{"id":21573,"date":"2025-02-27T14:01:40","date_gmt":"2025-02-27T12:01:40","guid":{"rendered":"https:\/\/forklog.com\/en\/pump-funs-x-account-hacked-to-promote-fraudulent-tokens\/"},"modified":"2025-02-27T14:01:40","modified_gmt":"2025-02-27T12:01:40","slug":"pump-funs-x-account-hacked-to-promote-fraudulent-tokens","status":"publish","type":"post","link":"https:\/\/u1f987.com\/en\/pump-funs-x-account-hacked-to-promote-fraudulent-tokens\/","title":{"rendered":"Pump.fun&#8217;s X Account Hacked to Promote Fraudulent Tokens"},"content":{"rendered":"<p>On February 26th, the X account of the &#8220;meme token factory&#8221; Pump.fun was hacked to promote fraudulent coins. The project team regained access to the account the same day.<\/p>\n<p><!--more--><\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">we&#8217;ve regained access to this account. Based on current information, the extent of the compromise was limited to this X account.<\/p>\n<p>TL:DR: the security protocols taken by the team to secure the X account were thorough, relied on industry best-practices, and focused on minimizing\u2026<\/p>\n<p>\u2014 pump.fun (@pumpdotfun) <a href=\"https:\/\/twitter.com\/pumpdotfun\/status\/1894812653865804256?ref_src=twsrc%5Etfw\">February 26, 2025<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>Initially, the hacker posted information about a fake governance token for platform users, including a wallet address. Later, they began promoting meme coins with names hinting at the hack itself (HACKED and hackeddotfun).<\/p>\n<p>On-chain investigator ZachXBT <a href=\"https:\/\/t.me\/investigations\/226\">linked<\/a> the Pump.fun hack to recent attacks on other X accounts. Among the victims were Jupiter DAO and DogWifCoin, which were also used to promote fake meme tokens.<\/p>\n<p>The expert <a href=\"https:\/\/t.me\/investigations\/226\">believes<\/a> that project representatives are not at fault for the incidents. ZachXBT suggested that the hacker &#8220;engages in social engineering of X employees using fake documents\/emails or exploits the system.&#8221;<\/p>\n<p>Previously, an X user with the nickname DFarmer accused Pump.fun of extracting $600 million from the ecosystem over the year and converting it to fiat.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">Some more stats. Wild numbers. <a href=\"https:\/\/t.co\/hFb1eBtMKI\">https:\/\/t.co\/hFb1eBtMKI<\/a><\/p>\n<p>\u2014 DFarmer (@OGDfarmer) <a href=\"https:\/\/twitter.com\/OGDfarmer\/status\/1894757114645528923?ref_src=twsrc%5Etfw\">February 26, 2025<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>He emphasized that the &#8220;meme token factory&#8221; launched nearly 9 million coins, none of which have a market capitalization exceeding $500 million.<\/p>\n<p>Since its launch in January 2024, Pump.fun&#8217;s total revenue from fees <a href=\"https:\/\/u1f987.com\/en\/news\/pump-fun-celebrates-anniversary-with-revenue-surpassing-430-million\">reached $431 million<\/a>.\u00a0<\/p>\n<p>Earlier, rumors surfaced that the platform might <a href=\"https:\/\/u1f987.com\/en\/news\/raydium-token-drops-29-amid-pump-fun-amm-rumors\">add<\/a> automated market maker (AMM) functions. A trader known as trenchdive reported that on February 20th, the Pump.fun team added the first test token CRACK to the AMM pool.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>On February 26th, the X account of the &#8220;meme token factory&#8221; Pump.fun was hacked to promote fraudulent coins. The project team regained access to the account the same day.<\/p>\n","protected":false},"author":1,"featured_media":21572,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"select":"","news_style_id":"","cryptorium_level":"","_short_excerpt_text":"","creation_source":"","_metatest_mainpost_news_update":false,"footnotes":""},"categories":[3],"tags":[1715,1246],"class_list":["post-21573","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-analysis","tag-pump-fun","tag-scammers"],"aioseo_notices":[],"amp_enabled":true,"views":"48","promo_type":"","layout_type":"","short_excerpt":"","is_update":"","_links":{"self":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/21573","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/comments?post=21573"}],"version-history":[{"count":0,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/21573\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/media\/21572"}],"wp:attachment":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/media?parent=21573"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/categories?post=21573"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/tags?post=21573"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}