A crypto scam hacked the Twitter and YouTube accounts of UK militaries

July 12, 2022
Crypto Scam Hacked Twitter YouTube Social Media Accounts UK Military Personnels Fraud Prevention

A crypto scam campaign has managed to hack the Twitter and YouTube accounts owned by the members of the UK Army. Based on reports, the threat actors hacked the social media accounts to disseminate bogus crypto giveaway promos and phoney non-fungible tokens (NFTs).

The hack was first noticed after a verified account of one of the armies showed fake crypto schemes and bogus NFT products. The hacked Twitter account’s image was altered and renamed as pssssd. The hacking resulted in tweeting and retweeting malicious links that can redirect users to crypto hacking scam sites.

For the hacked YouTube accounts, the channels started live-streaming older videos of Elon Musk to deceive viewers into accessing the crypto scam website Ark Invest. Fortunately, the British Ministry of Defence published a statement confirming that the hacked accounts were recovered and cleared.

 

Hackers who try a crypto scam campaign favours hacking verified accounts since it can reach numerous people.

 

Verified social media accounts of famous individuals and high-profile entities such as the UK Army becomes more profitable for malicious threat groups and their crypto scam campaigns. The adversaries can easily misuse and compromise these accounts for their financial gains.

In addition, scammers and hackers can exploit accounts for several malicious activities, such as sending fake account suspension notices as baits or scamming victims for money.

Months ago, verified threat actors hijacked Twitter accounts to distribute fake suspension messages to employees in a desperate attempt to harvest credentials from other verified users. The hackers can also sell these credentials to underground marketplaces at reasonable prices.

Threat actors may have been using social media sites as an easy way to conduct their cybercriminal acts, which is the reason for the increasing instances of similar activities.

Therefore, high-profile accounts like the UK military are commonly profitable targets that threat actors favour. Moreover, these hacks can promote fake crypto propaganda that can deceive unwitting users.

One of the ways that users can do to counteract such threats is to enable two-factor authentication. However, some hackers have found a method to bypass such a technique. Hence, users should keep logging out of their accounts regularly and not enable the autosaving feature for passwords.

To overcome that, one should keep logging out of their accounts regularly. If nothing, sessionIDs would get clear and stop the attack.

About the author