A phishing scammer who posed as a Forbes reporter briefly gained access to the X (formerly Twitter) account of blockchain security platform CertiK and used it to post messages advertising a malicious Web3 app, according to a Jan. 5 X post from CertiK.
A verified account, associated with a well-known media, contacted one of our employees. Unfortunately, it appears that this account was compromised, leading to a phishing attack on our employee.
We quickly detected the breach and deleted the related tweets within minutes. Our… pic.twitter.com/aO7GQjXEz2
— CertiK (@CertiK) January 5, 2024
The post stated that a “verified account, associated with a well-known media, contacted one of our employees.” The account turned out to have been compromised, which resulted in the employee getting phished and “related tweets” being posted to the account, the post claimed.
The malicious messages have now been deleted. In a Jan. 5 post to X, blockchain security platform Cyvers claimed to have seen the messages before they were deleted. According to it, the messages stated that Uniswap’s router had been compromised and that users needed to revoke all approvals for Uniswap using Revoke.cash.However, the provided link led to a fake version of Revoke.cash that attempted to steal users’ crypto.
ALERTWe are seeing reports that @CertiK‘s X account has been compromised!
Do NOT click any links promoted! #CyversAlert pic.twitter.com/4M3JNNaJ53
— Cyvers Alerts (@CyversAlerts) January 5, 2024
The malicious messages were discovered within seven minutes of them being posted, CertiK claimed, and the team immediately began a recovery process to remove the attacker’s access to its X account. Within 14 minutes, the team managed to delete the first of the malicious posts. After 37 minutes, th
Go to Source to See Full Article
Author: Tom Blackstone