Hackers Take Over Crypto Hardware Wallet Trezor’s X Account, Promote Scam Solana Token

In a startling security breach, the official X account of Trezor, a renowned cryptocurrency hardware wallet manufacturer, fell victim to a suspected SIM-swap attack on March 19th. 

The compromised account was used to promote a fraudulent token presale, raising alarms within the crypto community.

The hacked account began posting nefarious posts touting a fake Trezor “$TRZR” presale token on the Solana network. 

These posts instructed users to send funds to an unknown Solana wallet address and included links that directed unsuspecting victims to “wallet drainer” contracts designed to steal their digital assets.

Independent blockchain sleuth ZachXBT was the first to notify his 528,000 followers about the suspected breach, and crypto security service Scam Sniffer swiftly flagged the suspicious activity.

Community alert: Trezor X/Twitter account is currently compromised pic.twitter.com/hNm2OUjEgE

— ZachXBT (@zachxbt) March 19, 2024

Hackers Steal $8,100 from Trezor’s Zapper Account

In addition to promoting the fraudulent token presale, the hackers stole approximately $8,100 from Trezor’s Zapper account, according to ZachXBT’s estimate. 

“Imagine hacking the Trezor account only to steal $8.1K (includes 25% drainer fee),” he commented, highlighting the relatively small sum obtained from the high-profile breach.

The incident has significantly damaged Trezor’s reputation as a security-focused hardware wallet manufacturer. 

Crypto commentator John Holmquist slammed the company, questioning why a firm dedicated to security did not implement basic measures like two-factor authentication (2FA) to secure its social media accounts.

“Please take account security more seriously,” Holmquist stressed, expressing frustration at the apparent lack of precautions taken by a company that has sold over 2 million hardware wallets globally since its launch in 2012.

Trezor is not having a presale.

Trezor's account is compromised…

Good time to mention you can use a Trezor as a security key for 2FA to secure your Twitter account?

Absolutely major L from a security company, please take account security more seriously. pic.twitter.com/ZQtgqdRx6G

— Jon_HQ (@Jon_HQ) March 19, 2024

Community Outrage and Calls for Improved Security Practices

The breach sparked outrage within the crypto community, with users finding it ironic and shameful that a security-centric company could not secure its social media presence. 

.@Trezor's account is hacked

There's some deep irony that these hardware wallet companies can't even secure their own twitter accounts pic.twitter.com/z4j7gVHJey

— Pledditor (@Pledditor) March 19, 2024

X user Pledditor questioned how a firm focused on security could fail to protect its accounts. At the same time, DigitalHustlerX remarked,

“It’s hard, funny, and shameful at the same damn time that they don’t take their own advice.”

As Trezor works to address the fallout from the hack, the incident serves as a stark reminder of the importance of implementing robust security measures, even for companies specializing in cybersecurity solutions. 

The crypto community will undoubtedly scrutinize Trezor’s response and demand improved security practices to prevent similar breaches in the future.