The official Twitter account of Trezor, a hardware wallet manufacturer, experienced a breach resulting in fraudulent presale token offerings being promoted. Blockchain analyst ZachXBT alerted his followers to this suspicious activity, which was subsequently flagged by the crypto security service Scam Sniffer. The nefarious posts advertised a fake Trezor token presale on the Solana network and directed users to send funds to a fraudulent wallet address.
The hacker behind the breach managed to siphon approximately $8,100 from Trezor’s Zapper account. The compromised tweets also referenced a new meme coin called Slerf on the Solana network, potentially aimed at increasing engagement. Despite the swift removal of many of these posts, the incident was considered a significant loss by crypto commentators and users, raising concerns about Trezor’s account security practices.
Critics highlighted the irony of a security-focused hardware wallet company failing to secure its own social media account, emphasizing the importance of prioritizing account security. This breach follows a previous security incident in January where the contact information of nearly 66,000 users was exposed. Despite selling over 2 million hardware wallets since its inception in 2012, Trezor faces scrutiny over its handling of account security and its failure to implement two-factor authentication (2FA) measures.
