The official Netgear and Hyundai MEA Twitter/X accounts (together with over 160,000 followers) are the latest hijacked to push scams designed to infect potential victims with cryptocurrency wallet drainer malware.
While Hyundai has already regained access to their account and has cleaned up the timeline of all links pointing X users to malicious websites, Netgear has yet to take control of theirs, with some of the attacker's tweet replies still available.
The attackers renamed the account of Hyundai MEA (Middle East & Africa) to impersonate
Overworld, which describes itself as a "cross-platform multiplayer RPG, backed by Binance Labs, the venture capital and incubator arm of the Binance cryptocurrency exchange.
Likely because it's frequently impersonated in similar scams, Overworld
often warns its Twitter followers, saying, "Please exercise caution and stay clear of those impersonating our account. Only click links from the official @OverworldPlay twitter account."
Netgear's account has been hijacked since at least January 6th and was only used to reply to BRCapp tweets, luring followers to a malicious website promising to give the first 1,000 newly registered users $100,000.
However, anyone who connected their wallets to the site would have had their assets and NFTs stolen by the threat actors.
