Officer’s Notes (officercia)

Officer’s Notes

Threat Researcher & Author

1640 Followers

Recent casts

Many people ask me how to learn to conduct on-chain investigations. Indeed, often knowing the tools alone isn’t enough. You also need to know certain techniques and methods. And you can read about them completely free of charge on the FBI’s website. Let’s take this case as an example. Unraveling the "Razzlekhan" Labyrinth (The Bitfinex Hack)The Case: The laundering of 119,754 stolen Bitcoin from the 2016 Bitfinex exchange hack. Written by a Special Agent, this document exposes the bizarre dual life of Ilya Lichtenstein and Heather Morgan. It details how they used automated transaction scripts and darknet markets to "chain hop" tokens, contrasted against the traditional search warrant that found private keys hidden in their cloud storage. https://www.justice.gov/archives/opa/press-release/file/1470211/dl P.S. For those who want to learn about the tools as well, below I’ll list a few of my favorite tools for on-chain investigations.

  • 4 replies
  • 1 recast
  • 7 reactions

Gas Optimization & Auditing Tips https://r.xyz/blog/gas-optimization-auditing-tips

  • 0 replies
  • 0 recasts
  • 1 reaction

Just won 200 tickets at @megapot ! Wish me luck for tomorrow fam! • https://x.com/officer_secret/status/2069106769385640151?s=46 P.S. Here is my ref link: https://megapot.io/r/7HD7EW

  • 0 replies
  • 1 recast
  • 0 reactions

Top casts

GM folks, please please please never ever download any PDF or install any software during a call with VC. Two CEO’s of a Defi Protocols got hacked in this way, lucky they engaged with me and rata0x and we managed to recover nearly 1m$ stolen assets. However, if they wouldn’t install the app during the meeting, they wouldn’t lose over 5m$… Since I stated to assist and engage with more hacking and stolen assets, I will share my first hand experience for better on-chain security of you. Rata0x and I are here to help.. Our mission has recovered over $100M so far.

  • 6 replies
  • 9 recasts
  • 36 reactions

A victim lost $510,294 due to copying the wrong address from transaction history! Victim: 0x0d534863a71d5e68d5c919a4c2ef47c3a7a792c0 Fake address: 0x4049Ebf479Fa49924e120490d119f0827cAa9aeC Legitimate address: 0x40491fe2bA81621475c894Ebe8bcad56C7da9aec How transaction history poisoning works: 1. Scammer sends fake/dust transfer with similar address; 2. Their fake address appears in your history; 3. You copy address from history thinking it's legitimate; 4. Funds get sent to scammer instead. How to stay protected: 1. Always double-check the addresses you're sending funds to; 2. Never copy addresses from transaction histories; 3. Use a wallet that supports whitelisting or bookmarks. My article on topic: https://officercia.mirror.xyz/n-sXszeDoNU3wtUUxRQEYvxQlZ6loaFElILzm2gnMzw

  • 10 replies
  • 11 recasts
  • 45 reactions

Urgent! Just by receiving an image in your iPhone or Mac, your device can be FULLY compromised. Update your devices ASAP! Also recommended: • Disable auto download of images in Telegram; • Disable the auto download of images in WhatsApp; • Disable iMessage for complete or, if you wanna keep it, enable Lockdown mode.

  • 3 replies
  • 9 recasts
  • 30 reactions

Save this post if you've been scammed or hacked!!! First things first, you should contact: t.me/seal_911_bot, or t.me/rata0x • Next, for recovering the rest (untouched assets) please use: hackedwalletrecovery.com made by @buidlguidl @austingriffith ; • Or this tool: https://app.buidlguidl.com/build/yIj6q9TZnzAUMR6B4eFX • For recovering unclaimed tokens from airdrops: https://serveth.notion.site/How-to-securely-transfer-unclaimed-tokens-from-a-compromised-wallet-7c5f5e3762474851b92c159f797e406e ; • Order an investigation (optionally): t.me/rata0x • You should also report your case to chainabuse.com ! Please RT! Stay safe!

  • 1 reply
  • 6 recasts
  • 21 reactions

Onchain profile

Ethereum addresses