1/ Scammers are still active, abusing Moralis functionality to transfer NFTs & ETH from connected wallets
The site was only registered 4 days ago & is using (thought to be disbanded) InfinityBlack API infrastructure
2/ They're rotating new wallet addresses every couple days.
Today's already contains ~50k of fake mints of 0.33 eth from 4 victims & numerous NFTs some of which are for sale
https://t.co/spEmwnhsnQ
@PhantomMedalli1@ABTestingAlpha Iβd say theyβre more proactive than post but Education is the strongest form of defence. Orgs spend 6 figs on defence to get pwned by a fleshware error
@PhantomMedalli1@ABTestingAlpha Use of EDR/MDR is essential to tracking spawned parent/child process trees, threat intelligence of any inbound IPs, web filtering or Intrusion Detection
Need to investigate a Phishing link full of redirects & obfuscation?
The unfurl tool by @_RyanBenson is great for expanding & graphing links to provide a true visualisation of the URI
https://t.co/TY2T12bVSM
#dfir#infosec
@malmoeb https://t.co/dzUGark42q has been quite useful in the past & has great filtering capabilities. I seem to remember they offer trial accounts too