估计接管Tron Dao X帐户的黑客估计赚了45,000美元的不当征收资金

TRON公共关系小组在与Cointelegraph进行了交谈时确认，Tron Dao帐户在5月2日发布了合同地址，并发送了直接消息以征求付款，以换取Tron帐户上的促销广告。作者：Alistair Squires。更新：2023年5月4日，pdt上午1:13。

A hacker who took over the Tron DAO X account is estimated to have made around $45,000 in improperly solicited funds, according to a spokesperson from Tron.

Tron的发言人说，一名接管Tron Dao X帐户的黑客估计赚了45,000美元的不当征收资金。

Speaking to Cointelegraph, the Tron public relations team confirmed that on May 2, the Tron DAO account posted a contract address and sent direct messages to solicit payments in exchange for promotional advertising on the Tron account.

TRON公共关系小组在与Cointelegraph进行了交谈时确认，Tron Dao帐户在5月2日发布了合同地址，并发送了直接消息以征求付款，以换取Tron帐户上的促销广告。

“Our security team quickly identified the intrusion and cut off access to the hacker, but we ask the community to continue to be vigilant. We will never ask anyone for payments like this via DM or otherwise,” they said.

他们说：“我们的安全团队迅速确定了入侵并切断了对黑客的机会，但我们要求社区继续保持警惕。我们永远不会通过DM或其他方式要求任何人这样的付款。”

The team said that based on the illicit contract address the hacker posted, the amount improperly solicited appeared to be around $45,000.

该小组表示，根据黑客发布的非法合同地址，不当要求的金额似乎约为45,000美元。

Asked whether the same hacker could be responsible for the supposed New York Post’s X account hack on May 3, the Tron team told Cointelegraph that there “appear to be some similarities” between the two security incidents, however, they also cautioned that the investigation is ongoing and “any definitive connection would be premature.”

当被问及同一黑客是否可能负责5月3日所谓的《纽约邮报》的X帐户黑客袭击时，Tron团队告诉Cointelegraph，这两个安全事件之间“似乎有一些相似之处”，但是，他们还警告调查正在进行中，并且任何确定的联系都会过早。”

After regaining access, Tron DAO said in a May 2 X update that they suspect the hack resulted from a team member being “targeted in a malicious social engineering attack, which led to their account being compromised.”

重新获得访问后，特隆·道（Tron Dao）在5月2日的更新中说，他们怀疑这一黑客是由团队成员“针对恶意的社会工程攻击，这导致他们的帐户受到损害”。

“Even after the perpetrator was logged out and our access restored, they continued contacting others, offering posts from our main account in exchange for payment,” Tron DAO said.

Tron Dao说：“即使在登记肇事者并恢复了我们的访问权限后，他们仍继续与其他人联系，从我们的主要帐户中提供帖子以换取付款。”

The Tron team is still investigating and says they are in contact with law enforcement. Tron founder Justin Sun also accused crypto exchange OKX of failing to respond to a law enforcement request to freeze stolen funds connected to the attack.

TRON团队仍在调查，并说他们正在与执法部门联系。 Tron创始人Justin Sun还指责Crypto Exchange OKX未能回应执法要求，以冻结与袭击有关的被盗资金。

OKX founder and CEO Star Xu has publicly denied the allegation, and Sun has removed the original post with the accusation.

OKX创始人兼首席执行官XU已公开否认这一指控，Sun已用指控删除了原始职位。

Curve Finance joins list of X account hacks

曲线融资加入X帐户黑客列表

Decentralized lending protocol Curve Finance also recently suffered an X account takeover by a bad actor, adding to the growing list of high-profile firms and individuals “silently” accessed by social media hackers.

分散的贷款协议曲线融资最近还遭受了一位不良演员的X帐户收购，这增加了社交媒体黑客“无声地”访问的备受瞩目的公司和个人越来越多的清单。

In a now-deleted May 5 X post, a scammer posing as Curve Finance shared a link to a CRV airdrop with a weeklong registration period, which some eagle-eyed X users quickly suspected could be fraudulent.

在现在的5月5日X帖子中，曲线融资时摆姿势的骗子与CRV Airdrop的链接具有为期一周的注册期，一些鹰眼的X用户很快怀疑可能是欺诈性的。

Curve Finance founder Michael Egorov confirmed in a reply to analyst CrediBULL Crypto that it was a bad actor posting sham links so far, “No other account appears to be hacked — the control over X account was just silently taken by someone.”

Curve Finance创始人Michael Egorov在对分析师Credibull Crypto的答复中证实，到目前为止，这是一个不好的演员，曾在Sham Links上发布Sham Links：“似乎没有其他帐户被黑客入侵 - 对X帐户的控制只是被某人默默地采取的。”

The Curve Finance team has since regained access with the help of a team that included the cybersecurity group SEAL, and found that aside from posting scam links, the hacker also blocked some users who flagged the account takeover, including CrediBULL Crypto.

此后，Curve Finance团队在包括网络安全集团密封的团队的帮助下重新获得了访问权限，发现除了发布骗局链接外，黑客还阻止了一些标记帐户收购的用户，包括Credibull Crypto。

The cause of the hack has yet to be shared publicly, but in response to a user’s query, the Curve finance team said it’s still “unclear how account” access was taken, and there was “No sign of any client-side compromise.”

该黑客的原因尚未公开共享，但是在回应用户的查询时，Curve Finance团队表示，仍然“不清楚是如何访问帐户”的，并且“没有任何客户端妥协的迹象”。

Other high-profile X account hacks

其他备受瞩目的X帐户hacks

A slew of other high-profile X accounts have also been taken over by bad actors this year. On April 15, a member of the UK’s Parliament, Lucy Powell, had her account taken over to promote a scam crypto token called the House of Commons Coin (HOC).

今年，不好的演员也接管了许多其他备受瞩目的X帐户。 4月15日，英国议会议员露西·鲍威尔（Lucy Powell）接管了她的帐户，以宣传称为下议院硬币之家（HOC）的骗局加密代币。

Crypto data aggregator Kaito AI and its founder, Yu Hu, were the victims of an X social media hack on March 15, when scammers posted that the Kaito wallets were compromised and users' funds were at risk.

加密数据聚合器Kaito AI及其创始人Yu Hu是3月15日的X社交媒体黑客攻击的受害者，当时Scammers宣称Kaito钱包受到了损害，用户的资金处于危险之中。

Related: Breaking Bad star's X account hacked for memecoin scheme

相关：Breaking Bad Star的X帐户被黑客入侵Memecoin计划

Meanwhile, Pump.fun’s X account was also hacked on Feb. 26 and promoted several fake tokens, including a fraudulent governance token for the platform called Pump.

同时，Pump.Fun的X帐户也于2月26日被黑客入侵，并推广了几个假令牌，其中包括名为Pump的平台的欺诈性治理令牌。