phishing

⚠️ Hackers Impersonating X Staff to Target Crypto Users — Stay Alert
Hackers have hijacked high‑profile X accounts — including that of Scroll co‑founder Ye Chen — and used them to impersonate official platform staff, sending fake copyright‑violation warnings with malicious links designed to panic victims into clicking. [foxnews.com]
$ONDO
By redesigning the compromised profiles to mimic verified X branding and flooding feeds with reposts from official accounts, attackers made the scam appear legitimate before launching a wave of phishing DMs targeting executives, developers, founders, and investors across the crypto space. [cnbc.com]
$FIL
This pattern follows a broader surge in impersonation‑based social‑engineering attacks, which grew over 1400% year‑over‑year, making it one of the fastest‑expanding threats in the entire crypto ecosystem. [moneycontrol.com]
$XLM
😨🔒 “Trust the content, not the profile.”
📩🚫 “Never click urgent DM links — even from verified accounts.”
🛡️🔍 “In crypto, the first line of security is skepticism.”

#CryptoSecurity #ScamAlert #Phishing #StaySafe

Enhancing Digital Security: A Shared Responsibility.

In today's digital landscape, the importance of robust security measures cannot be overstated. A recent reminder to the community highlighted a crucial principle: security is a shared responsibility. While platforms and service providers dedicate significant resources to safeguarding assets through initiatives like SAFU funds and advanced monitoring systems, the end-user's vigilance remains a critical line of defense.
The call to action emphasizes simple yet highly effective practices: enabling Two-Factor Authentication (2FA) and maintaining a sharp awareness of phishing attempts. 2FA adds an essential layer of security by requiring a second form of verification in addition to a password, significantly reducing the risk of unauthorized access. Simultaneously, staying alert to phishing — fraudulent attempts to obtain sensitive information by disguising as a trustworthy entity — is paramount. Phishing scams are constantly evolving, making continuous vigilance necessary for all users.
Ultimately, the safety of digital assets hinges on a collaborative effort. Platforms provide the infrastructure and protection, but users must actively participate in securing their own accounts. This partnership ensures that collective digital security remains strong against evolving threats.
#Cybersecurity #2FA #Phishing #SAFU #DigitalSafety
@SaleeM_MeYo

#ScrollCoFounderXAccountHacked ​🚨 ALERTA DE SEGURANÇA: Cofundador da Scroll tem conta invadida!
.
​A hashtag #ScrollCoFounderXAccountHacked está dominando as tendências e serve como um lembrete brutal: no mundo cripto, ninguém está 100% imune. No dia 25 de janeiro de 2026, a conta oficial de Kenneth Shen foi alvo de um ataque sofisticado de phishing.
.
​🛡️ O que aconteceu?
.
​Hackers assumiram o controle do perfil para disseminar links maliciosos, tentando drenar carteiras de usuários desavisados através de falsas promessas de airdrops ou alertas de suporte urgentes.
.
​💡 Como se proteger agora:
.
​Desconfie de Urgência: Se um fundador postar um link "clique agora ou perca sua conta", pare e respire. É o gatilho favorito dos golpistas.
.
​Verifique as Fontes: Antes de interagir, confira os canais oficiais do projeto (Discord, Telegram, Site Oficial).
.
​Revise Permissões: Nunca conecte sua carteira principal em sites desconhecidos. Use uma "burner wallet" para interações suspeitas.
.
​2FA de Hardware: Use chaves físicas (como Yubikey) sempre que possível, elas são muito mais seguras que SMS ou apps de autenticação.
.
✅ ​O ecossistema Scroll continua sólido, mas a segurança individual depende da nossa atenção constante. Fiquem espertos!
.
🤔 ​O que você achou dessa falha? Acha que as redes sociais precisam de camadas extras de segurança para figuras públicas de cripto? 👇
.
​#Scroll #SecurityAlert #Phishing

#ScrollCoFounderXAccountHacked #CyberSecurity
🚨🔓 Scroll Co-Founder’s X Account Hacked — Market On Alert

🗓️ Jan 25, 2026
@CryptoNews
Co-founder of Scroll had their X account compromised

Attack used advanced phishing

Triggered fast fear across the crypto community ⚠️

😬 Why It Matters

Trusted accounts = market movers

One hacked post can spark panic or fake narratives

This isn’t isolated — attacks on crypto leaders are rising

🛡️ Quick Safety Reminder

Enable 2FA everywhere

Never click rushed links

Verify announcements twice

🧠 Human take:
If founders can get hacked, everyone needs to level up security.

