Hunting Cryptoscam Twitter Bots: Methods, Data & Insights

Presented at BSidesLV 2023, Aug. 9, 2023, 3 p.m. (Unknown duration).

"Having issues with your crypto wallet? send a DM! contact us at legit-wallet-supp0rt@gmail.com!" This is the kind of message anyone mentioning specific crypto-brands in a tweet is receiving. Our talk will deep dive into the bots spreading these fraudulent tweets and its operators. We will use a dataset collected over several months to educate about what triggers bots and deduce about the infrastructure behind it. We will also demonstrate how this data can be used effectively to not only hunt bots at scale but also detect unknown trigger-words and monitor fraud trends (guess for example what happened after certain exchanges collapsed?). As a bonus, we will share our multiple correspondences with fraudsters, pretending to be "innocent victims" and how we leveraged social engineering to track them down.

Presenters:

  • Gal Bitensky
    Gal is an experienced researcher from sunny Tel-­Aviv. He is a "full stack researcher, poking anything from x86 malware binaries, ICS protocols to classic web security. He likes to share his thoughts and experiments on-stage using simple concepts and tools to demonstrate surprising results. Some of his previous work contains an evasion technique for sandboxes, a proof-of-concept malware built purely in copy-paste, and a free update-able vaccination framework.

Links:

Similar Presentations: