Scammers hack Mandiant X accounts to promote crypto fraud
January 4, 2024
Cybersecurity giant Mandiant’s X account was hacked and attackers used it to impersonate the Phantom crypto wallet and facilitate cryptocurrency fraud.
Fraudsters hacked cybersecurity company Mandiant’s X account and used it to impersonate the Phantom crypto platform and share cryptocurrency scams.
Mandiant, a company owned by Google, has more than 120,000 followers on its X account.
Once the cybercriminals took control of the account, they changed its name to @phantomsolw and began promoting a fraudulent website masquerading as Phantom encryption service.
The attackers exploited this account to facilitate airdrop fraud. Followers were encouraged to see if they were among her 250,000 lucky people eligible to receive free tokens. The scam was designed to extract funds from the victim’s wallet.
This account was under the attacker’s control for several hours.
“We are aware of an incident that affected the Mandiant X account. We have since regained control of the account and are currently working on restoring it,” a Mandiant spokesperson told multiple media read the statement sent to.
The attackers also trolled Mandiant with posts such as: “We’re sorry, but please change your password.” “Please check your bookmarks when you get your account back.”
At this point, the cybersecurity company regained control of the X account.
Follow us on Twitter: @securityaffairs and Facebook and mastodon
(Security related matters – Hacking, X)