11364
• Articles: @officercia • Blog: officercia.mirror.xyz • X: x.com/officer_cia
Dear followers, my biggest and most in-depth interview is out now!
I did my best to answer every and each question as thoroughly as possible. Inside, you’ll find facts I’ve never shared before.
You’ll learn more about me, my personal story, my family’s history, and a ton of OpSec tips!
Enjoy!
I’m excited to share that @rata0x and I have been collaborating on the Coinbase data leak for the past few months, assisting U.S. Law Enforcement. Today, we informed the affected victims who worked with us that Coinbase will be compensating them.
If you were impacted, please reach out to us—we’ll help you submit your case to coinbase for full recovery. Huge thanks to Coinbase for taking steps to make their customers whole!
• https://x.com/officer_cia/status/1923065371315011688?s=46
#security
Be cautious of scam Zoom links: https://x.com/officer_cia/status/1922250897620418562?s=463
#security #opsec
Looks like MBU got hacked for 2 million 👀
h/t @defimon_alerts
Victim: 0xb5252fcef718f8629f81f1dfcff869594ad478c6
Network: bsc
Attacker: 0xb32a53af96f7735d47f4b76c525bd5eb02b42600
Exploit: 0x631adff068d484ce531fb519cda4042805521641
Balance Change: $2,156,143.19
• https://x.com/officer_cia/status/1921471206127018422?s=46
#alert #security
Twitter of CurveFinance seens to be hacked - be careful!
• https://x.com/officer_cia/status/1919448628155883559?s=46
#alert #security
Heads up new RCE for Apple 👀
• https://x.com/officer_cia/status/1917709411453227163?s=46
#security #privacy
Grafana compromised!
• https://x.com/officer_cia/status/1916478375327150104?s=46
#security #web2 #alert
LegalBlock’s Dr. Rasit Tavus warns crypto market makers could face charges as some liquidity tactics blur into price manipulation amid sharp token declines. - DL News
🏷️ Market, Manipulation
Another day, another exploit…
Today - on BNB. 60k USD already drained: https://x.com/officer_cia/status/1915140574019043439?s=46
#security #alert
Stolen money is being bridged to Ethereum, here's an example address:
0x00AeB2fAc3dBB8C3A300e65B272C9b2d7CE26D3B
I cannot personally confirm this vulnerability. Most likely it requires XSS on the telegram side as well... Anyway - opening links and doing it in the built-in browser is a bad idea anyway.
• https://x.com/officer_cia/status/1914672569711579305?s=46
#security #opsec
Dear friends, I need your support! The best thing is to support me directly by donating to any address from the list below:0x1191b7d163bde5f51d4d2c1ac969d514fb4f4c62
- Ethereum, all EVM chains17Ydx9m7vrhnx4XjZPuGPMqrhw3sDviNTU - BitcoinTYWJoRenGB9JFD2QsdPSdrJtaT6CDoFQBN - TronBLyXANAw7ciS2Abd8SsN1Rc8J4QZZiJdBzkoyqEuvPAB - Solana
Thank you!
By the way. I have launched a partnership with a service of crypto exchange to cash (and vice versa) - we work all over the world.
So if you need such services - I will be very glad! Proof: t.me/officer_cia/2873 just contact @Mr_Hermes1 and let me know if any issues. Been working with them for years.
#offtopic
Update your Apple devices!
Information by @AppleActivelyExploited : https://x.com/officer_cia/status/1912572867797246188?1
#security #opsec
Attention affected by pig butchering or romance scams!
@rata0x and I can help you. In most cases, the money is still on-chain and can be seized at exchanges.
If you or someone you know has been impacted, please reach out to us. We're here to help! 💪
P.S. If you have been a victim of drainer or phishing - write to us too. We'll do our best to help
• https://x.com/officer_cia/status/1912519176888992236
#security #investigation
Web3 resident threat researcher and OpSec maxi OfficerCIA has helped shape how this space thinks about OpSec.
In an exclusive interview with DL Research, he shares lessons from a life in cybersecurity and the ethics, dangers, and disciplines involved.
Coinbase:
Cyber criminals bribed and recruited a group of rogue overseas support agents to steal Coinbase customer data to facilitate social engineering attacks. These insiders abused their access to customer support systems to steal the account data for a small subset of customers. We will reimburse customers who were tricked into sending funds to the attacker.
We’re cooperating closely with law enforcement to pursue the harshest penalties possible and will not pay the $20 million ransom demand we received. Instead we are establishing a $20 million reward fund for information leading to the arrest and conviction of the criminals responsible for this attack.
Turning 27 today… 🎈🎉🎂
For those who want to send me a cake: t.me/officer_cia/3069
We are not living in the most calm era... But how do you know exactly where it is "hot" right now?
We can estimate where military activity is now taking place thanks to this service which provides daily maps of GPS interference (jamming & spoofing).
Please use this service responsibly and for civilian purposes only. And stay safe! Link below ⬇️
• https://x.com/officer_cia/status/1919864309112569883?3
#offtopic
Save this post if you've been scammed or hacked: https://x.com/officer_cia/status/1918093055443206334?s=46
#security #opsec
GM! If you need to:
1️⃣Resolve unauthorized fund blocking on exchanges.
2️⃣ Recover stolen funds by blocking them on exchanges ASAP.
3️⃣ Get legal assistance or advice for you or your project.
Reach out to @rata0x!
I vouch for him personally—I've worked with him for years and trust his expertise! 🙌
Impermax V3 code been hacked!
Basically, when you deleverage, the lenders funds are getting stolen…
• If your lending => Withdraw
• If your borrowing => Don't withdraw
Link: https://x.com/officer_cia/status/1916140714657820898
#security #alert
$128k in ZORA had been stolen so far: https://x.com/officer_cia/status/1915415136187121811?14
#security #alert
"Where is the line between market making and market manipulation?"
'Crime szn' no more; the Department of Justice is circling.
Dr. Rasit Tavus, founder of LegalBlock, explains how certain trading tactics could lead to criminal charges.
1.3m usd exploit on arbitrum 👀
• https://x.com/officer_cia/status/1914690926695362685?1
#security #alert
It looks like NumaMoney on the arbitrum chain on Apr-18-2025 09:10:28 PM +UTC got hacked for around $530K.
The attacker swapped all assets to ETH, bridged to ETH and deposited the funds to Tornado Cash ⬇️
• https://x.com/officer_cia/status/1913979776953356722
#security #alert
Update:
Hacker zkLend or Phishing Tornado scammer exchanged all his ETH, which were on his 5 addresses, for Token Pepe (PEPE). Now, on these addresses belonging to him, there is a total of about 660,569,826,987 PEPE.
If this total amount of PEPE was located on one address (instead of 5 addresses), then this hacker/scammer could have received Rank 77 among PEPE token holders.
• https://x.com/officer_cia/status/1913261846854865035?s=46
#security #investigation
https://officercia.mirror.xyz/Q00JH0s86d4KMS43cyqNxbl3VIM2s30qtwYfdSTXywE
Читать полностью…
Someone mined a 16 characters vanity address…
(Etherscan currently shows 17 characters as address preview)…
Such addresses are often used in two types of attacks. The first is address poisoning. The second is a clipper.
My thread: https://x.com/officer_cia/status/1912531979368640673?s=46
#security
Three Good Multisig Operations Tips: https://x.com/officer_cia/status/1912445368236654996?s=46
#security #privacy #opsec