A phishing link was posted on the X account of blockchain-focused cybersecurity firm Certik after a bad actor hacked into the protocol’s social media profile.
In a new announcement, the cybersecurity company says that a “verified account associated with well-known media” was able to hack into one of their employee’s X accounts, using it to post links to phishing scams.
Certik says that the phishing link was removed just 14 minutes after it went up and that no significant losses arose from the exploit.
“A verified account, associated with a well-known media [outlet], contacted one of our employees.
Unfortunately, it appears that this account was compromised, leading to a phishing attack on our employee. We quickly detected the breach and deleted the related tweets within minutes…
According to our investigation, there is no significant loss due to this incident.”
However, according to blockchain detective ZachXBT, the original direct message clicked on by the Certik employee was showing signs that it was dangerous.
“Why did you (Certik) not find the ‘well-known media’ account that contacted you suspiciously since they had not posted since April 2020 (clearly compromised)? Will Certik be reimbursing victims?
Certik replied by saying that those affected by the exploit should reach out to them.
“While it’s easy to point the finger after a phishing attack, the reality is that these scams are designed to exploit human trust and vulnerabilities. That is why we are dedicated to building strong security systems and empowering users to recognize and avoid these threats.
Combating phishing requires a united front. We encourage those affected during the recent Twitter incident to reach out to us.”
Don’t Miss a Beat – Subscribe to get email alerts delivered directly to your inbox
Check Price Action
Follow us on Twitter, Facebook and Telegram
Surf The Daily Hodl Mix
 
Disclaimer: Opinions expressed at The Daily Hodl are not investment advice. Investors should do their due diligence before making any high-risk investments in Bitcoin, cryptocurrency or digital assets. Please be advised that your transfers and trades are at your own risk, and any loses you may incur are your responsibility. The Daily Hodl does not recommend the buying or selling of any cryptocurrencies or digital assets, nor is The Daily Hodl an investment advisor. Please note that The Daily Hodl participates in affiliate marketing.
Generated Image: Midjourney
Source: https://dailyhodl.com/2024/01/05/phishing-link-posted-to-certiks-x-account-after-hacker-compromises-blockchain-security-firms-social-media/