Business intelligence firm MicroStrategy's X account fell victim to a phishing attack on February 26, 2024, posting malicious links to a supposedly unofficial airdrop of an Ethereum-based token named "$MSTR". Users who clicked on the links were redirected to a carbon copy of the MicroStrategy web page, then inviting users to connect a wallet and claim the fictitious airdrop. By accepting a series of permissions in their Web3 wallet, users allowed the hackers to automatically drain the tokens from their wallet.
Consequences of the MicroStrategy X Account Attack
According to independent data from ZachXBT and Scam Sniffer, losses caused by the scammer have already exceeded US$440,000. A single user lost almost US$420,000 by transmitting tokens such as WBTC ($424,786). The hackers then divided these tokens between two wallet addresses associated with a hacking group known as PinkDrainer.
Features of the MicroStrategy X Account Attack
The phishing attack against MicroStrategy was fairly obvious, given MicroStrategy CEO Michael Saylor's recent optimistic statements about Bitcoin. The obviousness of the attack led some cryptocurrency experts to quickly point to the nature of the scam.
Community reactions
The cryptocurrency community reacted quickly to the incident, with experts like ZachXBT and Scam Sniffer helping to alert users and track the movements of the stolen tokens. Some commentators highlighted the naivety of users who fell for the scam, while others stressed the need to remain vigilant and always check sources before making financial decisions.
In conclusion, the phishing attack on MicroStrategy's X account illustrates the continuing risks for cryptocurrency users and the need to remain vigilant and always check sources before making financial decisions. Losses caused by the scammer have already exceeded US$440,000, demonstrating the seriousness of the incident and the urgent need to protect cryptocurrency users.
