Monthly report attached - June 2023


Thanks for your continuous support!

Bad sites detected and shared with vendors for removal: 19



UrlScan IoCs
Balancer


Search Balancer (1695 hits in 30 files of 30 searched)

Search (balancеr|balqncer|balancer|balahcer|bqlancer|baIancer|balencer|baiencer|balancer-fi|balancer-fl|baiancer-fi|balencer-fi|balancer\.fi|balancer-fl|ba[l1][ae]ncer|b[ao]l[ae]ncer|b[aq]lancer|fi-balancer|app-balancer|bal-drop|airdropbal|balancerairdrop|[a-zA-Z]*balancer[a-zA-Z]*|[a-zA-Z]*bqlancer-[a-zA-Z]|[a-zA-Z]*balancer[a-zA-Z]*|a-zA-Z]*balancerfi[a-zA-Z]*|a-zA-Z]*bal-[a-zA-Z]*|[a-zA-Z]*baiancer[a-zA-Z]*)




As balancer is a common word and "Load Balancer" is often registered and present in subdomains alike, there is a lot to filter though, but the real number of scams is fairly low, 19 from almost 1700.


Sneak Peek in my abuse inbox

Metamask, airdrop, walletconnect, etc:
Search "airdrop" (382 hits in 30 files of 30 searched)
Search "binance" (2633 hits in 30 files of 30 searched)
Search "coinbase" (1592 hits in 30 files of 30 searched)
Search "elonmusk" (309 hits in 30 files of 30 searched)
Search "metamask" (474 hits in 30 files of 30 searched)
Search "pancakeswap" (145 hits in 29 files of 30 searched)
Search "sushiswap" (53 hits in 20 files of 30 searched)
Search "trustwallet" (34 hits in 15 files of 30 searched)
Search "walletconnect" (20 hits in 14 files of 30 searched)


Total potential bad hits for the month ~4.5K


Search (usdc|claim|coinbase|colnbase|c0inbase|c0lnbase|cornbase|coirbase|balancer|balahcer|bqlancer|baIancer|[a-zA-Z]*1inch[a-zA-Z]*|[a-zA-Z]*1inch-[a-zA-Z]|[a-zA-Z]*oneinch[a-zA-Z]*|a-zA-Z]*1-inch[a-zA-Z]*|a-zA-Z]*1-inch[a-zA-Z]*|[a-zA-Z]*1inch[a-zA-Z]*|[a-zA-Z]*pancakesw[a-zA-Z]*|[a-zA-Z]*pancakesv[a-zA-Z]*|[a-zA-Z]*pancokesv[a-zA-Z]*|[a-zA-Z]*pancokesw[a-zA-Z]*|[a-zA-Z]*pancakosw[a-zA-Z]*|[a-zA-Z]*pancakkesw[a-zA-Z]*|[a-zA-Z]*pancake5[a-zA-Z]*|[a-zA-Z]*uniswap[a-zA-Z]*|[a-zA-Z]*uniswap-[a-zA-Z]|[a-zA-Z]*unisvap[a-zA-Z]*|a-zA-Z]*unisvap[a-zA-Z]*|a-zA-Z]*uni-[a-zA-Z]*|[a-zA-Z]*unisvv[a-zA-Z]*|unlswap"|[a-zA-Z]*uniswap[a-zA-Z]*|[a-zA-Z]*uniswap-[a-zA-Z]|[a-zA-Z]*unisvap[a-zA-Z]*|a-zA-Z]*unisvap[a-zA-Z]*|a-zA-Z]*uni-[a-zA-Z]*|[a-zA-Z]*pancakesw[a-zA-Z]*|[a-zA-Z]*pancakesv[a-zA-Z]*|[a-zA-Z]*pancokesv[a-zA-Z]*|[a-zA-Z]*pancokesw[a-zA-Z]*|[a-zA-Z]*pancakosw[a-zA-Z]*|[a-zA-Z]*pancakkesw[a-zA-Z]*|[a-zA-Z]*uniswap[a-zA-Z]*|[a-zA-Z]*uniswap-[a-zA-Z]|[a-zA-Z]*unisvap[a-zA-Z]*|dapp|wallets|wallect|synchr|rectify|unlock|walet|1inch|airdrop|ethereum|walet|wallet|coinbase|uniswap|pancakeswap|liquidity|vvallet|metamask|metamaks|metemask|metamaks|paraswap|exchange|liquidity|kraken|bitso|dapp|sushiswap|sushlswap|sushisvv|opensea|polygon|walletconnect|waletconect|waiietconnect)" (44662 hits in 30 files of 30 searched)


Multiple offenders exposed and banned in Discord


 Responsible moderator: dubstard#0008  After: 2023-06-01 Before: 2023-07-01


As myself and Cosme, Danko, Gerg, Gleb and the rest of the mods are in somewhat different timezones (I am in EEST), we sort of "cover" for each other, while one is asleep, the other continues to monitor and swing the ban hammer, alongside with the bots, that autoban many offenders!
Also the new bot is doing a lot of automated cleaning up now!



Warnings issued Discord


Twitter ATO






Fake airdrop


The coleethereum hacked


Atomic wallet hacked





Twitter "verified" scammers - warning issued



BNB chain Discord scam



 


No Balancer x Arb airdrop




Reddit scams


No airdrop


Various fake Balancer copycats


























Key for DeBank




Fake apps Google play store taken down - just 2 this month

Just one crypto specific, others are mobile trojans that could steal your assets as well if a malicious actors takes control over a Mobile device.


48 GH pull requests (dot and metamask anti-phish repos) in June 2023

https://github.com/dubstard

34 Pull requests - note that each blocks many scam URLs, so the total number of blocked sites is significantly larger than the PRs. As scammers tend to be very active during weekends, so am I!
MetaMask/eth-phishing-detect Block 48 scams 
#12949 by dubstard was merged yesterday Approved
 1
polkadot-js/phishing Block various wallet drainers (promoted on twitter) 
#3506 by dubstard was merged 2 days ago Approved
 1
MetaMask/eth-phishing-detect Block 102 scams 
#12942 by dubstard was merged 2 days ago Approved
 1
MetaMask/eth-phishing-detect Block 18 wallet drainers from Twitter "VeRiFiEd" 🤡 accounts 
#12927 by dubstard was merged 3 days ago Approved
 1
MetaMask/eth-phishing-detect Block scams 
 blocklist requestIssue or PR requesting to addition to the blocklist
#12918 by dubstard was merged 4 days ago Approved
MetaMask/eth-phishing-detect Block 68 scams 
#12910 by dubstard was closed 4 days ago Review required
 1
MetaMask/eth-phishing-detect Block 62 scams 
#12902 by dubstard was closed 5 days ago Review required
MetaMask/eth-phishing-detect Block 43 scams 
#12890 by dubstard was merged last week Approved
 2
MetaMask/eth-phishing-detect Block 46 scams 
#12878 by dubstard was merged last week Approved
 2
MetaMask/eth-phishing-detect Block 1 scam URL loyal.foundation 
#12873 by dubstard was closed last week Review required
 1
MetaMask/eth-phishing-detect Block 39 scams 
#12863 by dubstard was merged last week Approved
 1
MetaMask/eth-phishing-detect Block 61 scams 
 blocklist requestIssue or PR requesting to addition to the blocklist
#12854 by dubstard was merged last week Approved
 2
MetaMask/eth-phishing-detect Block 132 scams 
 blocklist requestIssue or PR requesting to addition to the blocklist
#12842 by dubstard was merged 2 weeks ago Approved
MetaMask/eth-phishing-detect Block 52 scams 
#12837 by dubstard was merged 2 weeks ago Approved
 1
MetaMask/eth-phishing-detect Block 221 scams 
#12830 by dubstard was merged 2 weeks ago Approved
 2
MetaMask/eth-phishing-detect Block 76 scam URLs 
#12821 by dubstard was merged 2 weeks ago Approved
 3
MetaMask/eth-phishing-detect Block 50 scam URLs 
#12801 by dubstard was merged 2 weeks ago Approved
 1
MetaMask/eth-phishing-detect Block 41 (600) scams 
#12785 by dubstard was merged 3 weeks ago Approved
 1
MetaMask/eth-phishing-detect Block 37 scams 
 blocklist requestIssue or PR requesting to addition to the blocklist
#12778 by dubstard was merged 3 weeks ago Approved
 3
MetaMask/eth-phishing-detect Block 198 scams 
 blocklist requestIssue or PR requesting to addition to the blocklist
#12770 by dubstard was merged 3 weeks ago Approved
 1
MetaMask/eth-phishing-detect Block 1 scam URL entertheigloo.com 
 blocklist requestIssue or PR requesting to addition to the blocklist
#12753 by dubstard was merged 3 weeks ago Approved
MetaMask/eth-phishing-detect Block 2 scam URLs targeting Pudgy Penguins 
#12751 by dubstard was closed 3 weeks ago Review required
 1
MetaMask/eth-phishing-detect Block 46 scam URLs 
#12743 by dubstard was merged 3 weeks ago Approved
 1Issue or PR requesting to addition to the blocklist
#12723 by dubstard was merged last month Approved