➡️ Volatility may spike short-term. Stay sharp, not scared.
$BEAMX
$WIN
$BANANA

#CryptoNews #security #phishing 🔐🟠

⚡️ $48M IN BTC LOST TO PHISHING ⚡️
━━━━━━━━━━━━━━━━━━━━━━
🚨 SOUTH KOREA GOVERNMENT REKT 🚨
One employee clicked a fake link
$48 MILLION in seized Bitcoin GONE 💀
━━━━━━━━━━━━━━━━━━━━━━
📊 WHAT HAPPENED:
💻 Fake website phishing scam
🔑 Employee entered credentials
💰 70 billion won vanished
📁 Passwords stored on USB drives
🏛️ Gwangju Prosecutors Office exposed
━━━━━━━━━━━━━━━━━━━━━━
🔥 THE IRONY:
Governments regulate crypto ❌
Can't even protect their own ❌
Second loss in 4 years 💀
Amateur security protocols 🤦
Meanwhile they tell YOU crypto is risky 😂
━━━━━━━━━━━━━━━━━━━━━━
💡 THE LESSON:
NOT YOUR KEYS, NOT YOUR COINS ✅
Self-custody with education beats
Government custody with USB passwords 💎
━━━━━━━━━━━━━━━━━━━━━━
🎯 PROTECT YOURSELF:
Never click suspicious links ✅
Use hardware wallets ✅
Enable 2FA ✅
Double-check URLs ✅
━━━━━━━━━━━━━━━━━━━━━━
💬 Your reaction?
😂 = Embarrassing
🔐 = Self-custody gang
💎 = Not your keys squad
👇 Comment below 👇
━━━━━━━━━━━━━━━━━━━━━━
#bitcoin $BTC #CryptoSecurity #phishing #SouthKorea #dyor
━━━━━━━━━━━━━━━━━━━━━━
✅ VERIFIED | 🔐 STAY SAFE

$47 MILLION IN BTC VANISHES FROM KOREAN PROSECUTOR'S OFFICE

This is NOT a drill. A catastrophic phishing attack has wiped out $47 million in seized Bitcoin. An insider accidentally clicked a fake website. Wallet credentials are gone. Millions in confiscated crypto have evaporated. The assets are currently untraceable. This is the ultimate warning. Security is paramount. Never let your guard down.

Disclaimer: This is not financial advice.

#crypto #bitcoin #phishing #scamalert #security

🚨 $BTC SECURITY SHOCK 🚨

South Korea has reportedly lost $48M in seized Bitcoin after a government employee was tricked by a phishing site, leading to compromised wallet access and the disappearance of ~70B won in BTC.
📌 Why this matters:
• Highlights weaknesses in state-level crypto custody
• Proves “offline” storage isn’t foolproof
• Raises global concerns around security standards and oversight
🔍 An investigation is underway, and regulators worldwide are watching closely.
⚠️ Takeaway: If even governments can lose Bitcoin, custody and verification matter more than ever.
👉**If governments can lose Bitcoin… who’s really safe?**
👉 Should seized crypto be handled by governments at all — or moved to independent custodians? Share your view below.
#Bitcoin #CryptoSecurity #BlockchainNews #Phishing #SouthKoreaSeizedBTCLoss

🚨 South Korea Loses $48M in Seized Bitcoin 🚨
$BTC

A government employee fell for a phishing scam, leading to the loss of 70 billion won (~$48M) in seized BTC 😬

• Fake website
• Wallet credentials compromised
• Funds vanished with a click

The breach was discovered during an audit at the Gwangju District Prosecutors’ Office, exposing serious weaknesses in government crypto custody.

This isn’t just a loss — it’s a global wake-up call 🔔
If governments can mishandle Bitcoin, security standards everywhere need rethinking.

🔍 Investigation ongoing
⚖️ Regulatory implications ahead

If seized BTC isn’t safe… who is?

#Bitcoin #CryptoSecurity #Phishing #BlockchainNews #SouthKorea

#southkoreaseizedbtcloss — Major Bitcoin Custody Security Incident 🔥

South Korean authorities are investigating after a large amount of seized Bitcoin reportedly went missing while under government custody. Prosecutors discovered the loss during a routine inspection of confiscated digital assets by the Gwangju District Prosecutors’ Office.

💸 Key Details:

🔹 Roughly 70 billion won (~$48M) worth of seized BTC appears to have vanished.

🔹 Officials suspect the loss happened after an employee accidentally accessed a phishing/scam website, potentially exposing the private keys.

🔹 The incident was spotted during a routine audit of seized assets — prompting an internal investigation.

🔍 Why It Matters:

This incident highlights the critical importance of secure custody practices for cryptocurrency — especially when even government agencies handling seized assets can fall victim to scams and phishing threats.

📊 With crypto custody risks in focus, both law enforcement and the broader industry may face increased scrutiny on security and storage protocols going forward.

#bitcoin #BTC #CryptoSecurity #CryptoNews #phishing #DigitalAssets

#ScrollCoFounderXAccountHacked **🚨 ALERT: Scroll Co-Founder's X Account Hacked – Phishing DMs Spreading Fast! ⚠️**

Scroll (@Scroll_ZKP) just confirmed: Co-founder Kenneth Shen (@shenhaichen / Ye Chen)'s X account is **compromised** as of Jan 25, 2026.

