Late Tuesday night, Trezor's X account was compromised. The hacker used his hardware wallet company's account to advertise a fake cryptocurrency presale with a malicious link attached.
Members of the cryptocurrency community quickly noticed the company's suspicious activity and warned other X users about the scam. Trezor's team has since regained control of the account.
Cryptocurrency community unites, new prey for hackers
In a now-deleted tweet, the hacker announced that Trezor “stands ready to support the $SLERF community.” Capitalize on ongoing efforts by crypto projects and exchanges to raise funds for participants affected by the Slerf presale debacle.
This unauthorized post proposed a pre-sale of fake $TRZR tokens and required interested users to send SOL to the hacker's address. In addition, Trezor supporters will receive a “separate bonus airdrop” when they visit the websites linked in the post.
As is customary in phishing scams, the link redirects to the wallet drainer that controls the user's wallet after the user attempts to “claim airdrop tokens.”
The cryptocurrency community shared their thoughts on this hack. One user said the security breach was a “bad impression” for the company, which focuses on cryptocurrency security. Others thanked the user for alerting them to the hack, as they were able to prevent themselves or others from falling victim to the hack.
It's worth noting that many users have expressed concern about the community's reaction to Slerf's presale drama. They believe that raising funds for affected participants will only set a precedent to “bail out” bad actors and “enable” similar acts.
Moreover, scammers are trying to prey on the goodwill of the community to help potential victims and newcomers. As seen with the Trezor hack, scammers appear to have taken advantage of the presale metatrend and her Slerf drama to maximize profits.
“Stupid” hackers or a smarter community?
Cryptocurrency hack recounts usually end with shocking numbers being stolen, but this time it's different. As ZachXBT reported, the hacker was able to steal his $8,100 from fraudulent posts, including a 25% water withdrawal fee. As another user noted, as part of the loot, the hacker also received “what a .96 Solana he is.”
Many wondered whether the small amounts were stolen because the community wisely recognized the scam or because the hackers were unable to carry out a large-scale heist. In any case, this is an amazing feat as this cold wallet company has amassed over 200,000 followers who instantly became potential victims.
Despite this small win for the community, one user said, “That's $8.1 million more than $0.” This raises the question of whether the hack was made possible by a lack of proper security measures, or if it was an inside job.
No official explanation has yet been given. Nevertheless, Trezor acknowledged the hack in his X post earlier today.
Alert
Despite robust protections such as strong passwords and 2FA, a security incident occurred overnight on the X/Twitter account. We are continuing to investigate.
Please keep in mind that Trezor never asks you to send funds or assets to any address. …
The company acknowledged that the hack occurred despite its “robust protections,” including two-factor authentication (2FA). As of this writing, Trezor continues to investigate. The statement concludes with a message to all users: “Please remain vigilant.”