execution privileges needed. It is crucial that all Android users update their devices to the latest version as soon as possible to protect against this vulnerability.

⚠️ MaaS: Laplas Clipper [Web3]
🔎 Crypto Clipboard Hijacker

New emerging malware strain "SmokeLoader". Laplas is designed to target crypto native people. Laplas Clipper hijacks a transaction and swaps the victims wallet address with the hackers. What does it do?

• Monitors clipboard for crypto address
• Swaps copied wallet address with hacker's wallet address
• They will make the attacker's wallet as similar looking to your wallet address (BTC)

Why is Wallet Guard 🔒 important?

• Prevents common forms of phishing via our algorithms
• Prevents interactions with malicious websites and dApps
• Identifies freshly created scams
• Proactive phishing protection
• The first security dashboard in web3 Why is Phishing Protection important to Web3? 🛡️

• 90% of hacks begin with a form of phishing
• Phishing can lead to Wallet Drainers or Malware
• Hackers are constantly getting more advanced
• Sometimes all it takes is a malicious website to compromise your device

🔎 Think you've been compromised?
📚 Here's some steps to check for yourself
💻 [Windows Edition]

7 steps you can take now to detect malicious activity on your computer🧵

Co-Authored: @MichaelKdcl x @TheMindOfOhm Step 1 [TURN ON AIRPLANE MODE]

click Start button > type "airplane mode" > turn airplane mode on to disable internet/wifi/radios

⚠️"Erbium" Info-Stealer [Web3 Native]
🚨 HIGH SEVERITY

This new malware strain targets wallets across multiple chains such as Ethereum, Solana, Cardano and Cosmos. It even goes as far as stealing 2FA codes from Trezor Password Manager, Authy and Microsoft Authenticator🧵 The Erbium Malware affects various wallets, and even targets authenticator apps. It can even go as far stealing tokens from Discord and Steam.

⚠ Warning - There is an ongoing phishing/malware attack against developers being spread through package managers like PyPi and NPM

How did this happen? 👇 On 9/22 @dydx was targeted and hackers were successfully able to publish malicious versions of two open source packages named @dydx/solo and @dydx/perpetual.

5 actions you can take now to improve your security in web3👇🏽 1/ Purchase a hardware wallet asap. We recommend battle tested ones like @Ledger or @Trezor

Note: Only buy from official sites! Such as ledger.com

🚨 ETHEREUM MERGE PSA

As we approach the merge expect a large amount of scams to be popping up.

To clarify as a normal Ethereum user you will NOT need to do anything at all to be ready for the merge. No action required at all by a user!!! Scams we have seen/

So we’ve seen scams claiming you’ll need to bridge assets and direct you to a phishing site.

🚩 Common Trends with Phishing in Web3

In this thread we will go over some of the things the Wallet Guard team has observed as commonalties amongst phishing attempts in web3! 🧵

• DNS Records
• Fuzzy Malicious URLs
• Using Homoglyphs in URLs 1/ DNS Records:

Observations:
🔎 DNS Records for scams tend to be created with in 3 weeks of it being spread.
🔎 When a DNS is Hijacked like with polygon-rpc the 'Updated' field in the record is changed.

Wallet Guard automatically checks DNS Record Info and alerts you!

⚠️ PSA: Chromium Browsers

Chromium Based Browsers like Chrome, Brave, Edge allow websites to MODIFY clipboard WITHOUT the user's permission.

Stay Safe Fam 🔒 2/ What can I do? 📝

• Always double check the address after you've copied and pasted it
• Be cautious with unfamiliar websites
• Always keep your guard up. Security consciousness is going to be your best friend in Web3!

⚠️Web3 Extension Malware

There is a new scam going around that leverages a chrome extension to intercept and modify your exchange deposit address & withdrawal requests. This means that even if you double check your addresses, you can still become a victim 1/🧵

Co-Auth: @0xQuit How does it work?/

This malware works by utilizing the content script to modify the website you're visiting. In the case of this malware we've seen @coinbase, @kucoincom, @binance, and @gate_io affected.

⚠️Web2 Phishing Scam

Currently there is a scam going around generating invoices from the official @PayPal site that mimic companies like "GoDaddy"

🔍The Email headers come from the official PayPal website

See following tweets for more info 🧵 How to identify if its a scam/

🔍 Check the Bill to if its says PayPal user then its likely a scam. Most invoices will contain your actual name.

Note: This method isn't going to save you 100% of the time. Best bet is to reach out to the company they are impersonating to verify

⚠️IS TIKTOK SPYWARE? ⚠️
- Short Answer: Yes.

Discussion Points:
🔲 Applicable to both Web2 & Web3.
⚔️ War on Privacy.
🔎 Get your Tin Foil hats ready as we dive in. 1/ Let's start with the Privacy Policy:
It's imperative that before we continue with this thread you look over these two screenshots. 👇🏾

⚠️ @CurveFinance Hacked! (Frontend)

DO NOT INTERACT WITH THEIR WEBSITE UNTIL MORE INFO IS PROVIDED.

https://twitter.com/CurveFinance/status/1557104676830601216

@CurveFinance This URL has been temporarily blocked for all Wallet Guard users 🔒

1/ ⚠️ New Open-Source Malware⚠️
🎯 Targeting Web3 🧵
Code Named: Luca Stealer 🥷

🔍 High Level:
- Primarily an info stealer
- Targets cold/hot wallets
- Steals discord tokens
- Steals from over 17 different extensions 👇 2/ Why should you care?

“The malware, which the author claims to have developed in just six hours, is quite stealthy, with VirusTotal returning a detection rate of around 22%.” - Bleeping Computer

The entire code-base for this malware was released for free. 👇

🚨 @PREMINT_NFT’s website is compromised.

What do I do? 🧵

https://twitter.com/PREMINT_NFT/status/1548578432920850432

1/ Goto revoke.cash or EverRise.com/EverRevoke and revoke all “set approval for all” and any crazy token allowances

📚 Learning Moment.

Is this tweet a scam? 👇🏽
(Web3/NFT Edition) 🚩What’s wrong with this tweet?

🚨CRITICAL ALERT

ASSUME YOUR EMAIL ASSOCIATED WITH OPENSEA IS PUBLIC. 🧵

https://twitter.com/opensea/status/1542338816551243776

1/ What does this mean for me?

This means your email that is associated with OpenSea is now likely leaked. Expect an increase in crypto scam emails to your email now. Also expect SPEAR PHISHING ATTACKS they will likely pose as @opensea

❄️Cold Wallets vs 🔥Hot Wallets and why you should have both:

A Thread 🧵 (1/x) 1/ What is a Cold Wallet?
A simple answer is a Cold Wallet (Hardware Wallet) is a wallet that has never been connected to the internet. This is important because it ensures your seed phrase hasn't had any exposure to the internet. (Never take a picture of the seed phrase)