Over 15 prominent X accounts were recently compromised, with attackers deploying a wave of phishing scams targeting Solana investors. By launching fraudulent meme tokens and promoting them via hijacked social media pages, the hackers amassed an estimated $500,000, according to blockchain investigator ZachXBT, who disclosed the findings on December 24.
Notable victims include Brett, Kick Streaming, and Alex Blania. The breached accounts were used to promote new tokens with contract addresses, enticing unsuspecting users to invest in Solana (SOL).
ZachXBT uncovered over 15 related incidents since November 26, all linked to a coordinated effort by an unidentified actor.
How the Attackers Operated The investigation revealed that the attackers mimicked X support agents to manipulate victims. They employed scare tactics, such as falsely claiming violations of terms of service or copyright policies, to steal credentials.
Since Elon Musk’s acquisition of X (formerly Twitter), the platform has gained global prominence as a hub for free speech and creator-driven initiatives. However, this increased visibility has also made it a lucrative target for cybercriminals.
Hackers exploited X’s widespread usage by inundating users with phishing links, leveraging urgency to bypass security protocols. ZachXBT urged users to enhance their cybersecurity measures by avoiding email address reuse across platforms and adopting security keys for two-factor authentication (2FA) on critical accounts.