Hackers are blasting phishing DMs impersonating **X staff** – fake "security alerts," copyright claims, or urgent messages with malicious links. Targeting big crypto names & community members.

**Do NOT click ANY links or reply to DMs** from this account right now. Scroll team is working on recovery.

Classic social engineering hit on a high-follower verified account in zkEVM space. Stay vigilant – enable 2FA, never share seeds!

This is why hardware wallets + cold storage matter even more in 2026. 😤

Have you received any shady DMs lately? Drop below (no links obv) 👇

#ScrollCoFounderXAccountHacked #CryptoSecurity #Phishing
#AmeerGro
$BTC
$XRP
$SOL

#ScrollCoFounderXAccountHacked
🚨 Alert! The X account of Scroll's co-founder (@shenhaichen) got hacked today.

Bad guys are using it to send private messages (DMs) pretending to be from X staff. They trick people into clicking bad links to steal crypto money or keys.

Important:

Don't click ANY links from this account.

Don't share your info or wallet stuff.

Stay safe!

Crypto friends, be careful.
#ScrollCoFounderXAccountHacked #CryptoScam #Phishing

🚨 Alert: Massive Phishing Attack Targeting LastPass Users!
Heads up! A major phishing campaign has been targeting LastPass users since January 19.
How the scam works:
Hackers are sending emails disguised as "Technical Maintenance" alerts. They pressure you to create a vault backup within 24 hours, claiming your data might otherwise be lost. The "Create Backup Now" button leads to a fake site designed to steal your Master Password. Once they have it, they gain access to everything—including exchange logins and seed phrases.
4 Rules to Spot the Scam in 10 Seconds:
Hover Before You Click. Hover your mouse over any button (don't click!). Check the URL in the bottom corner of your browser. It should be lastpass.com. If you see lastpass-backup.net or s3.amazonaws..., it’s a trap.Check the Sender’s Domain. Official emails only come from @lastpass.com or @service.lastpass.com. If the sender is [email protected] or another suspicious address, delete it.Ignore the "Ticking Clock." Urgency and 24-hour deadlines are classic manipulation tactics. Real security services don't set ultimatums for accessing your own data.Use the "Front Door." Never click links in "urgent" emails. Close your mail, manually type lastpass.com into your browser, and log in. If there’s a real issue, you’ll see a notification inside your dashboard.
Remember: LastPass will NEVER ask for your Master Password on a separate page for "verification" or "backups."
Stay vigilant and keep your assets SAFU! 🛡
#Security #LastPass #Phishing #CryptoSecurity #BinanceSquare

BNB CHAIN HACKED! PHISHING ALERT!

Users should absolutely not make any investment decisions based on information posted on relevant social media channels at this time to avoid the risk of asset loss.

Official channels are compromised. BNB Chain Coinmarketcap account is suspected of being hacked. Nina Rong, Head of Growth at BNB Chain, confirmed the reports. Investigation is underway. Protect your assets. Do not fall for scams. This is a critical warning.

News is for reference, not investment advice.

#BNB #CryptoNews #SecurityAlert #Phishing 🚨

🚨 Waltio 数据泄露：Shiny Hunters 黑客组织攻击加密税务服务商
法国加密货币税务计算服务平台 Waltio 遭遇勒索。黑客组织 Shiny Hunters 宣称已获取 50,000 名用户（占平台客户总数三分之一）的数据访问权限。
事件经过：
2026 年 1 月 21 日，攻击者窃取了 2024 年度的税务报告。黑客掌握的信息包括：
电子邮件地址；损益数据；期末资产余额。
🛡 安全无虞的信息：
公司首席执行官 Pierre Morizot 迅速向用户保证：基础设施并未被攻破。密码、交易所 API 密钥、钱包地址和交易历史记录均未泄露。 Waltio 无法直接访问或移动用户资金，因此您的资产是安全的。
⚠️ 主要风险——社会工程学攻击：
当前的主要风险不是系统崩溃，而是网络钓鱼（Phishing）。黑客可能会利用泄露的报告数据，冒充 Waltio 支持人员，试图诱骗您提供交易所或钱包的访问权限。
如何保护自己？
验证发件人： 使用 Waltio 的内部安全码验证电子邮件的真实性。忽略电话/短信： 该公司没有客户的电话号码。任何自称“Waltio 员工”的来电都是骗局。保持警惕： 如果“支持人员”要求您提供密码或助记词，并声称与此次泄露有关，那一定是陷阱。
请保持警惕，保护好您的资产！🔒
#Waltio #CyberSecurity #Phishing #CryptoNews #SafetyFirst

Según la empresa de seguridad Web3 Scam Sniffer, más de US$127 millones en #Criptomonedas fueron robados a inversores en el tercer trimestre de 2024, con aproximadamente US$46 millones perdidos en septiembre por ataques de phishing.

