2 months ago
In response ZachXBT to his Publication
2/ On July 2nd Sydney Sweeney was SIM swapped and a link to a meme coin was posted causing the price to spike and crash.
Team wallets from the SWEENEY scam sold $515K +
Main team wallets
AgySZeAtqM3iSbvMPxv2g94oTd3segx4WdKuFD7M5CEr
jQEaiiAkRGhFoCDnjxn6mmtrksC4EckF38fxkaNMs1j
Team wallets from the SWEENEY scam sold $515K +
Main team wallets
AgySZeAtqM3iSbvMPxv2g94oTd3segx4WdKuFD7M5CEr
jQEaiiAkRGhFoCDnjxn6mmtrksC4EckF38fxkaNMs1j
2 months ago
In response ZachXBT to his Publication
3/ After cashing out the hacker began trolling on social media.
They tried taking credit for other recent incidents such as Hulk Hogan and 50 Cent though there is little evidence to show they were also responsible for these.
They tried taking credit for other recent incidents such as Hulk Hogan and 50 Cent though there is little evidence to show they were also responsible for these.
2 months ago
In response ZachXBT to his Publication
4/ Using a timing analysis we can see the proceeds from the scam were sent to an exchange on Solana before being swapped to Bitcoin and Ethereum.
Destination address
0x0350730e4907cd69d1f3cf89f42a58091e397b11
bc1qs2lg3m278cuem2kz6shx6vn9xxzvf8lrd67dp5
bc1qvpjvdjvl98z2uz5dxhv3s32f3eenvjwzdtmlf8
The funds were split on-chain so we can infer there were multiple people involved.
Destination address
0x0350730e4907cd69d1f3cf89f42a58091e397b11
bc1qs2lg3m278cuem2kz6shx6vn9xxzvf8lrd67dp5
bc1qvpjvdjvl98z2uz5dxhv3s32f3eenvjwzdtmlf8
The funds were split on-chain so we can infer there were multiple people involved.
2 months ago
In response ZachXBT to his Publication
5/ After the incident screenshots of Gurv receiving codes to login to Sydney Sweeney’s account from the SIM swap on Telegram appeared online.
Attached is a receipt from Verizon for the Sydney Sweeney SIM Swap.
Attached is a receipt from Verizon for the Sydney Sweeney SIM Swap.
2 months ago
In response ZachXBT to his Publication
6/ Gurv is a convicted hacker having shortly served time in the UK for hacking into Instagram accounts and blackmailing the users.
At the time Gurv told law enforcement “it’s not even a crime”
At the time Gurv told law enforcement “it’s not even a crime”
2 months ago
In response ZachXBT to his Publication
7/ Additional comfort is gained Gurv is the same person in the screenshots as in multiple Telegram groups he was seen responding to messages with the same Telegram user ID and talking about his time in prison.
8/ Using the Ethereum address connected to the Sydney Sweeney SIM swap on July 9th 1.5 ETH was sent to an exchange and received on Solana.
Using this we can find another attack done by Gurv or his partner.
Source txn
0xec0c75bc72bec3804c056e56da52ce8b1e43e2f9e326debaf979a6c61cfab41f
Destination txn
i1kC4YgDTwfg7zvt5krxbarxdDeVSbk3t7o3jYEDMyBiWhWFEFVjMbD8qtMUQYnvzP1ybJ7ZA4SqZFivAfcUhoK
Using this we can find another attack done by Gurv or his partner.
Source txn
0xec0c75bc72bec3804c056e56da52ce8b1e43e2f9e326debaf979a6c61cfab41f
Destination txn
i1kC4YgDTwfg7zvt5krxbarxdDeVSbk3t7o3jYEDMyBiWhWFEFVjMbD8qtMUQYnvzP1ybJ7ZA4SqZFivAfcUhoK
2 months ago
In response ZachXBT to his Publication
2 months ago
In response ZachXBT to his Publication
9/ On July 9th Bob Odenkirk (Breaking Bad / Better Call Saul actor) was hacked on X and a link to a meme coin was posted just like for Sydney Sweeney.
Only this time they messed up and launched two coins (KIRK & SAUL) resulting in only a small amount profited.
Proceeds were sent to the same Ethereum address which funded the Solana address.
Only this time they messed up and launched two coins (KIRK & SAUL) resulting in only a small amount profited.
Proceeds were sent to the same Ethereum address which funded the Solana address.
2 months ago
In response ZachXBT to his Publication
10/ Hopefully UK law enforcement will be quick to go after Gurv again using the large amount of evidence available.
Some of the funds have been transferred to crypto casinos and to purchase gift cards.
Currently wallets connected to the hacks hold $488K
Funds sit
0x461f8929fc2b039f2917b7556894f21a51b4138a
bc1qs2lg3m278cuem2kz6shx6vn9xxzvf8lrd67dp5
bc1qvpjvdjvl98z2uz5dxhv3s32f3eenvjwzdtmlf8
0x2655770dc11073d8ce90725655862a13c73999fd
0x71d06fa03134fe5fd4b235f448e490e521f00845
Some of the funds have been transferred to crypto casinos and to purchase gift cards.
Currently wallets connected to the hacks hold $488K
Funds sit
0x461f8929fc2b039f2917b7556894f21a51b4138a
bc1qs2lg3m278cuem2kz6shx6vn9xxzvf8lrd67dp5
bc1qvpjvdjvl98z2uz5dxhv3s32f3eenvjwzdtmlf8
0x2655770dc11073d8ce90725655862a13c73999fd
0x71d06fa03134fe5fd4b235f448e490e521f00845
