A recent report highlights the illicit activities of cybercriminals exploiting the “Gold” verification badge on X (formerly Twitter). Following Elon Musk’s acquisition of X in 2022, a paid verification system was introduced, allowing regular users to purchase blue ticks. Additionally, organizations could obtain the coveted gold check mark through a monthly subscription.
Unfortunately, the report reveals that hackers are capitalizing on this feature by selling compromised accounts, complete with the gold verification badge, on dark web marketplaces and forums.
CloudSEK, in its findings, notes a consistent pattern of advertisements promoting the sale of accounts with gold verification badges.
These advertisements were not limited to dark web platforms but were also observed on popular communication channels such as Telegram. The exploitation of the gold verification badge poses a significant risk, as cybercriminals leverage these compromised accounts for phishing and scams, potentially deceiving unsuspecting users.
This underscores the ongoing challenges in maintaining the security and integrity of online verification systems in the evolving landscape of cyber threats.
CloudSek found some ads by just searching on Google, Facebook, and Telegram using words like “Twitter Gold buy.” They saw dark web ads, and some were even on Facebook.
CloudSek found some ads by just searching on Google, Facebook, and Telegram using words like “Twitter Gold buy.” They saw dark web ads, and some were even on Facebook.
People were selling X Gold accounts, and the price depended on how popular the account was.
[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.
This article has been indexed from CySecurity News – Latest Information Security and Hacking Incidents
Read the original article: