On 26 February, Pump.fun’s X (formerly known as Twitter) account was hacked to promote a fake governance token, “PUMP,” along with other fraudulent coins—another cybersecurity breach in the crypto space.
Blockchain investigator ZackXBT warned users to avoid the page and ignore any links from the compromised account.
According to ZackXBT, the Pump.fun hack is linked to the February 2025 breach of the Jupiter DAO account and the November 2024 compromise of DogWifCoin’s X account.
He emphasized that neither project was at fault.
ZachXBT wrote:
“Notably, for these attacks, it is likely not the fault of either the Pump.fun or Jupiter DAO teams. I suspect a threat actor is social engineering employees at X with fraudulent documents/emails or a panel is being exploited.”
The hackers’ first post falsely advertised PUMP as Pump.fun’s official governance token, using an image from the platform’s recent mobile app launch video alongside a Solana contract address.
The fake post included a link with purchasing information and read:
“Introducing PUMP, the official Pump.fun governance token, where democracy has never been this degen. We will also be rewarding our OG degens.”
Despite early warnings that the account was compromised and the token’s supply was concentrated in a few connected wallets, PUMP briefly surged past a $5 million market cap before its inevitable collapse.
Pump.fun co-founder Alon Cohen took to X to warn users not to engage with the compromised account.
He later confirmed that the team had yet to regain access but was actively working to restore control.
Meanwhile, the hacker exploited the situation, using the account to promote additional scam tokens.
Cohen stated that the team had followed all standard security protocols, suggesting the breach may have originated within X itself—a theory backed by on-chain investigator ZachXBT.
The Pump.fun team confirmed the hack and worked to restore the account, which has since been recovered.
They urged users to verify information from multiple sources before taking any action.
Despite Pump.fun’s repeated denials of any token launch, speculation among its users remained strong—so much so that many fell for a scam.
Some in the community even questioned whether the fraudulent PUMP token was legitimate, despite clear evidence to the contrary.
Bubblemaps revealed that the fake token’s supply was heavily concentrated, with two clusters holding over 60%.
Yet, not everyone was a victim—some traders exploited the situation.
One user spent $5,532 in SOL to buy the fake token, then sold their entire holdings just a minute later, pocketing over $135,000 in profit.
Bitcoin's recent surge to $45,000 sparks renewed interest and optimism in the crypto market, amidst the backdrop of potential Bitcoin ETFs and industry shakeups like the FTX collapse and changes at Binance.
YouQuanSingapore unveils National AI Strategy 2.0, charting a visionary path for global AI leadership in the next 3–5 years.
Hui XinUsers will be able to transfer money without any transaction fees.
AlexCisco introduces its AI Assistant for Security, revolutionising cybersecurity with AI-driven solutions and innovative features like simplified policy configuration and encrypted traffic analysis. With an emphasis on leveraging extensive data, this advancement marks a pivotal milestone in fortifying cyber defence landscapes.
JoyIn a bid to create a safer online environment, the UK is exploring innovative ways to enforce age verification on adult content sites under the recently enacted Online Safety Act 2023.
AaronFollowing a record burn of over 8.3 billion tokens, Shiba Inu's burn rate has soared by an unprecedented 7,686,774.46%, coinciding with a wider upsurge in the cryptocurrency market.
YouQuanElon Musk's xAI secures $865.3M in a major private sale, aiming for $1 billion, as anticipation builds for Grok's debut amid competitive AI dynamics.
Hui XinPorto Alegre in Brazil makes legislative history with the unanimous approval of an AI-drafted law, heralding a new era in lawmaking and technology integration.
YouQuanThe proposed tax code change would specifically apply to cryptocurrencies held for purposes other than short-term trading.
AlexAstraZeneca partners with AI firm Absci in a groundbreaking $247 million venture to develop advanced cancer-fighting antibodies, marking a significant stride in AI's integration with healthcare research.
YouQuan