I want to take my foot off the gas a bit on posting about investigating 6-figure+ hacks and focus on how forums like this one can get exploited by scammers to steal your crypto.

What I'm about to share you won't find listed anywhere. These are all recent findings and the moderators of the forums will probably shut the scammers down (hopefully).

It's a dark forest out there and even the most technical and careful of users can still fall victim to phishing scams.

Below I'll show you one such example.

The Investigation

I investigated a case earlier this week where a seemingly knowledgeable crypto user fell victim to a phishing scam.

I noticed one of the hacker wallets directly connected to victim has a DeBank profile on his wallet of 0x43b1c949123b3fd644fc39ff04f0624826d64e16.

A look inside the Debank Profile of 0x43b1c949123b3fd644fc39ff04f0624826d64e16

Immediately I was drawn to the mention of "Blockscape" and the associated website. Disclaimer: PLEASE DO NOT CONNECT YOUR WALLET TO THAT WEBSITE OR ENGAGE AT ALL!

Additionally this wallet is a DeBank VIP, but also tagged as a Sybil by Debank. Interesting.

My first instinct was to investigate this website knowing this is almost certainly a phishing scam.

Trustscore of 42, not exactly trustworthy but not scamworthy either.

​

Interesting the scammer invested in a SSL cert. Also a 3rd party content filtering service labeled the website as safe.

I couldn't find any negative "Blockscape" reviews or any twitter mentions of this being a phishing scam.

However, what I did find was a number of Reddit users posting in Cryptocurrency forums recommending Blockscape to unsuspecting victims.

Scamming through Reddit

I decided to do a quick Google search on who is posting on Reddit about this scam site. I expected to find numerous victims telling users to stay far away.

I couldn't find a single victim.

However, what I did find was even more shocking.

I found what appeared to be hijacked Reddit accounts posting on older threads across a multitude of cryptocurrency forums (including this one) unchecked!

Here's an example.

Above is one of numerous examples I found where Reddit users recommended the "Blockscape" service. Notice the time difference between the OP and these responses. These sybil/stolen accounts are replying to older posts at scale.

I decided to take a look at the posting history of one of the accounts. They all follow a similar pattern.

Below is one such example of user "iago12w"'.

This guy literally copied and pasted the same message across multiple cryptocurrency forums.

But wait there's more!

Why copy/paste one scam when you can do multiple from the same account at the same time!

Above is another scam the same user posted at the exact same time as the Blockscape scam.

This is one of the more sophisticated scammers I've seen.

Somehow this person or group has managed to stay under the radar while stealing potentially millions from unsuspecting Reddit users.

In the past 2 months, I'm showing over $632K just from 0x43b1c949123b3fd644fc39ff04f0624826d64e16, and that's just one of the scammers wallets.

https://preview.redd.it/44liu5oaqk7c1.png?width=1500&format=png&auto=webp&s=8158b9c2a15dcf0611da5c9f95df1bde16c48890

I hope by exposing some of the tactics of these scammers other moderators of cryptocurrency related forums can catch on and prevent scams like these.

Stay safe out there!