Phishing campaign targets prominent X users, accounts at risk

When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.

It seems the attack originates from a range of phishing tactics, one being the notorious login notice.

This page is fake, and the victims have then unwittingly provided their credentials to a threat actor.

The campaign uses several phishing domains for this, like x-recoversupport[.

]com and securelogins-x[.

The criminal then takes over the account and begins using the accounts audience to advertise cryptocurrency scams.

Staying safe

To avoid such fraudulent schemes, investors should be ultra-careful that their investment is legitimate.

This puts victims at risk of identity theft or fraud.

Next, enablemulti-factor authentication or MFA, especially for sites that hold medical or financial information.

Another thing to look out for is mismatched or suspicious domains.

If you receive an email youre not expecting, especially one prompting action and including a link.

Check the spelling of the domain, e.g.

Faceb00k rather than Facebook.

Its never a bad idea to Google what the legitimate domain would be, either.