Key Points:
- Cryptomist’s X account was hacked by Russian scammers.
- Hackers posted fake job offers to lure followers into phishing schemes.
- ZachXBT warned the community about the compromised account.
- Victims were directed to contact a Telegram account to further the scam.
Cryptomist’s X Account Targeted in Job Scam Hack
Community Alert: Russian scammers have compromised @Thecryptomist and are advertising fake jobs to followers in an effort to social engineer them into downloading malware.
— ZachXBT (@zachxbt) October 17, 2024
I usually do not flag smaller incidents like this one but I share 45+ mutuals with the compromised… pic.twitter.com/SM94GjSfWf
The popular crypto influencer known as The Cryptomist had her X (formerly Twitter) account compromised by hackers, who used the platform to promote fraudulent job offers. The cybercriminals, believed to be Russian scammers, aimed to deceive followers by offering enticing remote work opportunities, particularly in the Web3 space. This scam has raised concerns about the growing trend of hackers exploiting social media accounts to trick individuals into providing sensitive information or downloading harmful software.
ZachXBT Issues Community Warning
ZachXBT, a well-known figure in the cryptocurrency community, quickly alerted followers about the situation, cautioning them against engaging with the hacked account. With many mutual followers between ZachXBT and The Cryptomist, he emphasised the importance of verifying the legitimacy of job offers seen on social media. ZachXBT’s warning underscored how easy it is for followers to be misled by fraudulent schemes when high-profile accounts are compromised.
The scam’s approach is simple yet effective: it targets users by posting attractive job offers, such as one from the hacker posing as Cryptomist. The fraudulent post read, “Web3 position available (remote). Big project to work with,” which many users found appealing. Despite numerous warnings about online scams, several individuals commented on the post, eager to learn more about the job.
Scam Tactics Involving Telegram
Further investigation revealed that users who showed interest in the job offer received private messages from the hacker, instructing them to reach out to a Telegram handle, “@wzwz_eth.” Once contacted, victims were asked to sign up on a website supposedly associated with the job offer. As part of the process, they were told to provide their email address, username, and password under the pretext of accessing exclusive details about the project.
In a more alarming twist, victims were also asked to provide their usernames to be given special roles within the platform, a suspicious request often used by scammers to gain more control over a user’s account. Legitimate job offers rarely, if ever, ask for such sensitive information upfront, making this a clear red flag.
These scams are becoming increasingly common, and scammers frequently adapt their methods to deceive users. For instance, the request to provide a username to gain access to a “closed” website is a tactic often used to mask phishing attempts. By obtaining personal details, scammers can manipulate followers into providing access to more critical accounts or even financial information.
How to Stay Safe from Job Scams
The Cryptomist’s hacking incident serves as a reminder for users to remain vigilant when engaging with offers on social media. To avoid falling victim to these schemes, users should be cautious of unsolicited job offers that ask for personal information or direct them to obscure platforms. Always verify the legitimacy of the source before interacting with any job post, especially when it comes from a recently compromised account or an unfamiliar individual.
Followers of The Cryptomist and other influencers are advised to take proactive steps in protecting their accounts, such as enabling two-factor authentication (2FA) and keeping an eye out for any unusual activity. Additionally, it is essential to question requests for personal details, particularly when they come from new contacts on untrusted platforms like Telegram.
By recognizing the signs of fraudulent schemes and staying informed, users can better protect themselves from falling into traps designed to steal their information or compromise their accounts. This incident further highlights the importance of cybersecurity practices within the crypto and broader online communities.
The Cryptomist’s hacking case is a cautionary tale about the dangers of interacting with fraudulent job offers. With high-profile figures increasingly becoming targets of cybercriminals, it’s crucial for users to maintain awareness and adopt stringent security measures to avoid becoming victims of similar scams.
