{"id":9695,"date":"2024-01-11T10:09:36","date_gmt":"2024-01-11T08:09:36","guid":{"rendered":"https:\/\/forklog.com\/en\/coingeckos-x-accounts-hacked-to-promote-scam\/"},"modified":"2024-01-11T10:09:36","modified_gmt":"2024-01-11T08:09:36","slug":"coingeckos-x-accounts-hacked-to-promote-scam","status":"publish","type":"post","link":"https:\/\/u1f987.com\/en\/coingeckos-x-accounts-hacked-to-promote-scam\/","title":{"rendered":"CoinGecko&#8217;s X Accounts Hacked to Promote Scam"},"content":{"rendered":"<p>Hackers breached the accounts of cryptocurrency market data aggregator CoinGecko on the social platform X.<\/p>\n<blockquote class=\"twitter-tweet\" data-lang=\"en\">\n<p lang=\"en\" dir=\"ltr\">Our Twitter accounts <a href=\"https:\/\/twitter.com\/coingecko?ref_src=twsrc%5Etfw\">@CoinGecko<\/a> and <a href=\"https:\/\/twitter.com\/GeckoTerminal?ref_src=twsrc%5Etfw\">@GeckoTerminal<\/a> have been compromised. We&#8217;re taking immediate steps to investigate the situation and secure our accounts.<\/p>\n<p>Please DO NOT click on any links or engage with suspicious content. Your security is our top priority.<\/p>\n<p>We&#8217;ll keep you\u2026<\/p>\n<p>\u2014 CoinGecko (@coingecko) <a href=\"https:\/\/twitter.com\/coingecko\/status\/1745158344191717746?ref_src=twsrc%5Etfw\">January 10, 2024<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>\u201cOur Twitter accounts CoinGecko and GeckoTerminal have been compromised. We are taking steps to investigate the situation and secure our accounts. Please DO NOT click on any links or engage with suspicious content,\u201d the team wrote.<\/p>\n<\/blockquote>\n<p>Hackers posted a message on the compromised pages about a giveaway of 125,000 tokens named GCKO. The scammers claimed that the purported CoinGecko-launched coin could be used to pay for the <span data-descr=\"Application Programming Interface \u2014 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u044b\u0439 \u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u044f\" class=\"old_tooltip\">API<\/span> of major Web3 infrastructure providers like Ankr.<\/p>\n<blockquote class=\"twitter-tweet\" data-lang=\"en\">\n<p lang=\"en\" dir=\"ltr\">Oh shit. Got my wallet drained of all <a href=\"https:\/\/twitter.com\/cornucopias?ref_src=twsrc%5Etfw\">@cornucopias<\/a> and other tokens by going to this? halp. <a href=\"https:\/\/twitter.com\/coingecko?ref_src=twsrc%5Etfw\">@coingecko<\/a> prolly hacked. <a href=\"https:\/\/t.co\/e73ttBQFYc\">pic.twitter.com\/e73ttBQFYc<\/a><\/p>\n<p>\u2014 Ruikku (@ruiqqu) <a href=\"https:\/\/twitter.com\/ruiqqu\/status\/1745153841971015854?ref_src=twsrc%5Etfw\">January 10, 2024<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>In the comments under the breach announcement, users actively inquired whether two-factor authentication (2FA) was enabled, drawing parallels <a href=\"https:\/\/u1f987.com\/en\/news\/secs-x-account-hacked-to-announce-fake-bitcoin-etf-approval\">with the hack<\/a> of the <span data-descr=\"\u041a\u043e\u043c\u0438\u0441\u0441\u0438\u044f \u043f\u043e \u0446\u0435\u043d\u043d\u044b\u043c \u0431\u0443\u043c\u0430\u0433\u0430\u043c \u0438 \u0431\u0438\u0440\u0436\u0430\u043c \u0421\u0428\u0410\" class=\"old_tooltip\">SEC<\/span> account. <\/p>\n<p>A few hours later, CoinGecko reported that they had regained control of the accounts.<\/p>\n<blockquote class=\"twitter-tweet\" data-lang=\"en\">\n<p lang=\"en\" dir=\"ltr\">UPDATE: We&#8217;d like inform you that both our accounts, <a href=\"https:\/\/twitter.com\/coingecko?ref_src=twsrc%5Etfw\">@CoinGecko<\/a> and <a href=\"https:\/\/twitter.com\/GeckoTerminal?ref_src=twsrc%5Etfw\">@GeckoTerminal<\/a>, have been successfully secured.<\/p>\n<p>Despite having 2FA enabled and implementing robust security measures, one of our team members clicked on a fraudulent Calendly link by accident, granting\u2026<\/p>\n<p>\u2014 CoinGecko (@coingecko) <a href=\"https:\/\/twitter.com\/coingecko\/status\/1745231782470099200?ref_src=twsrc%5Etfw\">January 10, 2024<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>\u201cDespite having 2FA enabled and robust security measures, one of our team members accidentally clicked on a fraudulent <span data-descr=\"\u043e\u0431\u043b\u0430\u0447\u043d\u044b\u0439 \u0441\u0435\u0440\u0432\u0438\u0441 \u0434\u043b\u044f \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 \u0432\u0438\u0434\u0435\u043e\u0432\u0441\u0442\u0440\u0435\u0447\" class=\"old_tooltip\">Calendly<\/span> link, granting unauthorized access to the application to a hacker, who then posted a message on our behalf,\u201d the team explained.<\/p>\n<\/blockquote>\n<p>Earlier in January, hackers <a href=\"https:\/\/u1f987.com\/en\/news\/netgear-and-hyundai-x-accounts-compromised-to-promote-crypto-scam\">breached X accounts<\/a> of Netgear and Hyundai to promote a crypto scam.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Hackers breached the accounts of cryptocurrency market data aggregator CoinGecko on the social platform X. Our Twitter accounts @CoinGecko and @GeckoTerminal have been compromised. We&#8217;re taking immediate steps to investigate the situation and secure our accounts. Please DO NOT click on any links or engage with suspicious content. Your security is our top priority. We&#8217;ll [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":9694,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"select":"","news_style_id":"","cryptorium_level":"","_short_excerpt_text":"","creation_source":"","_metatest_mainpost_news_update":false,"footnotes":""},"categories":[3],"tags":[1098,44,40],"class_list":["post-9695","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-analysis","tag-coingecko","tag-cybercrime","tag-twitter"],"aioseo_notices":[],"amp_enabled":true,"views":"19","promo_type":"","layout_type":"","short_excerpt":"","is_update":"","_links":{"self":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/9695","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/comments?post=9695"}],"version-history":[{"count":0,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/9695\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/media\/9694"}],"wp:attachment":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/media?parent=9695"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/categories?post=9695"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/tags?post=9695"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}