🔍Evidence #12

Coincidence? I think not.

When I created the fake bad media article, which was ultimately visited by some of the Telegram admins and collected their data, one of the IP addresses turned out to be a Squid Cache proxy set up on a Digital Ocean droplet. The version of Squid Cache is 4.14, indicating that it was set up between February 8th and 10th May 2021, coinciding with the dates of the early projects the scammers launched.

Additionally, legitimate projects with real founders and teams behind them won't usually require a proxy server. The only purpose of such a server is to conceal the real IP of its users.

PreviousEvidence #11 NextIP Addresses

Last updated 2 years ago