Hackers Exploit DB’s X Account for TRUMP Pump-and-Dump, Security Fears Rise

• DB’s X account was compromised, fueling a TRUMP token surge before attackers dumped holdings, impacting crypto traders and market stability.
• The attack method remains unknown, but experts suspect compromised browser extensions or an internal breach within X allowed unauthorized access.
• Blockchain investigator ZachXBT linked the incident to recent high-profile hacks targeting crypto platforms, raising concerns over coordinated cyber threats.

The X account of DB (@tier10K), a widely followed source for market-moving crypto news, was compromised in a significant security breach. Attackers took control of the account to promote pump-and-dump schemes involving the Official Trump (TRUMP) token and Hyperliquid (HYPE).

The breach resulted in a sharp price movement for both tokens. TRUMP surged 5.80% to $10.88, while HYPE fell 8.67% to $12.59, as reported by CoinMarketCap.

Bullish Tweets Trigger TRUMP Price Surge

The attackers used DB’s credibility to spread misleading bullish news about TRUMP, leading to a short-term price surge. Journalist Colin Wu of Wu Blockchain was among the first to report the hack. DB confirmed the breach, stating that all security measures, including physical Yubikey two-factor authentication (2FA), were enabled at the time of the attack. The source added that all sessions and keys had been reset as a precaution.

Speculation has emerged regarding how the hack was executed. While some believe hackers may have used compromised browser extensions to steal session cookies, others suggest a possible internal vulnerability at X. DB pointed out that no connected apps, API leaks, or unauthorized access history were detected, raising concerns about a deeper security flaw.

ZachXBT Identifies a Pattern of Crypto-Related Hacks

Blockchain investigator ZachXBT suggested that the same group responsible for DB’s breach may have been behind other recent attacks. High-profile crypto accounts, including Dogwifhat (WIF), Jupiter DEX, and Pump.fun, have faced similar security incidents. The synchronized attack methods cause concern among cryptocurrency specialists regarding forthcoming security threats.

Research found that criminals use multiple techniques to penetrate the crypto market. The online business magazine Forbes exposed a phishing campaign that used bogus emails pretending to be from Binance to force users toward downloading an imitation “Binance Desktop” program. The harmful software served as a Remote Access Trojan (RAT) to deliver attackers the capability to extract sensitive information from users.

The frequency of these breaches highlights the increasing vulnerabilities in the crypto industry. With trusted sources like DB being targeted, market participants are urged to remain vigilant. Security experts recommend minimizing the use of browser extensions, regularly updating security settings, and verifying information from multiple sources before acting on market-moving news.