Over the past few weeks, scammers have hijacked over eight Twitter accounts of prominent figures in the crypto space to promote phishing scams. The group has stolen almost $1 million worth of crypto so far, according to blockchain sleuth ZachXBT.
In a June 9 Twitter thread, ZachXBT outlined that he had uncovered several “linked on chain” wallets connected to phishing scams promoted by the recently hacked accounts.
“While the majority of these attacks were the result of a SIM Swap, it seems other accounts were potentially stolen with a [Twitter admin] panel,” ZachXBT noted.
The accounts belong to figures such as Pudgy Penguins founder Cole Villemain, DJ and NFT collector Steve Aoki and Bitcoin Magazine editor Pete Rizzo.
Oddly enough, gold proponent and fervent crypto hater Peter Schiff also saw his account hacked to promote a dubious link relating to tokenized gold in decentralized finance.
“I hope Twitter Safety investigates each attack closely as they have resulted in almost seven figures stolen,” ZachXBT said, adding that:
“When the scammer gains control of a Twitter account, phishing scams are tweeted out almost immediately. Slow response times from Twitter Support have resulted in some of these tweets staying up for many hours and even days.”
The blockchain sleuth urged people to use a security key instead of SMS-based two-factor authentication.
Another one of the account hacks highlighted by ZachXBT includes OpenAI’s chief technology officer, Mira Murati.
On June 2, crypto community members fired off warnings about her account sharing a phishing link promoting a fake airdrop for an ERC-20 token named OPENAI.
This post was live for roughly an hour, and it was viewed 79,600 times and retweeted 83 times before it was deleted. Notably, the scammers had restricted who could reply to the tweet to stop people from placing warnings on it.
In late May, Arthur Madrid, the co-founder and CEO of metaverse platform The Sandbox, was also subjected to the same style of Twitter account hack that saw the promotion of a fake SAND token airdrop.
It is unclear if this particular hack is connected to the group of hackers identified by ZachXBT, however.