Cybercriminals hacked the Twitter account of the Robinhood trade on Wednesday. In a now-deleted tweet, the hacked account was used to advertise a rip-off providing crypto tokens and NFTs on the Binance Sensible Chain by the PancakeSwap decentralized trade.
Robinhood’s different social media profiles had been additionally compromised. In response to a Binance Sensible Chain scan shared by web sleuth ZackXBT, the scammers had been capable of make off with 26.95 BNB tokens, round $8,200.
ZackXBT famous that the pockets benefitting from the rip-off was hosted on the Binance cryptocurrency trade. Binance CEO Changpeng “CZ” Zhao responded, saying the account had been locked pending additional investigation.
“We’re conscious of the unauthorized posts from Robinhood Twitter, Instagram, and Fb profiles, which had been all eliminated inside minutes,” Robinhood wrote in a statement shared with Decrypt. “Presently, based mostly on our ongoing investigation, we imagine the supply of the incident was by way of a third-party vendor.”
Twitter scams aren’t new: accounts are usually compromised by sim jacking or phishing assaults. One lesser-known assault vector is Twitter’s “god mode” characteristic. On Wednesday, The Washington Publish reported {that a} former Twitter worker informed the FTC that the platform has a “god mode” that permits Twitter workers to entry any account on Twitter. Hackers getting access to this characteristic can impersonate any account they like and goal unaware victims.
Twitter has not but responded to Decrypt for remark.
On July 15, 2020, cybercriminals had been capable of get previous Twitter security. They impersonated a number of high-profile accounts, together with former US President Barack Obama, President (then Vice President) Joe Biden, Apple, Uber, Kanye West, Elon Musk, Invoice Gates, and Warren Buffet.
The compromised accounts started selling a Bitcoin rip-off that federal authorities say nabbed $117,000 in BTC. US and UK legislation enforcement officers arrested Nima Fazeli, Mason Sheppard, and Graham Ivan Clark in reference to the Twitter hack. Clark was in the end sentenced to 3 years in federal jail.
