Crypto security company CertiK’s X account was compromised
[ad_1]
The CertiK account, which has more than 340,000 followers, apparently posted the malicious link, urging followers to use it to protect against cyber incidents.
Cryptocurrency auditor CertiK has become the latest victim of a hacker attack after he posted a fake Revoke Cash link on his X page, redirecting users to wallet churners. In a now-deleted post, CertiK alerted users to a vulnerability in the Uniswap Router contract that “allowed an attacker to move anyone’s tokens with approval from the Uniswap contract.”
To lure victims, the hackers added a link to a deceptive website pretending to be Revoke.cash, an online tool for managing token approvals.
Revoke.cash’s official X account refuted the statement, suggesting that CertiK’s X page may have been hacked as Uniswap “was not compromised.” As of press time, CertiK has not issued a public statement on the matter.
In mid-December 2023, crypto.news reported that CertiK’s official website also temporarily served a Discord link that redirected users to a fake server with malware. Blockchain community members @PopPunkOnChain and @Burnttoken brought attention to the discovery, saying the fraudulent server hosted a fake CollabLand bot and malware designed to steal crypto wallet assets. However, CertiK has not publicly commented on the incident since then.
In November 2023, cryptocurrency detective ZachXBT warned users that there was a “large network of bot accounts” on X posing as cryptocurrency detectives. According to multiple reports, scammers try to trick victims by impersonating CertiK and Scam Sniffer.
