The Gold badge on X means that the service has independently verified the account as legitimately belonging to a high-profile organization or a celebrity.
It was introduced a year ago as a paid option after X made the blue checkmark - formerly a designation of legitimacy - a badge that anyone could pay to include on their profiles, no validation needed.
Cybercrime Riches via X Gold Accounts Cybercriminals are now brute-forcing passwords and stealing credentials through malware in order to gain access to existing Gold accounts, according to CloudSEK researchers; more often, they are also taking over non-Gold accounts associated with real organizations that haven't been used in months and upgrading them to verified status.
In all, hundreds of accounts with reach to tens of thousands of followers are on offer in underground forums.
Nefarious types willing to pay can then use the accounts to host phishing links, launch disinformation campaigns and financial scams, or impact brand reputation by posting damaging content.
They then tweeted out an offer for purportedly free nonfungible tokens, with a malicious link embedded that redirected users to a fake website designed to drain cryptocurrency from their wallets.
How to Protect Against X Account Takeover The value to crooks in infiltrating major accounts has been a known quantity since at least 2020, when hackers were able to compromise the internal networks of what was then Twitter, gaining access to verified accounts and sending out tweets on behalf of several high-profile individuals.
Effective brand monitoring means identifying fake profiles, unauthorized product listings, misleading advertisements, and malicious content.
This Cyber News was published on www.darkreading.com. Publication date: Wed, 03 Jan 2024 22:05:23 +0000