Vitalik Buterin fell victim to a cybersecurity attack on his social media account, leading to significant losses for those who fell for the malicious trap.
On Sept. 9, Dmitry Buterin, father to Ethereum (ETH) co-founder Vitalik Buterin, announced on X (formerly Twitter) that his son’s account on the social network had been hacked.
X users lose $691,000 to phishing scam
The senior Buterin disclosed the information while cautioning X users against interacting with a now-deleted message from his son’s account apparently celebrating the coming of Proto-Danksharding to Ethereum.
Disregard this post, apparently Vitalik has been hacked. He is working on restoring access. https://t.co/2fjM0GhvIa
Disregard this post, apparently Vitalik has been hacked. He is working on restoring access. https://t.co/2fjM0GhvIa
— dima.eth (@BlockGeekDima) September 9, 2023
The alleged hacker had shared what turned out to be a malicious link to a nonexistent commemorative NFT that required users to link their wallets, which were then drained of all funds.
Notable blockchain analyst ZachXBT reported that the incident resulted in collective victim losses surpassing $691,000.
Update: $691k drained (another 33% in drainer fee address) pic.twitter.com/AVIShqDlMU
— ZachXBT (@zachxbt) September 9, 2023
Update: $691k drained (another 33% in drainer fee address) pic.twitter.com/AVIShqDlMU
— ZachXBT (@zachxbt) September 9, 2023
Among the victims was Ethereum developer Bok Khoo, also known as Bokky Poobah. Khoo reported significant losses from his CryptoPunk NFT collection.
The deceptive message has since been taken down. However, by the time of going to press, it was still unclear whether Buterin reclaimed his account.
The incident comes amid a rising tide of phishing scams on social media. High-profile figures in the crypto industry including Binance CEO Changpeng Zhao (CZ) have voiced their concerns about the surge in such attacks.
Vitalik’s Twitter account got hacked. Use common sense when reading content on social media, even from large KOLs.
Twitter’s account security is not designed as financial platforms. It needs quite a bit more features: 2FA, login id should be different from handle or email, etc.… pic.twitter.com/oYQch8r2H0
— CZ 🔶 Binance (@cz_binance) September 10, 2023
They warn that bad actors often use verified bots and strategically target influential Crypto X accounts to spread their fake links. In the last few months, hackers have targeted the social media accounts of media personality Peter Schiff, Uniswap founder Hayden Adams, Sandbox CEO Arthur Madrid, and famed NFT artist Peeple, among others.
XRP in the eye of the scam
Just as concerning, the crypto community has been subjected to a wave of online scams related to Ripple Labs’ XRP token. There has been a proliferation of posts offering substantial XRP airdrops, leading to questions about the ability of platforms like X to curb spam and other malicious activity.
Despite recent assurances by X owner Elon Musk that the social network had eradicated most scams, crypto users have been of a different opinion.
Twitter is becoming as bad as LinkedIn from a spam point of view!
I have even more spam then I ever had before the last month!
Thought we were gonna rid ourselves of bots @elonmusk and these spammers are all blue check
— Coach K Crypto (@Coachkcrypto) September 6, 2023
Fraudulent activity, particularly involving crypto, has hardly abated. Ripple and its XRP token are consistently being targeted, especially after increased media attention following the company’s partial victory against the U.S. Securities and Exchange Commission (SEC) in July.