Crypto entrepreneur Owen Simonin, also known as Hasheur, had his account @PowerHasheur compromised for a few minutes, falling victim to a phishing attack.
A hacker seizes control of Hasheur’s account
On Saturday night, the @PowerHasheur account shared a post on the X social network (formerly Twitter), inviting its community to benefit from the long-awaited Dymension airdrop, a project that Hasheur had previously communicated about.
However, this tweet did not come directly from Hasheur, but rather from a hacker who attempted to steal funds from less informed users in the Meria founder’s community. The post simply contained a phishing link redirecting users to a fake website created to empty the wallets of those who fell into the trap.
Recovery of Hasheur’s account and explanations
Fortunately, Hasheur quickly realized the situation thanks to numerous warnings from his community and loved ones. He immediately changed his password and added an additional 2FA security layer on top of the existing one on his account. However, the clever trickster continued to delete Owen’s posts to reshare his malicious links.
So how is this possible?
It appears that the attack simply originated from a link to a copy of Calendly (a scheduling application) shared with Hasheur’s account. By clicking on the link, his community manager inadvertently authorized certain actions on the account, such as publishing or deleting tweets.
Several other important accounts in the French-speaking crypto ecosystem seem to have been affected by the same attack. Therefore, we recommend exercising even greater caution than usual.
The accounts of Nicolas Chéron, Abdelhamid Bakhta, and even Meria have been compromised using the same attack.