Cryptocurrency platforms continue to be targeted by social media attacks

Cryptocurrency platforms continue to be targeted by social media attacks. Two platforms — Tron DAO and Curve Finance — recently fell victim to unauthorized takeovers of their X accounts.

These incidents, which resulted in financial losses and highlighted the ease with which scammers can manipulate users, began on May 2, when a bad actor gained control of Tron DAO’s verified X account.

The hacker posted a deceptive contract address and messaged users with false offers, scamming them out of approximately $45,000 before the team regained control.

The breach occurred after a Tron team member was tricked into revealing access credentials. Even after losing access, the attacker contacted users off-platform, falsely claiming to represent Tron DAO.

“We will never request any payments through DM and we will never contact you off-platform,” said Tron. “Please stay vigilant and report any suspicious activity.”

In a separate incident on May 5, an attacker took control of Curve Finance’s X account and posted a link advertising a fake CRV token airdrop.

Users quickly notified other members of the community that the post was fraudulent, prompting Curve to take action. With the help of cybersecurity group SEAL, the Curve team was able to regain access to the account.

Founder Michael Egorov confirmed that no internal systems were compromised.

A Growing Pattern and Ongoing Investigations

The Tron DAO breach is part of a larger trend of social media exploitation, with similarities emerging between the New York Post breach on May 3 and the Tron hack, suggesting a possible connection. However, both platforms are investigating the incidents further.

In a related controversy, Sun accused crypto exchange OKX of failing to freeze stolen assets, but OKX CEO Star Xu refuted the allegations.

The Tron team is fully cooperating with relevant authorities to investigate the breach and hold the perpetrators accountable.

These incidents highlight the ongoing vulnerability of social media platforms to scammers who impersonate trusted accounts and deceive users into transferring funds.

Both breaches at Tron DAO and Curve Finance highlight the critical need for enhanced security measures in the crypto industry.

These breaches demonstrate how social engineering and weak account protections can lead to financial harm. Social media platforms are prime targets for scammers who exploit weak points in security to impersonate trusted entities.

Crypto firms should implement stronger authentication systems, tighten internal access policies, and provide training to employees on recognizing social engineering tactics. Meanwhile, users must remain cautious when interacting with direct messages, verifying messages through official channels, and avoiding suspicious links or payment requests.