The blockchain security firm PeckShield has announced the compromise of Beoble’s X account. Notably, this account has been caught spreading a phishing link. It deceitfully prompts users to verify their eligibility for an airdrop.
This incident marks a rising trend of cybercriminal sophistication targeting the crypto community.
Beoble’s X Account Remains in Hackers’ Control
Beoble, a Web3-based chatting platform backed by industry heavyweights like Animoca Brands, Samsung Next, HashKey Capital, and Digital Currency Group, is now at the center of a security breach. Users are advised against clicking any links from Beoble’s X account until further notice. Currently, the account remains under unauthorized control.
The phishing attempt is notably cunning, leveraging the verified status of Beoble’s X account to lend credibility to the airdrop scam. It promises users a chance to claim an airdrop, an effective tactic despite widespread awareness campaigns about such scams.
According to Scam Sniffer, a significant increase in personal crypto scams was observed last month. Remarkably, about 57,000 individuals became victims, suffering a collective loss of nearly $47 million. Most of these scams were executed via phishing on various social media platforms, including X (formerly Twitter).
Particularly, Ethereum mainnet users bore the brunt, accounting for 78% of February’s total victims. Theft from these users amounted to $36.2 million, emphasizing the urgent need for increased vigilance and security. Additionally, Ethereum-based ERC20 tokens represented about $40 million of the stolen assets, showcasing the extensive reach of these operations.
However, it’s not all grim news. Success stories in combating such attacks exist. For instance, ZachXBT recently foiled a phishing attempt targeting $4.3 million in Artificial Liquid Intelligence (ALI) tokens. This victory involved quick community action and an emergency governance vote to burn the compromised tokens.
Ashish Singhal, the co-founder of the crypto exchange CoinSwitch, advised users to stay alert amidst rising phishing attacks.
“Double-check all access and signatures you make for your wallets. If you are not confident or not well versed with on-chain security, use a trusted custodial service,” Singhal advised.