xnomas

@[email protected]
41 Followers
33 Following
62 Posts

Czech penetration tester and infosec writer on medium.

Medium: https://medium.com/@xnomas
Twitter: https://twitter.com/xn0mas

Show threadxnomasDec 3, 2022
Pics that could not fit in the first post/toot.
xnomasDec 3, 2022

After being inactive for a while, I'm back with another #scam site on #youtube.

This time the target is #MrBeast on the site https[:]//beast-got[.]com/. The actors are using #YouTubeAds to target his #fans, as can be seen in the first pic.

If people visit the site, they are greeted with #FakeContent that is used to make them think the site is legit. One of these things are the fake comments. Pics two to four.

If the user clicks on the "claim reward" button, they are redirected to the following site:
https[:]//enterntainzer[.]com

Which asks for an #email and #password. Probably hoping that you reuse passwords. See first pic in reply thread.

After filling in the information, you are redirected again to:
https[:]//cssdui[.]com

Which asks for your personal and #CreditCard information. See second pic in the reply.

I submitted fake information and got a payment error... funny.. because in the third pic of the reply the site claims to want 0.00 pounds.

Be #aware of #ScamSites and please #Report the ad on #YouTube! I'm sure that more will come. Here is the youtube link:
https[:]//www.youtube[.]com/watch?v=1EbkMYb2WN0

xnomasNov 19, 2022

Sooo, something fun I noticed on the #birdapp. #Bots are now responding to Elon's tweets with a crypto #scam site (1st pic):
hXXps://elonmusk-giveaway[.]net

Obviously, a #crypto scam...

The sites then relating to #ethereum, #bitcoin and #dogecoin are classic pay me X and I pay you back Y scams (2nd pic).

Also fyi, for my #BugBounty peeps, I expect a full critical bug bounty for the #XSS that is in the fake chat (3rd pic):
<img src=x onerror=alert(1)>

And others for sure... do with that what you will.

Last but not least, here are the relevant etherscan, blockchain explorer and dogeblocks links for the addresses of the scammers:

ETH: https://etherscan.io/address/0xb07f65303C1ab4C59274DEC0f275c2a26061cFe1
BTC: https://www.blockchain.com/btc/address/1MuskAFAczFFXMdsCHedG8GeKStfLyqG98
DOGE: https://dogeblocks.com/address/D76LEN3mmU46gU7fHfwjrTaQzZVRhq8sBu

Also #OSINT peeps? This might be fun for you to mess around with *wink wink*

Address 0xb07f65303C1ab4C59274DEC0f275c2a26061cFe1 | Etherscan

The Address 0xb07f65303C1ab4C59274DEC0f275c2a26061cFe1 page allows users to view transactions, balances, token holdings and transfers of ERC-20, ERC-721 and ERC-1155 (NFT) tokens, and analytics.

Ethereum (ETH) Blockchain Explorer