I'm still going through it, and saw this
As part of the FBIs efforts to combat ransomware attacks against victims in the
United States, including the Eastern District of Pennsylvania (EDPA), the FBI became aware of
a cryptocurrency mixing service known as ChipMixer, operating through the following clearnet
domains and Tor sites:
a. clearnet: chipmixer.com
b. Tor: chipmixorflykuxu56uxy7gf5o6ggig7xru7dnihc4fm4cxqsc63e6id.onion
c. clearnet: chipmixer.io
Case 2:23-mj-00528 Document 1 Filed 03/14/23 Page 12 of 60
12
d. Tor: chipmixerwzxtzbw.onion
e. clearnet: chipmixer.club
f. Tor: qw6xpezaqb57xsviksbsbjlrftevt52s7baaxiubwb6mkpwkqcfdppqd.onion
The second domain is still up and doing a redirect, not seized at all, they were known scams, how did they reach the conclusion they were the same?
Records from Google for the account
jamessmithhelp@gmail.com revealed location history data. From September 2016 through March 2022, there were
149,027 data points associated to the account that resolved in and around Ha Noi, Vietnam.
Damn, just makes you wodner how much data they collect!