defirisk.co
rubric v1.7.0

Attacker wallet pre-strike probe (low-gas failing txs)

deBridge's assessment for RD-F-159 — scored gray on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

**Phase:** v1 deferred (P1) **Applicable:** Yes — if threat actors are actively assessing deBridge as a target, mempool probe transactions are a pre-strike reconnaissance pattern. **Current posture:** No low-gas failing transaction pattern from threat-actor cluster addresses detected in public data. The April 2026 Drift laundering used deBridge for actual bridge transactions, not reconnaissance probing. **Would fire today:** No — no current probe pattern detected. **Note:** Requires Chainalys...

Sources #

  • Curator note
    Extracted from 06-realtime-intel.md — RD-F-159; no URL cited in originalretrieved 2026-04-28

Methodology #

Detect whether a wallet in a threat-actor cluster is sending low-gas or intentionally-failing transactions to this protocol (pre-strike reconnaissance pattern).

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol debridge factor RD-F-159 score gray collected_at 2026-04-28 01:27:58