American cybersecurity company and Google Cloud subsidiary Mandiant had its X (previously Twitter) account compromised for far more than 6 hours by an unidentified attacker to propagate a cryptocurrency fraud.
As of writing, the account has been restored on the social media system.
It really is at present not distinct how the account was breached. But the hacked Mandiant account was originally renamed to “@phantomsolw” to impersonate the Phantom crypto wallet service, in accordance to MalwareHunterTeam and vx-underground.
Especially, the rip-off posts from the account advertised an airdrop fraud that urged consumers to click on on a bogus connection and make no cost tokens, with observe-up messages asking Mandiant to “adjust password please” and “check bookmarks when you get account back again.”
Mandiant, a foremost threat intelligence company, was obtained by Google in March 2022 for $5.4 billion. It is now component of Google Cloud.
“The Mandiant Twitter account takeover could have occurred [in] a quantity of approaches,” Rachel Tobac, CEO of SocialProof Security, explained on X.
“Some folks are providing the suggestions to switch on MFA to protect against ATO and of training course that is a fantastic plan generally *but it’s also attainable that somebody in Support at Twitter was bribed or compromised which permitted the attacker accessibility to Mandiant’s account*.”
The Hacker Information has reached out to Mandiant for even more comments, and we will update the tale when we listen to again.
Observed this article fascinating? Stick to us on Twitter and LinkedIn to study a lot more special content we article.
Some parts of this report are sourced from: