The crypto community faces a new type of X account hijacking attack that can bypass two-factor authentication.
ChainCatcher reported that cryptocurrency developer Zak Cole has disclosed a new type of phishing attack targeting X (formerly Twitter) accounts of crypto community members. This attack disguises itself as an authorization request from the Google Calendar app, luring users into granting full account control permissions. Attackers exploit X platform's app authorization mechanism, completely bypassing passwords and two-factor authentication.
MetaMask security researchers have confirmed that this attack is active in the wild. Users are advised to visit the connected apps page on X, check for and revoke suspicious "Calendar" app authorizations to ensure account security.
Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.
You may also like
AlphaTON Capital completes first $30 million TON purchase, becoming one of the largest TON holders globally
US August Core PCE Year-on-Year Expected at 2.9%, Focus on Inflation Impact
Trending news
MoreCrypto prices
More
