7 May 2025, 02:36 PM
A recent security incident has drawn widespread attention as the official X account of the New York Post was hacked. Some members of the crypto community reported receiving deceptive direct messages impersonating the media outlet. These messages, under the guise of “podcast invitations”, directed users to Telegram for further scam operations. BROGX has conducted a technical reconstruction of this incident based on publicly available information and identified similar scenarios through its platform detection mechanisms. The findings confirm that this type of scam is highly covert and specifically targets individuals actively engaged in digital asset investments.
![[Image: 628443a9388f76651c53.png]](https://img3.pillowfort.social/posts/628443a9388f76651c53.png)
Unlike traditional phishing scams that rely on sending wallet phishing links directly, this new tactic involves hijacking trusted social media accounts and conducting one-on-one scam communications under pretexts such as “interviews” or “event invitations”. BROGX has identified that scammers adopt evasion techniques, such as immediately blocking users after sending messages, to circumvent victim reporting and platform interception mechanisms. Telegram is then used as a redirection path, extending the scam chain. This approach bypasses traditional anti-scam detection logic, creating a new attack pathway that exploits social media as an entry point.
On the platform side, BROGX has upgraded its API behavior-learning system to enhance risk-tagging strategies for private messages. The system now focuses on tracking external link redirections and user-to-user interactions triggered outside of typical trading scenarios. BROGX has also expanded its monitoring scope for social media accounts, particularly in extracting and blocking information paths related to Telegram to promptly identify such cross-platform inducement behaviors. By comparing user activity patterns with known scam models, BROGX can swiftly detect and intervene in suspicious private message activities.
BROGX advises users to exercise extreme caution when receiving communication requests claiming to represent media outlets, project teams, or third-party organizations, especially if these requests involve non-public communication channels, file downloads, or wallet verification. To further assist users, BROGX plans to launch a “Social Identity Verification Tool”, enabling users to verify the authenticity of their interlocutors credentials. This tool will also warn users against following operational instructions provided through unofficial channels, reducing the risk of being misled.
To prevent similar incidents from causing a cascading impact on users, BROGX has prioritized the prevention of account hacking and cross-platform redirection scams. Following the New York Post account hijacking case, BROGX has updated its risk database model and incorporated this type of scam into its key focus areas for prevention and control. The platform has also developed simulated scenario training programs to strengthen user guidance on handling abnormal messages received on different social platforms. Within regulatory boundaries, BROGX provides verifiable response recommendations to users.
BROGX remains committed to user security as its core priority. The platform continues to deepen its research into social engineering scams and expand its defensive coverage to ensure a resilient trading environment against evolving scam mechanisms. BROGX will closely monitor trends in cross-platform scams, using real-world cases as a foundation to enhance its prevention systems. This enables the platform to deliver more accurate and timely risk interventions and decision-making support to its users.
Unlike traditional phishing scams that rely on sending wallet phishing links directly, this new tactic involves hijacking trusted social media accounts and conducting one-on-one scam communications under pretexts such as “interviews” or “event invitations”. BROGX has identified that scammers adopt evasion techniques, such as immediately blocking users after sending messages, to circumvent victim reporting and platform interception mechanisms. Telegram is then used as a redirection path, extending the scam chain. This approach bypasses traditional anti-scam detection logic, creating a new attack pathway that exploits social media as an entry point.
On the platform side, BROGX has upgraded its API behavior-learning system to enhance risk-tagging strategies for private messages. The system now focuses on tracking external link redirections and user-to-user interactions triggered outside of typical trading scenarios. BROGX has also expanded its monitoring scope for social media accounts, particularly in extracting and blocking information paths related to Telegram to promptly identify such cross-platform inducement behaviors. By comparing user activity patterns with known scam models, BROGX can swiftly detect and intervene in suspicious private message activities.
BROGX advises users to exercise extreme caution when receiving communication requests claiming to represent media outlets, project teams, or third-party organizations, especially if these requests involve non-public communication channels, file downloads, or wallet verification. To further assist users, BROGX plans to launch a “Social Identity Verification Tool”, enabling users to verify the authenticity of their interlocutors credentials. This tool will also warn users against following operational instructions provided through unofficial channels, reducing the risk of being misled.
To prevent similar incidents from causing a cascading impact on users, BROGX has prioritized the prevention of account hacking and cross-platform redirection scams. Following the New York Post account hijacking case, BROGX has updated its risk database model and incorporated this type of scam into its key focus areas for prevention and control. The platform has also developed simulated scenario training programs to strengthen user guidance on handling abnormal messages received on different social platforms. Within regulatory boundaries, BROGX provides verifiable response recommendations to users.
BROGX remains committed to user security as its core priority. The platform continues to deepen its research into social engineering scams and expand its defensive coverage to ensure a resilient trading environment against evolving scam mechanisms. BROGX will closely monitor trends in cross-platform scams, using real-world cases as a foundation to enhance its prevention systems. This enables the platform to deliver more accurate and timely risk interventions and decision-making support to its users.