{"id":79479,"date":"2023-05-29T12:07:32","date_gmt":"2023-05-29T09:07:32","guid":{"rendered":"https:\/\/forklog.com\/en\/?p=79479"},"modified":"2025-09-11T11:18:12","modified_gmt":"2025-09-11T08:18:12","slug":"hackers-hijack-the-sandbox-ceos-twitter-for-a-fake-sand-airdrop","status":"publish","type":"post","link":"https:\/\/forklog.com\/en\/hackers-hijack-the-sandbox-ceos-twitter-for-a-fake-sand-airdrop\/","title":{"rendered":"Hackers hijack The Sandbox CEO\u2019s Twitter for a fake SAND airdrop"},"content":{"rendered":"<p>On May 26, unknown individuals gained control of the Twitter account of the CEO <a href=\"https:\/\/forklog.com\/en\/news\/what-is-the-metaverse\">metaverse<\/a> The Sandbox Arthur Madrid, to spread phishing, disguising it as a fake token airdrop.<\/p>\n<blockquote class=\\\"twitter-tweet\\\">\n<p dir=\\\"ltr\\\" lang=\\\"en\\\">My Twitter was hacked today. and now is back. Please never click on any link that promote Airdrop or URL and look SCAMMY \u2014 and not 100% using our proper and unique URL\/domain name : <a href=\\\"https:\/\/t.co\/X3rXN9z8z7\\\">https:\/\/t.co\/X3rXN9z8z7<\/a><\/p>\n<p>\u2014 Arthur Madrid (@arthurmadrid) <a href=\\\"https:\/\/twitter.com\/arthurmadrid\/status\/1662161066166562818?ref_src=twsrc%5Etfw\\\">May 26, 2023<\/a><\/p><\/blockquote>\n<p> <script async=\\\"\\\" src=\\\"https:\/\/platform.twitter.com\/widgets.js\\\" charset=\\\"utf-8\\\"><\/script><\/p>\n<p>The project head later regained access to the profile. He urged people not to click suspicious links or fall for scammers&#8217; tricks.<\/p>\n<figure class=\\\"wp-block-image size-large\\\"><img loading=\\\"lazy\\\" decoding=\\\"async\\\" width=\\\"1024\\\" height=\\\"629\\\" src=\\\"https:\/\/forklog.com\/wp-content\/uploads\/FxD8ogMaQAEdPu8-1024x629.jpeg\\\" alt=\\\"FxD8ogMaQAEdPu8\\\" class=\\\"wp-image-208090\\\" srcset=\\\"https:\/\/forklog.com\/wp-content\/uploads\/FxD8ogMaQAEdPu8-1024x629.jpeg 1024w, https:\/\/forklog.com\/wp-content\/uploads\/FxD8ogMaQAEdPu8-300x184.jpeg 300w, https:\/\/forklog.com\/wp-content\/uploads\/FxD8ogMaQAEdPu8-768x472.jpeg 768w, https:\/\/forklog.com\/wp-content\/uploads\/FxD8ogMaQAEdPu8.jpeg 1114w\\\" sizes=\\\"auto, (max-width: 1024px) 100vw, 1024px\\\" \/><figcaption>A fake post allegedly posted by Arthur Madrid. Source: Twitter.<\/figcaption><\/figure>\n<p>The Sandbox&#8217;s official account also flagged the situation. The company said it was working to block the fraudulent website.<\/p>\n<blockquote class=\\\"twitter-tweet\\\">\n<p dir=\\\"ltr\\\" lang=\\\"en\\\">\u26a0\ufe0f Our CEO &#038; Co-Founder Arthur Madrid\u2019s Twitter account has been hacked \u26a0\ufe0f<\/p>\n<p>The hacker is posting a scam \/ phishing link for a fake airdrop of SAND tokens.<\/p>\n<p>\u26d4\ufe0fDo NOT click on the link and instead report the post so it is blocked. <\/p>\n<p>We\u2019re working on getting the site down and fix\u2026 <a href=\\\"https:\/\/t.co\/sOqzAV5OUT\\\">pic.twitter.com\/sOqzAV5OUT<\/a><\/p>\n<p>\u2014 The Sandbox (@TheSandboxGame) <a href=\\\"https:\/\/twitter.com\/TheSandboxGame\/status\/1662106263294185472?ref_src=twsrc%5Etfw\\\">May 26, 2023<\/a><\/p><\/blockquote>\n<p> <script async=\\\"\\\" src=\\\"https:\/\/platform.twitter.com\/widgets.js\\\" charset=\\\"utf-8\\\"><\/script><\/p>\n<p>Following the hack of Madrid&#8217;s account, the project\u2019s native token SAND began to drift higher. According to <a href=\\\"https:\/\/www.coingecko.com\/ru\/%D0%9A%D1%80%D0%B8%D0%BF%D1%82%D0%BE%D0%B2%D0%B0%D0%BB%D1%8E%D1%82%D1%8B\/the-sandbox\\\">CoinGecko<\/a>, at the time of writing the asset was trading at $0.5473, up 4.2% over 24 hours.<\/p>\n<p>Such incidents are not new for The Sandbox. In February, an unknown <a href=\"https:\/\/forklog.com\/en\/news\/attacker-circulated-phishing-emails-to-the-sandbox-users\">gained access<\/a> to a staff member&#8217;s workstation and sent fraudulent emails to platform users. The message mimicked a notification about access to the metaverse and contained malicious links.<\/p>\n<p>In March, Circle CEO Jeremy Allaire <a href=\"https:\/\/forklog.com\/en\/news\/unknown-hacker-hijacks-circle-executives-twitter-account-to-push-a-scam\">warned<\/a> the community about the hacking of the Twitter account of the company&#8217;s chief strategy officer Dante Disparte. The attacker posted a message promising a \u201cone-off bonus in the form of an airdrop\u201d for USDC holders.<\/p>\n<p>In April, a hacker <a href=\"https:\/\/forklog.com\/en\/news\/hacker-hacks-kucoins-twitter-account\">gained control<\/a> of a KuCoin account, leading to losses of $22,628 for users.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>On May 26, unknown individuals gained control of the Twitter account of Arthur Madrid, the CEO {{AOPEN_1}}metaverse{{ACLOSE_1}} The Sandbox, to spread phishing, disguising it as a fake token airdrop.<\/p>\n","protected":false},"author":1,"featured_media":79480,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"select":"1","news_style_id":"1","cryptorium_level":"","_short_excerpt_text":"","creation_source":"","_metatest_mainpost_news_update":false,"footnotes":""},"categories":[3],"tags":[44,2060],"class_list":["post-79479","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-analysis","tag-cybercrime","tag-the-sandbox"],"aioseo_notices":[],"amp_enabled":true,"views":"42","promo_type":"1","layout_type":"1","short_excerpt":"","is_update":"","_links":{"self":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/79479","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/comments?post=79479"}],"version-history":[{"count":1,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/79479\/revisions"}],"predecessor-version":[{"id":79481,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/79479\/revisions\/79481"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/media\/79480"}],"wp:attachment":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/media?parent=79479"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/categories?post=79479"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/tags?post=79479"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}