估計接管Tron Dao X帳戶的黑客估計賺了45,000美元的不當徵收資金

TRON公共關係小組在與Cointelegraph進行了交談時確認，Tron Dao帳戶在5月2日發布了合同地址，並發送了直接消息以徵求付款，以換取Tron帳戶上的促銷廣告。作者：Alistair Squires。更新：2023年5月4日，pdt上午1:13。

A hacker who took over the Tron DAO X account is estimated to have made around $45,000 in improperly solicited funds, according to a spokesperson from Tron.

Tron的發言人說，一名接管Tron Dao X帳戶的黑客估計賺了45,000美元的不當徵收資金。

Speaking to Cointelegraph, the Tron public relations team confirmed that on May 2, the Tron DAO account posted a contract address and sent direct messages to solicit payments in exchange for promotional advertising on the Tron account.

TRON公共關係小組在與Cointelegraph進行了交談時確認，Tron Dao帳戶在5月2日發布了合同地址，並發送了直接消息以徵求付款，以換取Tron帳戶上的促銷廣告。

“Our security team quickly identified the intrusion and cut off access to the hacker, but we ask the community to continue to be vigilant. We will never ask anyone for payments like this via DM or otherwise,” they said.

他們說：“我們的安全團隊迅速確定了入侵並切斷了對黑客的機會，但我們要求社區繼續保持警惕。我們永遠不會通過DM或其他方式要求任何人這樣的付款。”

The team said that based on the illicit contract address the hacker posted, the amount improperly solicited appeared to be around $45,000.

該小組表示，根據黑客發布的非法合同地址，不當要求的金額似乎約為45,000美元。

Asked whether the same hacker could be responsible for the supposed New York Post’s X account hack on May 3, the Tron team told Cointelegraph that there “appear to be some similarities” between the two security incidents, however, they also cautioned that the investigation is ongoing and “any definitive connection would be premature.”

當被問及同一黑客是否可能負責5月3日所謂的《紐約郵報》的X帳戶黑客襲擊時，Tron團隊告訴Cointelegraph，這兩個安全事件之間“似乎有一些相似之處”，但是，他們還警告調查正在進行中，並且任何確定的聯繫都會過早。 ”

After regaining access, Tron DAO said in a May 2 X update that they suspect the hack resulted from a team member being “targeted in a malicious social engineering attack, which led to their account being compromised.”

重新獲得訪問後，特隆·道（Tron Dao）在5月2日的更新中說，他們懷疑這一黑客是由團隊成員“針對惡意的社會工程攻擊，這導致他們的帳戶受到損害”。

“Even after the perpetrator was logged out and our access restored, they continued contacting others, offering posts from our main account in exchange for payment,” Tron DAO said.

Tron Dao說：“即使在登記肇事者並恢復了我們的訪問權限後，他們仍繼續與其他人聯繫，從我們的主要帳戶中提供帖子以換取付款。”

The Tron team is still investigating and says they are in contact with law enforcement. Tron founder Justin Sun also accused crypto exchange OKX of failing to respond to a law enforcement request to freeze stolen funds connected to the attack.

TRON團隊仍在調查，並說他們正在與執法部門聯繫。 Tron創始人Justin Sun還指責Crypto Exchange OKX未能回應執法要求，以凍結與襲擊有關的被盜資金。

OKX founder and CEO Star Xu has publicly denied the allegation, and Sun has removed the original post with the accusation.

OKX創始人兼首席執行官XU已公開否認這一指控，Sun已用指控刪除了原始職位。

Curve Finance joins list of X account hacks

曲線融資加入X帳戶黑客列表

Decentralized lending protocol Curve Finance also recently suffered an X account takeover by a bad actor, adding to the growing list of high-profile firms and individuals “silently” accessed by social media hackers.

分散的貸款協議曲線融資最近還遭受了一位不良演員的X帳戶收購，這增加了社交媒體黑客“無聲地”訪問的備受矚目的公司和個人越來越多的清單。

In a now-deleted May 5 X post, a scammer posing as Curve Finance shared a link to a CRV airdrop with a weeklong registration period, which some eagle-eyed X users quickly suspected could be fraudulent.

在現在的5月5日X帖子中，曲線融資時擺姿勢的騙子與CRV Airdrop的鏈接具有為期一周的註冊期，一些鷹眼的X用戶很快懷疑可能是欺詐性的。

Curve Finance founder Michael Egorov confirmed in a reply to analyst CrediBULL Crypto that it was a bad actor posting sham links so far, “No other account appears to be hacked — the control over X account was just silently taken by someone.”

Curve Finance創始人Michael Egorov在對分析師Credibull Crypto的答復中證實，到目前為止，這是一個不好的演員，曾在Sham Links上發布Sham Links：“似乎沒有其他帳戶被黑客入侵 - 對X帳戶的控制只是被某人默默地採取的。”

The Curve Finance team has since regained access with the help of a team that included the cybersecurity group SEAL, and found that aside from posting scam links, the hacker also blocked some users who flagged the account takeover, including CrediBULL Crypto.

此後，Curve Finance團隊在包括網絡安全集團密封的團隊的幫助下重新獲得了訪問權限，發現除了發布騙局鏈接外，黑客還阻止了一些標記帳戶收購的用戶，包括Credibull Crypto。

The cause of the hack has yet to be shared publicly, but in response to a user’s query, the Curve finance team said it’s still “unclear how account” access was taken, and there was “No sign of any client-side compromise.”

該黑客的原因尚未公開共享，但是在回應用戶的查詢時，Curve Finance團隊表示，仍然“不清楚是如何訪問帳戶”的，並且“沒有任何客戶端妥協的跡象”。

Other high-profile X account hacks

其他備受矚目的X帳戶hacks

A slew of other high-profile X accounts have also been taken over by bad actors this year. On April 15, a member of the UK’s Parliament, Lucy Powell, had her account taken over to promote a scam crypto token called the House of Commons Coin (HOC).

今年，不好的演員也接管了許多其他備受矚目的X帳戶。 4月15日，英國議會議員露西·鮑威爾（Lucy Powell）接管了她的帳戶，以宣傳稱為下議院硬幣之家（HOC）的騙局加密代幣。

Crypto data aggregator Kaito AI and its founder, Yu Hu, were the victims of an X social media hack on March 15, when scammers posted that the Kaito wallets were compromised and users' funds were at risk.

加密數據聚合器Kaito AI及其創始人Yu Hu是3月15日的X社交媒體黑客攻擊的受害者，當時Scammers宣稱Kaito錢包受到了損害，用戶的資金處於危險之中。

Related: Breaking Bad star's X account hacked for memecoin scheme

相關：Breaking Bad Star的X帳戶被黑客入侵Memecoin計劃

Meanwhile, Pump.fun’s X account was also hacked on Feb. 26 and promoted several fake tokens, including a fraudulent governance token for the platform called Pump.

同時，Pump.Fun的X帳戶也於2月26日被黑客入侵，並推廣了幾個假令牌，其中包括名為Pump的平台的欺詐性治理令牌。