KuCoin’s official Twitter account was hacked, resulting in a fake giveaway scam that led to the theft of over $22.6k in cryptocurrency. The cryptocurrency exchange has promised to fully reimburse all verified losses caused by the hack of its official Twitter handle.
It assures that all users’ assets on the platform remain entirely secure. The hackers set up a convincing campaign similar to the platform’s regular promotional events, which made it easy for them to trick users.
Furthermore, the malicious giveaway was hosted on “kucoinevent[.]com,” which claimed to be airdropping 5,000 Bitcoin and 10,000 Ethereum to celebrate the exchange’s milestone of reaching 10 million users.
Although the account was hacked for only 45 minutes, the crypto exchange says it was enough time for its followers to send 22 Bitcoin and Ethereum transactions, allowing the hackers to steal $22,600. The scammers posted fake user comments confirming the validity of the giveaway and helping convince visitors who might have some reservations.
Users affected by this incident are urged to contact KuCoin’s support team and ignore all advice or recommendations from other channels.
Additionally, Twitter is known for fake cryptocurrency support bots, so it is not advised to post issues to the site or respond to anyone offering help. The company promised to implement additional security measures on top of Twitter’s existing two-factor authentication protection to prevent similar incidents from re-occurring in the future.
Scammers have found that hacking official Twitter accounts of cryptocurrency exchanges can lead to quick cashouts, as posts from official handles appear trustworthy and thus more likely to trick many people, even in a short time.
In late January 2023, a hacker took over the Twitter account of the cryptocurrency trading platform Robinhood and promoted a fake token (“RBH”) launch that people invited to buy for $0.0005 each. In September 2022, a similar incident impacted the Twitter account of the cryptocurrency exchange platform CoinDCX, with the attackers promoting fake XRP (Ripple) ads.
A reliable method to confirm whether a giveaway is real is to check for similar posts on all of the platform’s social media channels and the official website. If you see it only in one place, it’s likely a scam.
