Crypto YouTubers fall victim to hacking and scamming attempt

Published at: Jan. 24, 2022

Hackers attacked a number of popular crypto YouTuber accounts at some point during the afternoon of Jan. 23. The accounts posted unauthorized videos with text directing viewers to send money to the hacker's wallet.

Accounts who appear to have been targeted by the attack include: ‘BitBoy Crypto’, ‘Altcoin Buzz’, ‘Box Mining’, ‘Floyd Mayweather’, ‘Ivan on Tech’, and ‘The Moon’ among others.

BREAKING: Dozens of Crypto YouTubers have had their accounts hijacked by hackers promoting a fake crypto giveaway scam. Hacked accounts include:@IvanOnTech@boxmining@aantonop@themooncarl@Bitboy_Crypto@mmcrypto@Altcoinbuzzio@FloydMayweather@crypto_banter@CoinMarketCap pic.twitter.com/ykXkZUh9cO

— Mr. Whale (@CryptoWhale) January 23, 2022

The Binance Smart Chain wallet address that was listed on the fraudulent videos only had a total of 9 transactions in BNB at the time of writing, with a total value of around $850.

Michael Gu told Cointelegraph that his YouTube channel Boxmining posted a video without his permission. “Luckily we caught it within two mins of the video going live and managed to delete it,” he said. “By that time there were already views and comments from my community.”

He added that he had done an internal sweep and found no viruses or bugs that may have given the hackers access to his account. “Seems like YouTube might be responsible,” he said.

Many Crypto Youtubers (including me) got hacked today - all publishing a scam video at around the same time - @IvanOnTech @aantonop @Bitboy_Crypto @Altcoinbuzzio @FloydMayweather @crypto_banter @CoinMarketCapI have 2FA enabled. pic.twitter.com/c8z5qmJ3bT

— Boxmining (@boxmining) January 23, 2022

One Reddit post by user “9Oh8m8” suggested that it appears as though the hackers were able to gain access to the accounts using a SIM swap scam, which would have enabled them to bypass two-factor authentication (2FA). They added:

“They are all posting with a title like "ONE WORLD CRYPTOCURRENCY". They have an address in vid and description to send your USDT/USDC/BNB/ETH to receive a new crypto called OWCY.”

However, Gu wasn’t convinced that the hack was a result of a SIM swap, telling Cointelegraph that there were no logins on his personal Google account. “If it was a SIM swap I would lose access to my phone etc and that didn’t happen,” he said.

“What we noticed was on the BRAND account (which doesn’t have a login. YouTube brand accounts are connected to personal) there was a login from the Philippines. Very likely this is either a hack on YouTube side or a rogue employee. That’s how they got so many people at the same time.”

Founder and CEO of the Altcoin Buzz YouTube channel Shash Gupta added that they noticed something was amiss at around 1 AM Singapore time on Sunday night when an unauthorized video was posted to their channel.

“It’s pretty unclear what happened. I’m talking to Youtube to get to understand the matter and avoid such further breaches.”

Related: YouTube channels hacked and rebranded for livestreaming crypto scams

Another crypto YouTuber Richard Heart tweeted at 9:30PM UTC that his channel had been banned during the middle of a livestream, indicating that YouTube was probably aware of the event.

Hello again @YouTubecreators My channel was just banned in the middle of a livestream. I think it might have to do with all of the other youtubers that were hacked at the same time today. Could you check please, thanks! @YouTube @YouTube

— Richard Heart PulseX.com! Called the Bitcoin top! (@RichardHeartWin) January 23, 2022

Cointelegraph reached out to YouTube and a number of other crypto content creators who were affected by the hack but had not received any additional information at the time of writing.

Tags
Related Posts
Coin Bureau Youtube channel hacked despite 2FA protection
Coin Bureau, a popular information portal for cryptocurrency developments with over 600,000 followers on Twitter, experienced a security breach on its Youtube channel on Monday. Hackers allegedly uploaded a video with links to scam fiat/cryptocurrency addresses soliciting a token sale before being taken down by Youtube. According to Coin Bureau staff, they were baffled by the incident as its accounts were "secured with ultra-strong passwords and Google security keys." So our YouTube channel was just hacked. Have absolutely no idea how this happened. All accounts are secured with ultra strong passwords and Google security keys. @YouTubeCreators this is a serious …
Technology / Jan. 24, 2022
Security firms are making it more difficult for scammers to get away with DeFi project hacks
The rise of community-oriented blockchain security companies may be making it more difficult for alleged bad actors to get away without a trace. Early Wednesday, CertiK issued a community alert regarding Flurry Finance, where its smart contracts were allegedly breached by hackers, leading to $293,000 worth of funds being stolen. Shortly after the incident, CertiK published the wallet addresses of the alleged perpetrator, the address of the malicious token contract, and a PancakeSwap pair address allegedly involved in the attack, leading to a warning issued on BscScan. While the firm audited the project's smart contracts, it appears that the exploit …
Adoption / Feb. 23, 2022
British Army’s social media accounts hacked by crypto scammers
The British Army’s official Twitter, Facebook and YouTube accounts were breached on Sunday for almost four hours, with scammers promoting rip-off nonfungible token (NFT) collections and cryptocurrency scams. Just after 2:00 pm EST on Sunday, the United Kingdom Ministry of Defence (MOD) Press Office tweeted it was aware the Army’s social media accounts were compromised and had begun an investigation. Nearly four hours later, close to 5:45 pm EST, the Office provided an update that the account breaches were resolved. The British Army's official Twitter account also apologized for the posts, saying it would conduct an investigation and “learn from …
Defi / July 4, 2022
Here's how to quickly spot a deepfake crypto scam — cybersecurity execs
Crypto investors have been urged to keep their eyes peeled for "deepfake" crypto scams to come, with the digital-doppelganger technology continuing to advance, making it harder for viewers to separate fact from fiction. David Schwed, the COO of blockchain security firm Halborn told Cointelegraph that the crypto industry is more “susceptible” to deepfakes than ever because “time is of the essence in making decisions” which results in less time to verify the veracity of a video. Deepfakes use deep learning artificial intelligence (AI) to create highly realistic digital content by manipulating and altering original media, such as swapping faces in …
Blockchain / Jan. 13, 2023
'Haunts me to this day' — Crypto project hacked for $4M in a hotel lobby
The co-founder of Web3 metaverse game engine “Webaverse” has revealed they were victims of a $4 million crypto h after meeting with scammers posing as investors in a hotel lobby in Rome. The bizarre aspect of the story, according to co-founder Ahad Shams, is that the crypto was stolen from a newly set up Trust Wallet and that the hack took place during the meeting at some point. He claims the thieves could not have possibly seen the private key, nor was he connected to a public WiFi network at the time. The thieves were somehow able to gain access …
Nft / Feb. 7, 2023