Contrary to popular belief 2FA is not impenetrable, especially if they used mobile phone number.
I guess sms 2fa is not available on twitter, i remember elon doesn't like 2fa and keep tweeting it previously. 
Topic: Kucoin Twitter account hacked, $22k lost - page 2. (Read 231 times)
What a shame, but still kudos reimbursing the users affected. I don't know how their handle was hacked, isn't 2fa is forcedrequired to every verified handle in twitter? How is it possible though to breach 2fa?
As you can see from the screenshots below, Kucoin Twitter account giot hacked last night and attacked managed to get $22k from unsuspected Kucoin followers. Luckily they regained the control after ~45 minutes so loss is not too big, but its still an embarassment, especially since they allegedly had 2FA enabled as well.
Anything on this online world could really be hacked and this is why any tweets and words came from known platforms or person
wont really be that 100% that you could trust up but in just on some personal opinion about on how common sense does work on each individual then it would
really be that impossible that you couldnt spot out that there's something wrong.
Isn't it supposed to be an inside job, since they claim without any proofs that they had twitter 2fa enabled? Aside that, I don't think they had twitter 2FA enabled and they've just enabled it after the hack. Kucoin must have focused their security on the exchange and didn't bother much about their twitter account. Well according to this source the scammers also received 4 ETH in this address 0xd1cd69FCC79fC46B4BBe1AAF2a05F1f014F53965 added to the 22k USDT
I have this kind of thought too which this might be an inside job or possibly considering that Twitter account cant be possibly be that hacked so easily unless twitters security measures are shitbut thats not the case because there's no way that it could be bruteforced out and of course they wouldnt really be that careless unless if theres some inside job
who do knows but its mind boggling that it didnt last that long.
Isn't it supposed to be an inside job, since they claim without any proofs that they had twitter 2fa enabled?
If it was an inside job, then it was a pretty bad one. 22k is nothing compoared to some bigger hacks and somehow I doubt that someone from Kucoin would risk so much for so little. By the way, how exactly could they prove that they had 2FA enabled? You either belive what they claim, or not. Aside that, I don't think they had twitter 2FA enabled and they've just enabled it after the hack. Kucoin must have focused their security on the exchange and didn't bother much about their twitter account.
Contrary to popular belief 2FA is not impenetrable, especially if they used mobile phone number. 
Isn't it supposed to be an inside job, since they claim without any proofs that they had twitter 2fa enabled? Aside that, I don't think they had twitter 2FA enabled and they've just enabled it after the hack. Kucoin must have focused their security on the exchange and didn't bother much about their twitter account. Well according to this source the scammers also received 4 ETH in this address 0xd1cd69FCC79fC46B4BBe1AAF2a05F1f014F53965 added to the 22k USDT
Kucoin had to make unnecessary expenses due to the negligence of social media managers. The return allocation is quite large if it is used for visibility for several days.
It is a shame on Kucoin because the exchange failed to protect its official Twitter account, but also humans should have the experience to stop being greedy. As for me, I can not fall for this cheap scam, it is even not a new scam.
It is unexpected for followers that they will be scammed, after all Twitter is a medium which is quite actively used for legitimate giveaways. 
It is a shame, we know how follows can be scammed if such account is hacked because their followers can believe what the hacker is tweeting and be lured.
But people should be very careful too, so people that have experience and know about this type of scam can easily be suspecting that the account as been hacked because the hackers can tweet that people should pay certain amount of money to receive double, or asking for what that can result to money loss from you which any Kucoin official will never ask.
It is a shame on Kucoin because the exchange failed to protect its official Twitter account, but also humans should have the experience to stop being greedy. As for me, I can not fall for this cheap scam, it is even not a new scam.
But people should be very careful too, so people that have experience and know about this type of scam can easily be suspecting that the account as been hacked because the hackers can tweet that people should pay certain amount of money to receive double, or asking for what that can result to money loss from you which any Kucoin official will never ask.
It is a shame on Kucoin because the exchange failed to protect its official Twitter account, but also humans should have the experience to stop being greedy. As for me, I can not fall for this cheap scam, it is even not a new scam.
As you can see from the screenshots below, Kucoin Twitter account giot hacked last night and attacked managed to get $22k from unsuspected Kucoin followers. Luckily they regained the control after ~45 minutes so loss is not too big, but its still an embarassment, especially since they allegedly had 2FA enabled as well.
https://twitter.com/kucoincom/status/1650336619730436099?s=46&t=3zlK3OjWylVjTyH2vaBQHA
https://twitter.com/kucoincom/status/1650336619730436099?s=46&t=3zlK3OjWylVjTyH2vaBQHA
Jump to: