DB（@tier10k）的官方X（以前為Twitter）是一位以“可操作，市場動作，加密新聞”而聞名的消息來源。

特朗普令牌已成為騙子促進其攻擊的新工具。根據《福布斯》，一個惡意的電子郵件活動欺騙了Binance，吸引了毫無戒心的用戶

The official X (formerly Twitter) account of DB (@tier10K), a primary source known for “Actionable, Market-Moving, Crypto News,” was compromised in a major security breach.

DB（@tier10k）的官方X（以前是Twitter）是以“可操作，營銷，加密新聞”而聞名的主要來源，在重大安全漏洞中受到了損害。

The attackers used the account to conduct pump-and-dump schemes, first promoting the Official Trump (TRUMP) token and later targeting Hyperliquid (HYPE). Despite the breaches, TRUMP's price surged 5.80% to $10.88, while Hyperliquid (HYPE) dropped 8.67% to $12.59, according to CoinMarketCap data.

攻擊者使用該帳戶進行泵送計劃，首先促進了官方的特朗普（特朗普）代幣，後來瞄準了超流動性（HYPE）。根據CoinMarketCap數據，儘管違反了違規，但特朗普的價格飆升了5.80％至10.88美元，而Hyplliquid（Hype）下跌了8.67％至12.59美元。

According to reports, DB's Twitter account was hacked, leading to the posting of fake news. Earlier, DB had reported that the Trump Meme token would have real utility, but the post was later deleted.

據報導，DB的Twitter帳戶被黑客入侵，導致了假新聞的發布。 DB早些時候報導說，特朗普模因令牌將具有真正的效用，但後來被刪除了。

Account Takeover: Details Emerge

帳戶收購：詳細信息出現

Journalist Colin Wu (Wu Blockchain) was among the first to report the hack of D's account. The hacker methodically tweeted out bullish news surrounding TRUMP and HYPE to artificially inflate the price of TRUMP before dumping it.

記者Colin Wu（WU區塊鏈）是第一個報告D的賬戶黑客賬戶的人之一。這位黑客有條不紊地在推特上發布了有關特朗普和炒作的看漲新聞，以人為地誇大特朗普的價格，然後再傾倒特朗普的價格。

"Obviously hacked. Do not trust any messages for now. Unclear what happened, 2FA/Yubikey etc. all enabled. Will post details when I get them. No connected apps, nothing in access history/sessions, no delegated accounts, not an API key leak (no API post quota used)."

“顯然被黑客入侵。現在不信任任何消息。不清楚發生了什麼，2fa/yubikey等。所有這些都啟用了。當我獲得它們時，將發布詳細信息。沒有連接的應用程序，訪問歷史記錄/會話中沒有任何內容，沒有授權的帳戶，而不是API鍵洩漏（沒有使用API​​ Post Post Prounda（使用API​​ Post Frounda）。”

Related: TRUMP Whale Lands $11.8M Profit, Swallows $24M Hit, Yet Keeps Investing

相關：特朗普鯨魚的利潤為1,180萬美元，吞嚥2400萬美元，但繼續投資

Further elaborating, DB revealed that they had enabled the physical Yubikey 2FA and suspects a compromised X employee could be responsible for the hack. "All keys and sessions have been reset regardless," added DB.

進一步詳細說明，DB透露，他們使物理Yubikey 2FA和懷疑受損的X員工可能負責黑客攻擊。 DB補充說：“無論如何，所有鍵和會話都已重置。”

How Did the Hack Happen?

黑客是怎麼發生的？

The incident has prompted speculation about the methods used by hackers. A market participant, "Vida," suggested that widely used browser extensions, such as Adblock, might have been compromised to steal cookies, allowing attackers to hijack highly secure accounts.

該事件引發了人們對黑客使用的方法的猜測。市場參與者“ VIDA”建議，使用廣泛使用的瀏覽器擴展名（例如Adblock）可能已被妥協以竊取餅乾，從而使攻擊者能夠劫持高度安全的帳戶。

Others have raised concerns about a potential internal breach within X, where hackers might be exploiting vulnerabilities in employee access.

其他人則對X內潛在的內部違規行為提出了擔憂，黑客可能正在利用員工訪問中的漏洞。

A Wider Pattern of Attacks

更廣泛的攻擊模式

Blockchain investigator ZachXBT has suggested that the same attacker behind this hack was likely responsible for similar breaches. This incident follows a wave of recent hacks involving prominent X accounts, including Dogwifhat (WIF), Jupiter DEX, and Pump.fun, further raising concerns that an attacker is exploiting vulnerabilities through coordinated attacks.

區塊鏈調查員Zachxbt建議該黑客背後的同一攻擊者可能造成類似的違規行為。這一事件是在最近的涉及X帳戶的近期黑客浪潮之後，包括Dogwifhat（Wif），Jupiter Dex和Pump.Fun。

@tier10k mentions that, despite 2FA/YubiKey, etc, all enabled, the account got hacked so this attack is prolly related to all the recent X account hacks (@dogwifcoin, @JupiterExchange, and @pumpdotfun)https://t.co/e8qM30p99c

@tier10k提到，儘管有2fa/yubikey等，但均已啟用，該帳戶被黑客入侵，因此此攻擊與所有最近的X帳戶hacks（@dogwifcoin，@jupiterexchange和@pumpdotfun和@pumpdotfun）https：////////////////e8qm30p999c hacks hacks很大程度上相關。

— ZachXBT (@zachxbt) August 7, 2024

- Zachxbt（@zachxbt）2024年8月7日

The TRUMP token has become a new tool for scammers to promote their attacks. As per Forbes, a malicious email campaign spoofing Binance lured unsuspecting users into downloading a fake “Binance Desktop” application, which was, in reality, a Remote Access Trojan (RAT).

特朗普令牌已成為騙子促進其攻擊的新工具。根據《福布斯》，一個惡意的電子郵件活動欺騙了binance，吸引了毫無戒心的用戶下載一個偽造的“ binance桌面”應用程序，實際上，該應用程序是遠程訪問trojan（rat）。

Related: Altcoin Narratives Dominate: DeFi, L1s, AI Agents & Memes Fuel Crypto Rally

相關：altcoin敘述占主導地位：defi，l1s，AI代理和模因加油加密集會

Once installed, the RAT connects to a remote server, allowing hackers to control the infected device, steal stored passwords, and extract sensitive data.

安裝後，大鼠連接到遠程服務器，允許黑客控制感染的設備，竊取存儲的密碼並提取敏感數據。