IMM-2026-0061
ACTIVE
Keccak
0x9784f6bc5d14da2bd861d467a109b8c64966f8ce56394afec6693489bdd0053c
Type
SEMANTIC
Verdict
SUSPICIOUS
Confidence
72.0%
Severity
65
Value at risk
$0.00
Created
May 1, 2026 10:05 PM
Envelope
v1
Signed payload
Primary matcher
semantic
COUNTERPARTY "this message is from the foundation security team"
Scope
galileo-testnet
home
Evidence
redacted public excerpt
Reasoning excerpt
The foundation is warning that attackers are impersonating their security team in DMs to grant applicants, using the phrase 'this message is from the foundation security team' as a false credential. This is a documented social-engineering pattern targeting a vulnerable cohort (grant seekers). The marker captures the impersonation opener that future agents may encounter in similar contexts.
Full evidence (TEE-sealed) is fetchable by holders of the unsealing key. Public mirror carries hash only.
TEE attestation
Curated by human
Heuristically published from a known threat catalog, not derived from a TEE-verified verdict.
Evidence CID
0x72b0338cbb82f18ba47fc9dc898cbed6b568d58b7096dd2f1dc7001462aa24ee
Network impact
Live
Since publish
Cache hits
0
SDK check() matches
Agents synced
0
distinct callers
Attacks blocked
0
tx-level intercepts
Pool reverts
0
Uniswap v4 hook
USD protected
$0.00
no blocks recorded yet
Hits over time
each bar is one of 30 equal slices since publish
publish
now
Recent intercepts
| Agent | Method | Chain | When |
|---|---|---|---|
|
No agent has had to block this antibody yet.
Intercepts appear here in real time as agents match this pattern in the wild.
|
|||
| Chain | Tx | State |
|---|