Brothers, something big has happened!
Don't think that just because you're focused on big projects, you're safe. The Twitter (X) account of the co-founder of Scroll, a Layer 2 top project valued at tens of billions of dollars, was actually hacked!
On January 25, the technical head of Scroll @shenhaichen's account suddenly began to 'act up'. This time the hacker didn't post a fake airdrop tweet at first glance, but played a more insidious game - private message phishing.
Many newcomers saw a private message coming from the 'founder' and didn’t realize they had fallen for it until it was too late.
Taking this opportunity, I must give a lesson to the brothers who just entered the circle. In this dark forest, there is no such thing as 'absolute authority'. Even the blue V official tweets could be operated by hackers!
🩸 Incident review: How did the hacker deceive people?
This Scroll incident is very typical; after the hacker took control of the founder’s account, they didn’t make a big fuss about tweeting (afraid of being discovered and deleted quickly) but secretly sent private messages (DMs) to the big shots and active users in the follow list.
• Language: 'Bro, help me test a new feature' or 'There’s a confidential cooperation for you to check out.'
• Trap: You click a link, sign something, and the U in your wallet belongs to the hacker.
• Psychological warfare: You think, 'This is the founder of Scroll, how could they possibly scam me?' Ah, hackers are betting on that trust!
🛡️ Three 'life-saving rules' for beginners
Don’t blame me for being repetitive; in this circle, if you don’t want to lose everything overnight, these three rules should be etched in your mind:
1. Any 'private message' that actively contacts you is 99.99% a scam!
Remember this saying: Big shots are very busy; they don’t have time to send you money or chat with you.
No matter how big the other party's title is (Vitalik, CZ, Musk), if they send you a link via private message, block them immediately without hesitation! Real major projects announce airdrops publicly across the entire network, they will never secretly message you.
2. Even if it’s an 'official Twitter', don’t authorize blindly!
Account hacks are commonplace in the crypto space. Vitalik has been hacked, SEC’s official Twitter has been hacked, and now the founder of Scroll has also been hacked.
When you see 'good news', don't rush in without thinking. First, verify through multiple channels like Discord, Telegram, or the official website. If only Twitter is shouting about it while other channels are silent, it’s definitely a hacked account.
3. Use an 'empty wallet' to experiment (this point is the most important!).
If you really can’t resist the urge to grab airdrops or click links, please develop a good habit:
Prepare a 'quarantine wallet'!
• Only keep a few dollars, the gas fee for level ten, don’t keep your main funds in there.
• Any new project or unclear link, only connect with this empty wallet.
• If you do get hacked, you might just lose a meal's worth of money; but if you use your main wallet with tens of thousands of U to click a link, once authorized, even gods can’t save you!
💡 Final summary:
The Scroll incident rings the alarm again: don’t blindly trust big shots, don’t believe in private messages, always assume every account could be hacked.
Protect your private keys well; in this circle, living long is more important than making quick money!
If you find this useful, give a like and share it with friends who are still clicking random links! 👇