En los ataques de phishing, los estafadores engañan a los inversores para que vinculen sus billeteras cripto, como #MetaMask , a servicios fraudulentos. La vinculación de las billeteras cripto a sitios web de #phishing permite a los estafadores retirar #criptomonedas de los usuarios sin más autenticación.

Stay #SAFU on X and other socials.

@JasonYanowitz on X narrates his #hack odeal.

I got hacked yesterday. At the risk of looking foolish, I'll share how it happened so you can avoid this nightmare. For the past few weeks, people have been trying to get into my accounts. #Crypto accounts, email, twitter, etc... every few days I get an email that someone is trying to access one of my accounts. Thankfully I have non-text #2FA set up for everything so nothing got hacked. So when I got back from dinner last night and saw this email, I panicked.
Someone in North Cyprus had finally managed to hack into my account. I guess my security wasn't strong enough and they found a loophole.
I clicked the link to "secure my account". I entered my username and password, updated to a new password, and voila: I'm back in. Crisis averted. Or so I thought. Moments later, I got an email saying my email address had been changed.

This was the real hack.

I was now officially locked out of my account. So how did this happen? It turns out the original email, which looks incredibly real, was not so real. Most email clients hide the actual address.
But when you expand it, you can see that this email was sent from "[email protected]" Fake address. I got phished. Very foolish mistake. I don't open Google Docs when they're sent to me. I don't click links. I typically check addresses. But Friday 8pm after a long week, they got me. I am aware this thread exposes a pretty dumb mistake but if I can save one person from this same mistake, it's worth it.

Some takeaways:
- Don't click links
- If you do click a link, review the actual email address
- Set up non-text 2FA on everything
- If you've done that, trust your own security process
- If you think you've been hacked, slow down and think about how this could have happened
Big thank you to @KeithGrossman and some folks at X for helping me get my account back so quickly.
If you're still reading, go read the self-audit series from @samczsun.
And this best practices from @bobbyong.
Lot more you can do but start there. #phishing

🚨 ALERT: ENS founder Nick Johnson warns of an "extremely sophisticated" Google phishing scam targeting users with fake subpoena notices. 🛑

⚠️ The emails pass DKIM checks and appear as legit Gmail security alerts.

📩 Stay sharp — even your inbox isn’t safe.

#Phishing #Crypto #CyberSecurity #ENS #Web3

What's the first thing I do - and You should too - when received an #email from #Binance ?

I check my anti- #phishing code ✅

Did you set it up?

Cheers 🥂

#CryptoScamSurge
La comunidad cripto frente a las estafas: cómo reconocerlas, prevenirlas y actuar.

El auge en los precios de los criptoactivos ha traído consigo un incremento preocupante de fraudes cada vez más elaborados, amenazando la credibilidad del entorno cripto y abriendo la puerta a mayores controles regulatorios.

¿Cómo puede responder el ecosistema cripto?
🔹 Formación continua: Es vital compartir información sobre fraudes como rug pulls, phishing, sorteos engañosos y estafas emocionales. Talleres, hilos educativos y recursos abiertos pueden marcar la diferencia.
🔹 Transparencia real: Impulsar que los proyectos presenten documentación clara, equipos verificables y auditorías disponibles públicamente
🔹 Acción conjunta: Plataformas, billeteras y usuarios deben trabajar unidos compartiendo listas de estafadores y reportando actividades sospechosas.
🔹 Herramientas de análisis: Fomentar el uso de servicios como Token Sniffer o DEXTools para evaluar contratos y tokens antes de invertir.
🔹 Apoyo activo a afectados: Crear espacios donde los usuarios puedan reportar estafas y compartir alertas para evitar que otros caigan.

Principales estafas cripto en 2025
⚠️ Deepfakes: Videos o audios manipulados donde supuestas celebridades promocionan inversiones falsas.
⚠️ Pig Butchering (matanza de cerdos): Estafas emocionales que construyen relaciones falsas para luego robar fondos.
⚠️ Rug pulls y esquemas pump & dump: Proyectos que inflan su valor y desaparecen con el dinero.
⚠️ Phishing y drenado de wallets: Sitios y apps maliciosas diseñadas para robar claves y criptoactivos.
⚠️ Malware en Telegram o mensajes directos: Aplicaciones y bots disfrazados que instalan spyware o extraen datos sensibles.

La mejor defensa sigue siendo el conocimiento y el trabajo en conjunto. Comparte esta información con tu comunidad y no bajes la guardia.

#CriptoEstafasAumen #CriptoSeguridad #BinanceSquare #CriptoEducación #DeFi #phishing #RugPull