Mandiant’s Twitter account restored after six-hour crypto scam hack


The X account (formerly Twitter) of US cybersecurity company and Google Cloud subsidiary Mandiant was compromised for over six hours by an unknown attacker to spread a cryptocurrency scam.

At the time of writing, the account has been recovered on the social media platform.

It is currently unclear how the account was hacked. But the hacked Mandiant account was initially renamed to “@phantomsolw” to masquerade as the Phantom crypto wallet service. MalwareHunterTeam And vx-underground.

Specifically, the account’s scam posts promoted an airdrop scam that urged users to click a fake link and earn free tokens, with follow-up messages asking Mandiant to “change password please” and “check bookmarks when you access your account back”.

Mandiant, a leading threat intelligence company, was acquired by Google in March 2022 for $5.4 billion. It is now part of Google Cloud.

“The takeover of the Mandiant Twitter account could have happened [in] in a number of ways,” Rachel Tobac, CEO of SocialProof Security, said on X.

“Some people recommend enabling MFA to prevent ATO and that’s always a good idea *but it’s also possible that someone from Twitter support was bribed or compromised to give the attacker access to Mandiant’s account *.”


#Mandiants #Twitter #account #restored #sixhour #crypto #scam #hack

Notify of
Inline Feedbacks
View all comments
Previous Post
Remcos RAT

UAC-0050 group uses new phishing tactics to spread Remcos RAT

Next Post
PikaBot Loader Malware

Water Curupira hackers are actively spreading PikaBot Loader malware

Related Posts