Just another scammer found while doing some #OSINT on the #DarkWeb... Site claims that they are "untraceable", but they are using BTC which has a public ledger...
http://mixerqpxchohuxlf[.]onion asks for a bitcoin address in order to do the "tumbling" (they're just going to be taking your crypto)
To get past this part we can pull a random bitcoin address to verify and make it to the next step.
This loads a screen with one of their wallets. So much for "untraceable".... when they use bitcoin which has a public ledger anyone can view... It is no large feat to trace the transactions when they occur.
You can simply refresh the page and it generates a new address. All an investigator would have to do is refresh until they stop generating new wallet ids and then go watch all of these wallets for transactions. At that point you just hang tight till they try and cash out.
You can simply refresh the page and it generates a new address. All an investigator would have to do is refresh until they stop generating new wallet ids and then go watch all of these wallets for transactions. At that point you just hang tight till they try and cash out.
You can simply refresh the page and it generates a new address. All an investigator would have to do is refresh until they stop generating new wallet ids and then go watch all of these wallets for transactions. At that point you just hang tight till they try and cash out.
You can simply refresh the page and it generates a new address. All an investigator would have to do is refresh until they stop generating new wallet ids and then go watch all of these wallets for transactions. At that point you just hang tight till they try and cash out.
The only way I could see around this is to have one-time use wallets being generated for each transaction. This does not appear to be the case as our folks don't seem to be as savvy.
I went through a handful, none of which had any transactions (no surprise, its a terrible looking website and if anyone falls for it they likely quickly change the wallet addresses to make it more difficult to trace)
Some platforms let you "watch" a wallet for transactions, making it possible to get an alert when there is any activity.
To add insult here, the website owner also decided to throw in a javascript button for bookmarking. This user clearly doesn't understand that users concerned about their safety and OPSEC will not have JS turned on. They're pandering to the naive.
You can follow @sinwindie.
Tip: mention @twtextapp on a Twitter thread with the keyword “unroll” to get a link to it.

Latest Threads Unrolled:
There are a lot of misconceptions about the Turkish diaspora in Germany. Since i just finished writing an essay about this topic I thought it's time to give other people
Read more
Las mejores calculadoras online en 2020A thread http://totumat.com/2020/11/26/las-mejores-calculadoras-online-en-2020/ Cuando se estudian asignaturas que requieren de cálculos complicados, nada mejor que contar con una buena calculadora.
Read more
Mitigating #ClimateChange is as much about taking up new techs as about leaving others behindMost studies focus on #coal's global downfall but another #energy tech decline is loomingRead my new
Read more