- Ethereum co-founder, Vitalik Buterin’s X (formerly Twitter) account was breached.
- Hackers swindled nearly $700,000 by sharing a misleading link posing as a commemorative NFT release.
In a recent post by crypto enthusiast dima.eth, concerns were raised regarding a potential security breach on Ethereum co-founder, Vitalik Buterin’s X account. “@BlockGeekDima noted, “Disregard this post, apparently Vitalik has been hacked. He is working on restoring access.” The hack led to nearly $700,000 in losses for those who mistakenly clicked on the deceptive link shared on the account.
Disregard this post, apparently Vitalik has been hacked. He is working on restoring access. https://t.co/2fjM0GhvIa
— dima.eth (@BlockGeekDima) September 9, 2023
A Trap Disguised as a Commemorative NFT
Upon gaining control over Buterin’s X account, cybercriminals posted a spurious link, purportedly promoting the release of a special NFT by ConsenSys to commemorate Ethereum’s Proto-Danksharding. The link, which promised users a free NFT, was nothing more than a bait. Due to its appearance from Buterin’s verified account, many were deceived. Those who took the bait, unfortunately, had their NFTs stolen by the hackers.
The swindlers employed a familiar trick. Clicking on the sham link granted them entry into the digital wallets of the unsuspecting victims, leading to a massive loss of NFT assets. Among the notable losses were Ethereum developer BookyPooBah’s two CryptoPunks and other well-regarded NFTs. ZachXBT, an on-chain analyst, pegged the total loss at approximately $691,000.
X’s Security Concerns Amplify
The episode is a stark reminder of the growing phishing concerns on the X platform, which has witnessed a concerning surge in such scams this year. Key figures in the crypto realm, including ZachXBT and Binance’s CEO Changpeng Zhao, have voiced their increasing anxiety over the prevalence of these cybercrimes. The malevolent actors often use verified bots and deliberately aim at high-profile accounts to circulate their misleading links.
Earlier in the year, accounts of several eminent personalities, such as Uniswap founder Hayden Adams and blockchain network Aptos, were compromised. Another disturbing event saw a crypto enthusiast losing a jaw-dropping $24 million to a phishing tactic.
Addressing the worrisome trend, Changpeng Zhao emphasized the need for better security measures on platforms like X, suggesting enhanced features like 2FA and distinct login IDs. Reflecting on his experiences, Zhao mentioned,
“In the past, I have had my Twitter account locked a few times due to hackers trying to brute-force it.”