Scam on Pi Network platform - I will not judge the project here, but rather the execution of the scam.

A scammer is deceiving holders through Facebook ads, offering free tokens. However, the link actually contains malicious code that tricks users into granting permission for the scammer's bot to automatically transfer the tokens to its wallet GB4HXMTILECLEDTM4XQ5S7JNMPJMK4AD3Q2NO6IZEB5BSKIR6LEYVGXH.

After a report from a community member on Reddit, a brief trace using the block explorer reveals the movement between a series of addresses (GCQ5T...22QF2 ➡️ GDI7W...XMDU ➡️ MDFNW...AS5RM), which ultimately is a sub-address of GDFNW...WJ75, the address of Bitget Exchange.

The scammer is transferring the tokens to another blockchain through the centralized platform or simply converting the Pi token into stablecoin or FIAT and withdrawing.

At this point, the exchange is extremely important in being alerted with details to prevent the withdrawal or identify the user through KYC.

If you have any questions or want to learn more about on-chain investigation, contact us.