← Nelly3 decisions on this page

Audit log

Every state-changing event for Nelly: moderation decisions on community submissions, plus corrections and updates from the news pipeline. URL-based decisions carry three independent witnesses — the original source, an Internet Archive snapshot taken at submission time, and a Solana memo signed by our publicly-disclosed publisher key.

#1publishby system:backfill
2026-05-19 15:18:34Z
Score: ? → ? (no score change)
anchoranchored
chain
●mainnet-betaslot 420,795,154
sig
3QLpcivcBPzY…tXie3Pjtexplorer ↗
hash
47AafyaYra5t…tWEDa9u3sha256 → base58
verifying row…full verify ↗
canonical bytes (4225 B) ▸
{"actor":"system:backfill","investigation_id":"bd93d224-985e-4ebc-ae8a-be2a7da9c5f3","kind":"publish","page_slug":"nelly","published_at":"2026-05-19T15:18:34.759Z","sequence_num":1,"snapshot":{"content_type":"investigation","entity_name":"Nelly","sections":[{"content":"","heading":"","severity":"medium","sources":[]},{"content":"","heading":"","severity":"medium","sources":[]},{"content":"","heading":"","severity":"medium","sources":[]},{"content":"","heading":"","severity":"medium","sources":[]},{"content":"","heading":"","severity":"medium","sources":[]}],"sources_used":[{"credibility":2,"name":"X account tied to rapper Nelly compromised, used for crypto phishing scam — The Block","type":"news_article","url":"https://www.theblock.co/post/258064/us-rapper-nellys-x-account-compromised-crypto-phishing-scams"},{"credibility":2,"name":"American Rapper Nelly's X Account Reportedly Hacked and Involved in Crypto Phishing Scheme — CryptoPotato","type":"news_article","url":"https://cryptopotato.com/american-rapper-nellys-x-account-reportedly-hacked-and-involved-in-crypto-phishing-scheme/"},{"credibility":2,"name":"Account tied to rapper Nelly compromised, used for crypto phishing scam — Crypto.news","type":"news_article","url":"https://crypto.news/account-tied-to-rapper-nelly-compromised-used-for-crypto-phishing-scam/"},{"credibility":2,"name":"Rapper Nelly's X Account Got Hacked, Used For Phishing Scam — The Crypto Times","type":"news_article","url":"https://www.cryptotimes.io/2023/10/18/rapper-nellys-x-account-got-hacked-used-for-phishing-scam/"},{"credibility":2,"name":"Popular Rapper's X Profile Hacked to Promote Crypto Phishing Site — CryptoNews","type":"news_article","url":"https://cryptonews.com/news/popular-rappers-x-profile-hacked-promote-crypto-phishing-site/"},{"credibility":2,"name":"ZachXBT Connects Social Media Hacks to $3.5M Celebrity Meme Coin Scam — CryptoPotato","type":"news_article","url":"https://cryptopotato.com/zachxbt-connects-social-media-hacks-to-3-5m-celebrity-meme-coin-scam/"},{"credibility":2,"name":"Crypto phishing attacks drained nearly $300 million in 2023: Scam Sniffer — The Block","type":"research","url":"https://www.theblock.co/post/270105/crypto-phishing-attacks-2023"}],"summary":"Rapper Nelly (Cornell Iral Haynes Jr.) is flagged here not as a perpetrator of crypto fraud, but as a victim of an account compromise. In October 2023, an X (formerly Twitter) account associated with Nelly — handle @NellioETH — was hacked by an unknown third party who then used it to run a social engineering phishing campaign against crypto users. Blockchain investigator ZachXBT first identified and publicized the incident; specific amounts stolen from victims and detailed on-chain forensics have not been publicly confirmed.","timeline":[{"date":"2023-10-18","event":"X account @NellioETH, associated with rapper Nelly, is compromised by an unknown threat actor. ZachXBT identifies and publicly reports the phishing campaign via Telegram. Multiple crypto news outlets publish coverage the same day.","source":"","source_url":"https://www.theblock.co/post/258064/us-rapper-nellys-x-account-compromised-crypto-phishing-scams"},{"date":"2023-10-18","event":"Scam Sniffer publicly denies affiliation with @NellioETH on X, confirming the account is fraudulent and urging users to use only scamsniffer.io.","source":"","source_url":"https://crypto.news/account-tied-to-rapper-nelly-compromised-used-for-crypto-phishing-scam/"},{"date":"2023-10-18","event":"@NellioETH account is suspended or deleted by X; the profile returns a 'does not exist' message at time of reporting.","source":"","source_url":"https://cryptopotato.com/american-rapper-nellys-x-account-reportedly-hacked-and-involved-in-crypto-phishing-scheme/"},{"date":"2024-08-01","event":"A separate but related pattern of celebrity account hacks for meme coin pump-and-dump schemes begins, documented by ZachXBT, ultimately accounting for at least $3.5 million in losses across multiple celebrities including Usher and Wiz Khalifa. This campaign is distinct from the 2023 Nelly hack.","source":"","source_url":"https://cryptopotato.com/zachxbt-connects-social-media-hacks-to-3-5m-celebrity-meme-coin-scam/"}]},"v":1}
Verify offline (run on your own machine)
python -m src.verify_decision d17e871c-ae64-4e9e-ac90-3007a8432af4
#2reviewby reviewerreviewer
