The New York Post’s official X account became the latest avenue for scammers to carry out cryptocurrency scam after it was hacked by scammers for targeting users. The hackers were found guilty of sending deceptive direct messages to crypto users on the platform.
New York Post’s X Accounts Hacked For Crypto Scams
Interesting New Scam Tactic 👀
If you have received this message from the @nypost (shoutout to @metrokatz for first reporting this), do not message the individual on Telegram,it is a scam!
What’s interesting about this case is that the scammer gained unauthorized access but… pic.twitter.com/Xr0c1Q87O3
— NFT_Dreww.eth (@nft_dreww) May 3, 2025
The security breach was first reported by Alex Katz, founder and CEO of blockchain security firm Kerberus, who posted a screenshot of a suspicious message sent via the verified @nypost account. The message, which was disguised as a request from journalist Paul Sperry, invited users to participate in a podcast and directed them to continue the conversation on Telegram, a known tactic used in crypto phishing campaigns.
Cybersecurity expert and NFT collector, Drew highlighted a key detail, unlike typical X hacks involving public wallet-draining links, this attacker operated more discreetly. “Instead of posting malicious links, the hacker is messaging users privately, then blocking them to avoid detection by the account’s legitimate operators,” he explained.
Drew also cautioned users, “It’s crucial to remember: even if you message someone daily, always verify their identity, never trust blindly! This trend will continue growing. For those who chat regularly, especially team members, it’s wise to establish a “safe word.” When asking each other to take actions, using this word helps confirm you’re truly speaking with the right person.”
Further reports from the crypto space indicate multiple users received similar messages. Donny Clutterbuck, a contributor to NFT Bitcoin’s Fomojis project, suggested that the scam may involve a potential Zoom exploit. According to Clutterbuck, clicking a pop-up prompt during a fake interview request, apparently to turn on the audio, can grant network access to the attacker.
Blockchain investigator ZachXBT noted parallels with a recent incident involving the X account of The Defiant, where similar fraudulent messages were sent from a compromised account.
This incident comes amid a surge in sophisticated crypto scams that rely on direct, private outreach rather than direct phishing links. The scamming trend has even taken off to offline routes and not just social platforms. Just last week, users reported receiving physical letters impersonating hardware wallet provider Ledger, urging them to reveal their recovery phrases under the guise of a security update.
Video conferencing platforms like Zoom have also become part of the scamming medium. Earlier this year, Emblem Vault CEO Jake Gallen reported losing $100,000 in assets after malware was installed during a fake Zoom interview arranged via X.
