My original post is below:
On July 11th, @fsyourmoms wrote a Steemit post titled, TheShadowBrokers are NOT Making America Great again!!!.
The poster claims to be one of TheShadowBroker's "Monthly Dump Service" customers. The post begins:
TheShadowBrokers ripped me off. I paid 500 XMR for their “Wine of the Month Club” and only they sent me a single tool that already requires me to have a box exploited. A tool, not even an exploit! The tool also looks to be old, and not close to what theShadowBrokers said could be in their subscription service.
The rest of the post is an interesting tirade against TheShadowBrokers.
I will provide one piece of evidence that everyone else appears to have missed.
Is @fsyourmoms really one of TheShadowBrokers' customers?
About a week ago, I made a post describing how I was able to scrape all e-mail addresses from the Monero blockchain. By doing this, I was able to come up with a list of e-mail addresses belonging to @TheShadowBrokers' possible Monero customers.
One of the e-mail addresses I found was fucksyourmoms@**********.com. This is very similar to @fsyourmoms username.
Here's the Monero transaction. You can convert the payment ID from hex to ASCII here.
This lends some credence to the post, but doesn't definitively prove its legitimacy.
If it is a hoax, it's likely someone who read my previous post (or did the analysis themselves), took the time to look at the raw data included in that post and saw the fucksyourmoms e-mail address and decided to use the alias.
If it's not a hoax and @fsyourmoms wants to improve their credibility, they could prove they're legit in the following ways:
1.) Using the e-mail address from the tx linked above. (Proves identity but doesn't actually prove payment was sent.)
2.) Post the secret tx key from their Monero payment to TSB. (Proves identity AND that payment was sent.)
Assuming they didn't use a web wallet, I think it should be possible for @fsyourmoms to prove that the payment was sent to TSB using the tx private key. Here's an example of what it looks like in the Monero GUI wallet:
(Personally, I think they should just be glad they didn't get sent something boring like "compromised network data from more SWIFT providers and Central banks" or "compromised network data from Russian, Chinese, Iranian, or North Korean nukes and missile programs".)
- a few minor typos and clarified some stuff.
- someone on twitter pointed out that I mistakenly linked to a TSB post instead of fsyourmoms' post. I fixed it. Sorry if this confused anyone.
contact: firstname.lastname@example.org PGP key
Fingerprint: A23F ADBB B60C D762 0F29 68AE 9454 08E6 671A 94DD
Follow me on twitter. Not very active there but will tweet any new posts.