The Pantera-backed CoinDCX lost its Twitter access to cybercriminals and was exploited for over 7 hours. The hackers responsible for the attack took control of the Twitter account and posted an XRP giveaway plan with a phishing link embedded in the message. Cybersecurity company PeckShield first flagged the incident where the account was hacked to promote the malicious $XRP GIVEAWAY links.
“Today we are pumping XRP. To support our community, we are announcing a 100,000,000 XRP GIVEAWAY. Please note: you can receive a bonus once. Please hurry!”, said the tweet posted by the attackers. The Twitter post also shared a phishing link that takes the user to fraudulent crypto websites.
After regaining control of the Twitter account, the crypto investment firm alerted about the hack and claimed that the hacker didn’t impact the organization and its customers’ data.
In a similar attack, last month threat actors compromised the Twitter account of PwC Venezuela, the South American arm of the Big 4 accounting firm. The attack, which used the same strategy, flooded the company’s Twitter account with fake XRP token giveaways. The company’s Twitter posts were filled with phishing links that led to a fraudulent Ripple event, which utilized Garlinghouse’s images as the thumbnails.