The official Twitter accounts of Netgear and Hyundai MEA have been hijacked by malicious actors aiming to exploit over 160,000 followers with cryptocurrency scams and wallet drainer malware.
Hyundai acted promptly to regain control, eliminating any links leading users to malicious sites. Conversely, Netgear faces ongoing challenges in reclaiming its account, leaving some of the attackers’ tweets visible.
The attackers, in the case of Hyundai MEA, even went as far as renaming the account to impersonate Overworld, a well-known cross-platform multiplayer RPG, adding a layer of deception to their scheme.
The Netgear account, compromised since January 6th, was used to reply to BRCapp tweets, enticing followers to a deceptive website promising substantial rewards. Victims who connected their wallets to the site fell prey to asset and NFT theft orchestrated by the threat actors.
Notably, verified Twitter accounts with ‘gold’ and ‘grey’ checkmarks, belonging to businesses and government entities, are increasingly becoming targets for cryptocurrency-related scams, phishing, and drainer malware.
This incident adds to a growing list of high-profile account breaches, including those of CertiK and Mandiant, reinforcing the need for enhanced cybersecurity measures.