phishing icon indicating copy to clipboard operation
phishing copied to clipboard
verified publisher icon mitchellkrogza

Phishing | t.me

Open spirillen opened this issue 11 months ago ā€¢ 18 comments

What are the subjects of the phishing (domains, URLs or IPs)?

  • example.com
  • sub.example.com
  • https://example.com/page
  • https://sub.example.com/page
  • NSFW example.com
  • 192.168.0.0/16 t.me web.telegram.org

What are the impersonated domains?

t.me (self)

Where or how did you discover this phishing?

I discovered this phishing by... I was targeted by this phishing by... Matrix.org client

Do you have a screenshot?

Screenshot
![image](https://github.com/user-attachments/assets/fb4a8782-b3b4-4641-8159-68cb50772b32)

Related external source

  • https://sub.example.co.uk/page
{
  "content": {
    "body": "Methods ! Walkthroughs ! & Proof ! I got it . \n\nšŸ’²šŸ’²šŸ’²šŸ’²šŸ’²šŸ’²šŸ’²šŸ’²šŸ’²šŸ’²šŸ’²šŸ’²šŸ’²šŸ’²šŸ’²šŸ’²\n\nCashapp \nChime \nApple Pay \nCpns \nDave method \nCoinbase loading \nAirb&b \nVerizon \niPhone 15 method \nApple product method \nVermont Rent relief \nSba method \nCarding \ncc sites \nGas station Sauce ( free gas ) \nBank drops \nWells Fargo Loan sauce\nShein method \nTruist\n\nhttps://t.me/+fk5a2eNOe9BhY2I8\n\nhttps://t.me/+fk5a2eNOe9BhY2I8\nšŸŽ–ļøšŸŽ–ļøšŸŽ–ļøšŸ…šŸ…šŸ…šŸŽ–ļøšŸŽ–ļøšŸŽ–ļøšŸ…šŸ…",
    "msgtype": "m.text"
  },
  "origin_server_ts": 1735538891056,
  "sender": "@_oftc_jayhay[m]:matrix.org",
  "type": "m.room.message",
  "unsigned": {
    "membership": "join",
    "age": 92257377
  },
  "event_id": "$JwmMvzsppX3_oe0xbTEwnXZT0ScLFj3ZIYo3qCEUiPY",
  "room_id": "!RGSWbwoTxVJsRsIZCR:matrix.org"
}

Additional Information or Context

I have also noticed that...

spirillen avatar Dec 31 '24 07:12 spirillen