Hackers breach OpenAI CTO’s account to promote a fake airdrop

On June 2, intruders hacked OpenAI’s CTO, Mira Murati’s Twitter account, to spread a fake token airdrop.

The post contained a phishing link that pointed to a fully cloned site for the ChatGPT AI bot. Users were enticed with an OPENAI token airdrop allegedly created on the Ethereum network.

The author of the post limited comments, so the community could not warn others directly about the scam.

One user speculated that OpenAI’s CTO had fallen victim to a SIM swap attack.

We don’t know what’s going on yet (SIM attack?)

But NO WAY this is really Mira. This is a scam. https://t.co/zlp4SsR41l

— Mark Jeffrey (@markjeffrey) June 2, 2023

An analyst from Beosin, a blockchain security firm, told Cointelegraph that the fake site contains wallet-hacking tools that lure visitors to sign requests.

“After the request is signed, the attacker transfers NFT and ERC-20 coins from the victim’s wallet,” the expert explained.

Murati’s account has about 126,200 followers. The tweet stayed in the feed for just over an hour, during which it was retweeted 83 times.

Earlier on May 26, unknown gained control of The Sandbox CEO Arthur Madrid’s Twitter account to spread phishing. They masked it as a fake SAND token airdrop.

In March, Circle CEO Jeremy Allaire warned the community about the hack of the company’s chief strategy officer, Dante Disparte. The attacker posted a post stating a one-time bonus in the form of an airdrop for USDC holders.

In April, a hacker gained control of the KuCoin exchange account, resulting in losses of $22,628 among users.