{"id":19872,"date":"2024-12-25T10:50:30","date_gmt":"2024-12-25T08:50:30","guid":{"rendered":"https:\/\/forklog.com\/en\/hacker-profits-500000-from-x-account-crypto-scam\/"},"modified":"2024-12-25T10:50:30","modified_gmt":"2024-12-25T08:50:30","slug":"hacker-profits-500000-from-x-account-crypto-scam","status":"publish","type":"post","link":"https:\/\/forklog.com\/en\/hacker-profits-500000-from-x-account-crypto-scam\/","title":{"rendered":"Hacker Profits $500,000 from X Account Crypto Scam"},"content":{"rendered":"<p>Over the past month, a hacker breached more than 15 X accounts through phishing and used them to promote fraudulent meme token schemes, according to on-chain detective ZachXBT.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">1\/3 A threat actor has stolen ~$500K over the past month by compromising 15+ X accounts (Kick, Cursor, Alex Blania, The Arena, Brett, etc) from sending targeted phishing emails which impersonated the X team to steal credentials and then launch meme coin scams. <a href=\"https:\/\/t.co\/HEWQdVICgJ\">pic.twitter.com\/HEWQdVICgJ<\/a><\/p>\n<p>\u2014 ZachXBT (@zachxbt) <a href=\"https:\/\/twitter.com\/zachxbt\/status\/1871543397875671099?ref_src=twsrc%5Etfw\">December 24, 2024<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>Among the victims were accounts from the streaming platform Kick, AI assistant Cursor, World (formerly Worldcoin) co-founder Alex Blania, meme coin Brett, SocialFi app The Arena, and others.<\/p>\n<p>The hacker, posing as the X team, sent fake copyright infringement notices to lure victims to a phishing site to reset passwords and <span data-descr=\"two-factor authentication\" class=\"old_tooltip\">2FA<\/span> from the account.<\/p>\n<blockquote class=\"twitter-tweet\" data-conversation=\"none\">\n<p lang=\"en\" dir=\"ltr\">3\/3 An example of a phishing email received by X users can be seen below and the emails all follow the same script: <\/p>\n<p>>send fake copyright infringement email<br \/>>create a sense of urgency<br \/>>trick user into visiting phishing site and resetting 2FA\/password <\/p>\n<p>Makes sure to limit email\u2026 <a href=\"https:\/\/t.co\/j1SWMTlWW3\">pic.twitter.com\/j1SWMTlWW3<\/a><\/p>\n<p>\u2014 ZachXBT (@zachxbt) <a href=\"https:\/\/twitter.com\/zachxbt\/status\/1871543411695599902?ref_src=twsrc%5Etfw\">December 24, 2024<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>After gaining control of the accounts, the hacker posted advertisements for the launch of native meme tokens on behalf of each victim, attaching the address of a fraudulent smart contract to collect investments. The proceeds were then laundered through the Solana and Ethereum networks.<\/p>\n<p>In total, the scheme netted the hacker approximately $500,000.<\/p>\n<p>To prevent account theft, ZachXBT recommended using different email addresses for each platform and setting up additional layers of account security.<\/p>\n<p>According to a report by Hacken, in 2024, the Solana network became a hub for fraud due to the meme token boom.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Over the past month, a hacker breached more than 15 X accounts through phishing and used them to promote fraudulent meme token schemes, according to on-chain detective ZachXBT. 1\/3 A threat actor has stolen ~$500K over the past month by compromising 15+ X accounts (Kick, Cursor, Alex Blania, The Arena, Brett, etc) from sending targeted [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":19871,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"select":"","news_style_id":"","cryptorium_level":"","_short_excerpt_text":"","creation_source":"","_metatest_mainpost_news_update":false,"footnotes":""},"categories":[3],"tags":[44,1161,1246,40],"class_list":["post-19872","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-analysis","tag-cybercrime","tag-memes","tag-scammers","tag-twitter"],"aioseo_notices":[],"amp_enabled":true,"views":"94","promo_type":"","layout_type":"","short_excerpt":"","is_update":"","_links":{"self":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/19872","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/comments?post=19872"}],"version-history":[{"count":0,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/19872\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/media\/19871"}],"wp:attachment":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/media?parent=19872"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/categories?post=19872"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/tags?post=19872"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}