A series of malicious postings featuring fraudulent presale token offerings on the official X account of hardware wallet manufacturer Trezor are believed to have resulted from a SIM-swap hack.
ZachXBT, an independent blockchain investigator, informed his 528,000 followers on X on March 19 of the suspected Trezor breach. Scam Sniffer, a crypto security service, detected the suspect activity ten minutes later.
Multiple posts from the official Trezor account advertised a counterfeit Trezor “$TRZR” presale token on the Solana networks. These posts instructed users to transfer funds to a Solana wallet address and contained hyperlinks that led to wallet drainers.
The intruder had also compromised Trezor’s Zapper account, according to ZachXBT, which was approximately $8,100 in value.
In a subsequent remark, he stated, “Consider hacking the Trezor account for the sole purpose of stealing $8.1K (plus 25% drainer fee).”
The posts also contained allusions to a novel memecoin called Slerf, which was introduced on Solana, seemingly to stimulate additional participation. Many of the entries, however, were removed mere minutes after they were published.
A crypto commentator and X user, John Holmquist, characterized Trezor’s most recent incident as a catastrophic failure. Holmquist criticized the hard wallet manufacturer for failing to implement two-factor authentication (2FA) to safeguard its X account.
He emphasized, “Please take account security more seriously.”
According to X user Pledditor, it is ironic that a hardware wallet company concentrating on security cannot protect its social media account.
“It is simultaneously difficult, humorous, and disgraceful” that they disregard their recommendations, added X user DigitalHustlerX.
In January, a security lapse at Trezor compromised the contact details of approximately 66,000 users.
Since its inception in 2012, Trezor has reportedly sold clients over 2 million hardware wallets, as reported on the organization’s website. Currently, the company offers three products that, when combined, provide users with the ability to store over 9,000 coins offline.
