Recently, there have been frequent incidents of Web3 project/celebrity X accounts being stolen and used to send phishing tweets. Hackers are good at using various means to steal user accounts. The more common routines are as follows:
Induce users to click on fake Calendly/Kakao meeting appointment links to steal user account authorization or control user devices;
Private messages trick users into downloading programs with Trojans (fake games, meeting programs, etc.). In addition to stealing private keys/mnemonics, Trojans may also steal X account permissions;
Use SIM Swap attacks to steal X account permissions that rely on mobile phone numbers.
The SlowMist security team assisted in solving many similar incidents. For example, on July 20, the account X of the TinTinLand project was stolen, and the attacker pinned a tweet containing a phishing link. With the assistance of the SlowMist security team, TinTinLand promptly solved the account theft problem and conducted authorization review and security reinforcement for the X account.
Considering the frequent victims, many users do not know much about how to enhance the security of the X account. The SlowMist security team will explain to you how to do authorization troubleshooting and security settings for the X account in this article. The following are the specific steps.
Let's take the Web end as an example. After opening the x.com page, click "More" in the sidebar and find the "Settings and privacy" option, which is mainly used to set the security and privacy of the account.
After entering the "Settings" column, select "Security and account access" to set the security and authorization access of the account.
View authorized applications
Many phishing methods take advantage of users accidentally clicking on authorized application links, resulting in the authorization of the tweeting permission of account X, which is then used to send phishing messages.
Troubleshooting method: Select the "Apps and sessions" column to view which applications the account has authorized. As shown in the following figure, the demo account has authorized these 3 applications.
After selecting a specific application, you can see the corresponding permissions. Users can remove permissions through "Revoke app permissions".
Check the delegation status
Troubleshooting method: Settings → Security and account access → Delegate
If you find that the current account has enabled invitation management, you need to go to "Members you’ve delegated" to check which accounts the current account has been shared with, and cancel the delegation as soon as possible when sharing is no longer needed.
Check abnormal login logs
If the user suspects that the account has been maliciously logged in, he can check the login log to view the device, date and location of the abnormal login.
Checking method: Settings → Security and account access → Apps and sessions → Account access history
As shown below, enter Account access history to view the model, login date, IP and region of the login device. If abnormal login information is found, it means that the account may have been stolen.
Check the login device
If a malicious login occurs after the X account is stolen, the user can check the login device of the current account and then kick the malicious login device offline.
Troubleshooting method: Select "Log out the device shown" to log out the account from a certain device.
Users can enable 2FA verification to enable two-factor verification insurance for their accounts to avoid the risk of their accounts being directly taken over after their passwords are leaked.
Configuration method: Settings → Security and account access → Security→ Two-factor authentication
You can set up the following 2FA to enhance the security of your account, such as SMS verification code, authenticator, and security key.
Additional password protection
In addition to setting an account password and 2FA, users can also enable additional password protection to further enhance the security of their X accounts.
Configuration method: Settings → Security and account access → Security → Additional password protection
Regularly checking authorized applications and login activities is the key to ensuring account security. The SlowMist Security Team recommends that users regularly perform authorization checks on the X account according to the troubleshooting steps to enhance account security and reduce the risk of being hacked. If you find that your account has been hacked, please take immediate measures to change the account password, conduct authorization checks, revoke suspicious authorizations, and set up security enhancements for the account.
Telegram game Tomarket has lifted some airdrop bans on players previously accused of cheating, but key details remain unclear, such as the number of reinstated players, token listing date, and total supply. Could more adjustments be on the horizon?
Catherine中国央行副行长陆磊罕见提到比特币创始人中本聪,称其值得“高度尊敬”。他指出,比特币已演变为昂贵的数字资产,逐渐脱离传统货币的流通属性。
MiyukiThe lawyer claims winners were chosen for their stories, not randomly, making this an unregistered lottery. It's unclear if Musk or America Pac members might face jail if charges proceed.
KikyoOpenSea is planning a major relaunch in December 2024 to reclaim its position in the NFT market after facing stiff competition from rivals like Blur.
AnaisGemini has launched an ad campaign emphasizing crypto's significance in the US election, with both Donald Trump and Kamala Harris discussing digital asset policies. This initiative reflects the increasing importance of crypto in political discourse and its potential electoral impact.
CatherineOpenAI is exploring a shift from a non-profit to a for-profit model, seeking guidance from California's attorney general on restructuring while maintaining its ethical commitments.
WeatherlyMeta will share its open-source AI with the US and allies to maintain a “technological edge” over China. In partnership with tech giants like Microsoft and Amazon, Meta aims to strengthen national security and global tech resilience.
Kikyo在台湾金融科技协会(TFTA)主办的FinTechOn 2024论坛上,立委葛如钧与多位区块链行业领袖共同探讨台湾虚拟资产服务提供商(VASP)在自律方面的可能路径。自律的优势与风险成了业界和政府的关注焦点。
AlexThe Global Dollar Network, backed by major fintech and crypto firms, has introduced USDG, a new stablecoin tied to the US dollar to promote stablecoin adoption globally. Issued by Paxos from Singapore, USDG aims to meet regulatory standards and encourage use in real-world transactions.
WeatherlyAn attendee was robbed at knifepoint by two assailants in Bangkok just days before the Devcon 7 conference. Although he escaped without physical harm, the incident has raised safety concerns within the crypto community.
Joy