Restoring Justice for Affected Linea Users After the AdsPower Hack: A Solution for Fair Airdrop Access

How to restore justice for the affected Linea users after the AdsPower hack?

Recently, many users faced a serious issue: their wallets were blocklisted by Linea after the AdsPowerBrowser hack. This decision deprives them of their well-deserved rewards, even though they had previously successfully passed the Proof of Humanity (PoH) verification and a detailed sybil activity analysis conducted by Nansen.

The inclusion of these wallets in the blocklist, as I assume, may be due to concerns that malicious actors gained access to them and could steal future tokens. However, the Linea team has not provided clear explanations on this matter, aside from a few official messages in Discord (see below), which convey a different message. They claim that the addresses compromised through the AdsPower hack were blocked due to sybil activity. This statement is unfair and inaccurate.

The statement that these addresses were added to the blocklist due to their connection with a large number of compromised accounts creates the impression that the team does not draw a clear distinction between sybil activity and the consequences of compromise. This leads to legitimate users being under suspicion and being perceived as fraudsters.

It is clear that during the hack on January 24-25, the hacker linked all the affected wallets with their own, creating an artificial interwoven network of addresses. These connections were not made by the users’ will, but were a result of the compromise of their wallets by the malicious actor.

The hacker’s address database and the list of addresses compromised on January 24-25 are available for viewing at the Dune link. After reviewing the appeals, an additional 13,586 addresses were added to the blocklist, which roughly corresponds to the number of addresses affected by the hacker attack on the Linea network. This suggests that addresses were added to the blocklist en masse without thorough analysis.

Moreover, the lack of an appeal process is a serious concern. Users flagged by Nansen for signs of sybil activity were given a chance to dispute the decision through appeals. However, honest users affected by the Ads Power hack were not even given such an opportunity.

In this situation, it would be extremely unfair to leave things as they are for the honest members of the Linea community. I have studied this issue and propose a solution that would restore the right to rewards for the rightful wallet owners while preventing opportunities for fraudsters.

Option 1: Reverification via PoH

Reverification Process

• Access to the verification page is granted only to whitelisted users affected by the Ads Power breach.

• They will be able to reverify their PoH using the same social networks as before.

For example:

• Twitter — via TrustaLabs

• Gmail — via openid_3

• Gitcoin Passport (now HumnPassport)

After successful verification, a window will appear where users can delegate the airdrop to a new address, with no option for re-linking the address.

Access Restriction

• Reverification is only available to users from the blocklist who have no signs of sybil activity but were affected by the breach.

• This will restore airdrop access to legitimate users while preventing fraudsters from claiming rewards.

Option 2: Recovery via Withdrawal History

Status Differentiation on the Proof of Humanity (PoH) Page

Green Status — Wallets that were not compromised remain unchanged.

Yellow Status — Wallets drained via AdsPower get an option for additional verification and can specify a new address for the airdrop.

Verification and New Address Linking

• The user enters a wallet address where they withdrew funds before 2025 (typically an exchange address).

• If the address is verified, the wallet receives Yellow Status and access to recovery.

The system rejects:

• Addresses with withdrawals only in 2025.

• Addresses linked to fraudsters.

• New wallets with no withdrawal history.

Claiming and Distribution

Green Status wallets — Manual claiming from 12:00.

Yellow Status wallets — Automatic airdrop to the verified exchange address (e.g., starting at 17:00).

Additional Security Measures

If stronger protection against bypassing is needed, an extra measure can be added:

Limited time window for re-verification.

Minimal Infrastructure Changes

The proposed solution seamlessly integrates into the existing system without requiring complex technical modifications. This enables a quick implementation of protective measures without significant resource expenditure.

I invite the Linea team and Nansen analysts to join the discussion. I want to hear your perspectives and work together to find a solution that ensures the recovery process is fair, secure, and transparent.

Many affected users, including myself, actively participated in the Infura testnet, Voyage, and were among the first to execute transactions on mainnet. We engaged in quests, contributing to Linea growth and success. We are loyal supporters who do not deserve to be left behind.

It is crucial that those who suffered from the hack receive their rightful rewards. We didn’t just believe in something—we believed in Linea. Linea, don’t let us down!

Don’t let these scammers make idiots out of us, read the topics:

I did a quick research, screenshots are in russian, whoever wants can translate. A bunch of sybil accounts are urging to use FUD and manipulation to get the filters lifted.

Linea team, please send these saboteurs to hell. Protect the real community.

Screenshot_90532×430 11.5 KB

Screenshot_89609×435 38.8 KB

Screenshot_88610×244 28 KB

Don’t let these scammers make idiots out of us.

Lol, these abusers really have a high opinion of themselves

It amazes me that these scoundrels still come to the forum to demand their rights. Burn in hell, scammers.

