zkSync: The account theft was due to Twitter not following standard procedures and approving the request of the impersonator to change the password

2023-04-16 08:53:41

Collection

ChainCatcher news, zkSync released a detailed report regarding the hijacking of their Twitter account, stating that "the impersonator forged their identity and claimed to be an official representative of zkSync when contacting Twitter support. Unfortunately, Twitter's technical support staff did not follow standard procedures and approved the impersonator's request to change the email and password." Since zkSync had 2FA enabled, the attacker could not access the account, but due to the password change, the team was logged out and unable to access it. Twitter subsequently secured the account and is working closely to resolve the issue.

Additionally, "Twitter has expedited the application for the golden verified badge, and now there is a small zkSync symbol next to the names of all official affiliated accounts." (source link)

Related tags

zkSync Twitter hacked

ChainCatcher reminds readers to view blockchain rationally, enhance risk awareness, and be cautious of various virtual token issuances and speculations. All content on this site is solely market information or related party opinions, and does not constitute any form of investment advice. If you find sensitive information in the content, please click "Report", and we will handle it promptly.