String of X hijacks continues as hackers access accounts of Litecoin, Foresight Ventures, and others
Quick Take
- Attacks that seek to compromise prominent users’ X accounts have escalated in recent weeks, with Litecoin, Foresight Ventures, and the CTO of LayerZero numbering among the latest victims.
- Hackers typically post memecoin scams from the hijacked accounts, seeking to profit from fast-moving traders.
- Security expert Taylor Monahan recommends X users review their security settings using a self-audit guide.
A recent string of X account hijacks has continued over the weekend as several more accounts belonging to prominent individuals or companies in the crypto space were commandeered by hackers and used to promote scams.
Litecoin's X account was compromised on Saturday and used to promote a memecoin scam to its 1.1 million followers. After regaining control over the account, Litecoin apologized for the incident.
"Litecoin's X account was briefly compromised today and posts that were not authorized were published," Litecoin's X account posted. "These were live only for a matter of seconds before being deleted. We're still investigating the issue, but immediately found a delegated account that was compromised and removed it. We apologize for any confusion caused."
Also affected on Saturday was the X account of Foresight Ventures and its 28,000 followers, and on Sunday, the X account of LayerZero Labs co-founder and CTO Ryan Zarick was likewise compromised and used to promote a scam to his 12,500 followers. The X account of Holoworld AI, which boasts over 150,000 followers, was also compromised last week.
A typical scam post from a hijacked X account. Screenshot: Zack Abrams.
Scam posts, such as the above, generally entice users with promises of a newly-launched memecoin or airdrop, and restrict replies to prevent users from calling out the scam. Though account owners often regain control of the account quickly, some fast-moving crypto traders often fall victim to the scheme.
X account hijacks in recent weeks have also affected musicians Drake and Wiz Khalifa, the Cardano Foundation, AI startup Anthropic, and more. Security researcher ZachXBT said in November that a series of related X account compromises led to the theft of over $3.5 million through memecoin scams.
How to protect your X account
Security researcher Taylor Monahan, when asked for advice on how users can protect themselves from such attacks, recommended users conduct a self-audit using a guide published by Security Alliance, also known as SEAL Org. The guide recommends users remove their phone number from their X account, configure two-factor authentication, and review the list of accounts with delegate access.
"I strongly recommend everyone takes the steps included there, even if they think they have done it before," Monahan said. "Twitter has updated certain settings over time and encouraged users to re-add their phone number."
If a user's X account is hijacked, Monahan said notifying SEAL through its SEAL-911 Telegram bot can help security professionals contain the damage. "We can very quickly block the malicious URL in MetaMask and a lot of other wallets and crypto security providers. Doing so dramatically reduces the impact of these account takeovers," Monahan said.
Disclaimer: The Block is an independent media outlet that delivers news, research, and data. As of November 2023, Foresight Ventures is a majority investor of The Block. Foresight Ventures invests in other companies in the crypto space. Crypto exchange Bitget is an anchor LP for Foresight Ventures. The Block continues to operate independently to deliver objective, impactful, and timely information about the crypto industry. Here are our current financial disclosures.
© 2024 The Block. All Rights Reserved. This article is provided for informational purposes only. It is not offered or intended to be used as legal, tax, investment, financial, or other advice.
