Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Sybil Attacker Report #535

Open
defienjoyer opened this issue May 21, 2022 · 2 comments
Open

Sybil Attacker Report #535

defienjoyer opened this issue May 21, 2022 · 2 comments
Labels
Needs More Information

Comments

@defienjoyer
Copy link

Addresses hash
0x07f122d6af885c8190d59521f07b7c6a55148f5e 0x4bb8c2bf0e642211af39e635b11c051b40aa47f196f25f15f7588f4420a59d20
0x113825b2be10e5df60c062ecd06fc5808b3117b3 0x4bb8c2bf0e642211af39e635b11c051b40aa47f196f25f15f7588f4420a59d20
0x218d5638bf697e22ebb3cd4b6fbf73dcd1a8f035 0x4bb8c2bf0e642211af39e635b11c051b40aa47f196f25f15f7588f4420a59d20
0x24de90e08999faed07011a574104fe57f3465f96 0x4bb8c2bf0e642211af39e635b11c051b40aa47f196f25f15f7588f4420a59d20
0x31a4d960795e0dd7ba595f3a7c8d4075791319f7 0x4bb8c2bf0e642211af39e635b11c051b40aa47f196f25f15f7588f4420a59d20
0x3c8319dd83fa18ec1a0df2acf65277a731514d67 0x4bb8c2bf0e642211af39e635b11c051b40aa47f196f25f15f7588f4420a59d20
0x45b12eb5d24f2c86194063643a0a465164ec8f2b 0x4bb8c2bf0e642211af39e635b11c051b40aa47f196f25f15f7588f4420a59d20
0x882db77070905c3e67a7ba3f3335ef850bfe228e 0x4bb8c2bf0e642211af39e635b11c051b40aa47f196f25f15f7588f4420a59d20
0x9cdbddf646a86ec987394c807defed498dbc7df4 0x4bb8c2bf0e642211af39e635b11c051b40aa47f196f25f15f7588f4420a59d20
0xd307a5d5a42230d3fafdfb56c329434664a160ad 0x4bb8c2bf0e642211af39e635b11c051b40aa47f196f25f15f7588f4420a59d20
0xd9524b4ef7fa85b09aa12463221750da2adc76b8 0x4bb8c2bf0e642211af39e635b11c051b40aa47f196f25f15f7588f4420a59d20
0xde107b82e3e47ed281d276644b8115548c085c24 0x4bb8c2bf0e642211af39e635b11c051b40aa47f196f25f15f7588f4420a59d20
0xe3d16e94b76bdfb8e6fa0e9e579601de710f13ae 0x4bb8c2bf0e642211af39e635b11c051b40aa47f196f25f15f7588f4420a59d20
0xe6c207cdf316233fa9aa4b79dd98e07f1a256f7e 0x4bb8c2bf0e642211af39e635b11c051b40aa47f196f25f15f7588f4420a59d20
0xeb3c8443183da126d51f39b2e393ceebcf93c3a9 0x4bb8c2bf0e642211af39e635b11c051b40aa47f196f25f15f7588f4420a59d20
0xf95d8a9cf9ed7a651e35405736cb5bbbc2048cf6 0x4bb8c2bf0e642211af39e635b11c051b40aa47f196f25f15f7588f4420a59d20

Reasoning

All of the addresses are related via one transaction hash which is a disperse.app transaction.

Methodology

I created a script to find disperse contracts alongside eligible addresses.

Rewards Address

0xCBd39631F4fb359cA966424B622aee0A5c1DaAa1
@defienjoyer
Copy link
Author

I realise that this does not mean they are sybiling so I have come to fix it.

  1. 0x113825b2be10e5df60c062ecd06fc5808b3117b3 - Interacts with zksync + arbitrum + hop and hasn't been used in 36 days.
  2. 0x24de90e08999faed07011a574104fe57f3465f96
  3. 0xe6c207cdf316233fa9aa4b79dd98e07f1a256f7e
  4. 0xe3d16e94b76bdfb8e6fa0e9e579601de710f13ae
  5. 0x882db77070905c3e67a7ba3f3335ef850bfe228e
  6. 0x45b12eb5d24f2c86194063643a0a465164ec8f2b
    These five interact with lazy lions token and aidrops and are not frequently used.

@shanefontaine
Copy link
Member

shanefontaine commented May 22, 2022
edited
Loading

@defienjoyer We have observed cases of apps sending funds through Disperse to help their users pay for gas on L2s. We have also seen altruistic people and faucets do the same. Because of this, we will need additional evidence. Some potential compelling evidence may be:

  • Identical transactions on the exact same day/time by most or all of the addresses
  • A trace of the ERC20 token between addresses (as opposed to native tokens)
  • A similar time/date that all the addresses started transacting on a chain

Please note that there will need to be much more data provided for this submission. Per the rules, the data will also have to be easily verifiable. The additional data you provided does not show how the all the addresses are related to each other, which is another rule. The data in that comment is not extremely conclusive.

Please let us know if you can provide this data. Thank you for your work.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Needs More Information
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@shanefontaine @defienjoyer