{"schema":"immunity/antibody-envelope/v1","keccakId":"0xcdb7ce4fd58b5d39657d95906134e010018908704ecf2106e096650578136bf9","immId":"","abType":"SEMANTIC","flavor":1,"publisher":"0x4789ddae13d7cbf11aa97d39b201d973d01cbc28","createdAt":"2026-04-29T17:29:45.363Z","reasonSummary":"Recovery-scam pretexting opener: the attacker manufactures urgency by claiming a compromise, then routes the victim through 'recovery' steps that culminate in a permit signature or seed-phrase disclosure. Surfaces in fake-support DMs, spoofed wallet-vendor emails, and impersonated MetaMask agents. MALICIOUS at high confidence: legitimate wallet vendors never initiate compromise notifications inline.","matcher":{"kind":"semantic","flavor":"MANIPULATION","markerHint":"your wallet has been compromised"}}