Let’s keep the discussion honest and fact-based. If there is real on-chain evidence of fraud, it should be considered. Baseless accusations without proof don’t make sense. If you just want to vent negativity, it’s better to channel that energy into something productive in your own life.

I demand the reward I deserve, while you accuse and insult people without any facts. Judging by your message, it’s obvious you’re in a difficult psychological state. I wish you health and success on your path.

Are these abusers really in the same room with us?

Let’s be honest. Those who write these baseless comments are most likely driven by greed, hoping that as few people as possible will receive the airdrop. They don’t care whether it’s a legitimate user or a sybil. The goal is to reduce the number of people eligible for the airdrop. That’s why they rant in a frenzy, spewing curses, instead of directing their energy towards something constructive. There are professionals who specialize in identifying sybil activity and distributing the airdrop. They will make decisions based on solid arguments. Hatred, greed, and insults are certainly not the qualities we should be promoting and cultivating within the Linea community.

The decision is FINAL. The addresses won’t be removed from the sybil/blocked list.

This is absolutely unfair. Being hacked doesn’t mean I’m a Sybil, and using AdsPower doesn’t either. I have four EVM wallets that I use for DeFi activities, and I’ve accessed them through AdsPower because I need to manage them from both my work and home computers while keeping my funds secure without local storage. I’ve been doing this for years, long before airdrops were even a thing. Calling this Sybil behavior is nonsense—by Nansen standards, Sybil activity involves 20+ wallets, whereas having just four is completely reasonable. Now, not only have I lost my funds due to a hack, but I’m also unfairly locked out of Linea’s airdrop, despite investing significant time and ETH into the ecosystem.

Hello
right now in TG-chats ADS-sybils are trying once again to force through alain.linea.eth with the help of a sybil with a nickname “unohooooo” (in twitter too) and like this post in community linea build that they are ready to pass KYC again (which of course they will buy again from another asians for 3-5 dollars).
This is the guideline for action in one of the sybil groups that are massively coordinated to attack on any event or occasion, like ADS or low LXP thresholds

If you want maximized effect, let Nansen associate unaffected with affected ADS wallets by common patterns, this will add the remaining 70-80% of unaffected ADS-users wallets, and include the L0 list, in addition to the high LXP thresholds
So far you’re just responding to those who, having lost a small portion, are greedily trying to fight for every wallet they have.
I wrote all the details here Patience is over. The facts that sybils fear the most. Team needs to know

good post, I also have a compromised wallet, not through ads power, but just compromised.
I’d like to know how to secure it.
what I suggest …:

1 - it would be good to start either a portal or a form where you can enter such compromised wallets, or even through a Disord’s ticket or something else.
2 - to prove ownership of wallets in the favorite available way :cus - social networks, etc.
3 - to give the victims an opportunity to transfer their lxp -lxpl to safe wallets, or to ban such wallets and send token equivalent to the accounts of exchanges to the affected people

Users spent time, 2 years and money, they were hacked, it is not their fault that anyone can be hacked at any time. In the modern world there are many bad people who think only about themselves, they insult other people who have suffered. A person who hates users, they themselves are not nearly better, I doubt that they are better than others. At the same time, they are greedy.

Taking into account the fact that not all hacked wallets can pass the airdrop criteria, their number is less than the number of hacked wallets.

I fully support the author. Linea should do the right thing and give people the opportunity to receive their well-deserved airdrop. And not listen to bitter clowns who waste their time trying to make others miserable.

This is misinformation. There was no official “FINAL” decision on the hacked wallets.

So I claim that the most of wallets that do not reach the criterion of >4000LXP, voyage Alpha-NFT, LXP-L for liquidity more than 0.2ETH are very likely to be sybils. Seems harsh? I suggest you check out what I posted below.

I have exactly such a wallet that meets these criteria, except that I have almost 7000 LXP. The same goes for many victims of the hack that I’ve spoken to. My address is not in any sybil list, including L0.

you suffered not for your main wallet (even if you’re have it), but for the fact that you have dozens of small sybil wallets compromised along with your main wallet. Just like all other sybil-users who have to use specialized software for multi-accounting (ADS), that compromised your farm and ruined your primary account.

Firstly, unlike you, I am not part of any sybil groups and do not spread false information.

Secondly, the message was posted in an open Telegram channel where crypto project activities and news are announced, not in a sybil group.

Thirdly, the post states that a person has written an appeal to the Linea team and posted a tweet. Everyone affected by this situation and those who suffered from the ADS Power hack are encouraged to engage with the post and share their opinions. It is also mentioned that people are willing to undergo KYC, as alain.linea.eth considers the current solution invasive.