2026-06-03 04:04:23Z
Score: 48 → 48 (no score change)
The page's factual claims are well-supported by multiple credible contemporary news sources. The two partially-supported findings reflect minor precision issues: (1) at least one on-chain victim loss figure was documented in secondary coverage, making the 'no amounts confirmed' framing an overstatement; and (2) the nature of @NellioETH as a main versus secondary crypto-specific account is not clearly established. No claims were found to be disputed or unsupported by credible evidence. The most significant structural problem is that all five page sections are empty — the page's content lives entirely in the summary and timeline.
anchoranchored
chain
●mainnet-betaslot 423,950,677
sig
3u9sXcj45yHu…aGTox8h5explorer ↗
hash
dedrfht2mYoc…vQxEGgr5sha256 → base58
verifying row…full verify ↗
canonical bytes (976 B) ▸
{"actor":"reviewer","decided_at":"2026-06-03T04:04:22.743Z","decision":"review","investigation_id":"bd93d224-985e-4ebc-ae8a-be2a7da9c5f3","new_score":48,"page_slug":"nelly","prev_score":48,"reason":"The page's factual claims are well-supported by multiple credible contemporary news sources. The two partially-supported findings reflect minor precision issues: (1) at least one on-chain victim loss figure was documented in secondary coverage, making the 'no amounts confirmed' framing an overstatement; and (2) the nature of @NellioETH as a main versus secondary crypto-specific account is not clearly established. No claims were found to be disputed or unsupported by credible evidence. The most significant structural problem is that all five page sections are empty — the page's content lives entirely in the summary and timeline.","score_delta":0,"sequence_num":2,"submission_content_hash":null,"submission_id":null,"submission_kind":null,"submission_valence":null,"v":1}
Verify offline (run on your own machine)
python -m src.verify_decision 76a77e50-159c-4e73-badb-628967621320
#3review reviseby judgejudge
2026-06-03 04:04:23Z
Score: 48 → 40 (-8)
Of 13 claims reviewed, 11 were fully confirmed and 0 were disputed. The two partially-supported findings (claim_findings[2] regarding the @NellioETH account type, and claim_findings[6] regarding the absence of confirmed victim loss figures) reflect minor precision gaps rather than factual errors — secondary sources document at least one on-chain victim loss of approximately 93.24 ETH, making the page's 'no amounts confirmed' framing an overstatement. The page's core characterization of Nelly as a victim rather than perpetrator is robustly supported by multiple Tier 1 and Tier 2 sources. The most significant structural problem noted is a high-priority coverage gap: all five page sections are entirely empty, with substantive content confined to the summary and timeline. Revision is warranted to address the loss-figure framing and populate at least one section with incident detail.
anchoranchored
chain
●mainnet-betaslot 423,950,681
sig
2rmU4Xc95QjG…KgXcj14Nexplorer ↗
hash
74k7JzvPoAv1…H9XDTKbEsha256 → base58
verifying row…full verify ↗
canonical bytes (1237 B) ▸
{"actor":"judge","decided_at":"2026-06-03T04:04:22.743Z","decision":"review_revise","investigation_id":"bd93d224-985e-4ebc-ae8a-be2a7da9c5f3","new_score":40,"page_slug":"nelly","prev_score":48,"reason":"Of 13 claims reviewed, 11 were fully confirmed and 0 were disputed. The two partially-supported findings (claim_findings[2] regarding the @NellioETH account type, and claim_findings[6] regarding the absence of confirmed victim loss figures) reflect minor precision gaps rather than factual errors — secondary sources document at least one on-chain victim loss of approximately 93.24 ETH, making the page's 'no amounts confirmed' framing an overstatement. The page's core characterization of Nelly as a victim rather than perpetrator is robustly supported by multiple Tier 1 and Tier 2 sources. The most significant structural problem noted is a high-priority coverage gap: all five page sections are entirely empty, with substantive content confined to the summary and timeline. Revision is warranted to address the loss-figure framing and populate at least one section with incident detail.","score_delta":-8,"sequence_num":3,"submission_content_hash":null,"submission_id":null,"submission_kind":null,"submission_valence":null,"v":1}
Verify offline (run on your own machine)
python -m src.verify_decision 99ef361d-a252-4145-8410-fc30e1c7febd

How verification works. The “Row integrity” check above is computed in your browser — your machine recomputes the SHA-256 of the canonical bytes and compares against the stored hash. No avoid.net server can fake that check. The “full verify” link goes one level deeper: your browser fetches the on-chain transaction from a Solana RPC node and confirms the same hash is in the memo. If you don’t want to trust either avoid.net or the public RPC, run the CLI verifier on your own machine — python -m src.verify_decision <event_id>.