Key Takeaways
- Accounts posting cryptocurrency-related content for the first time will be automatically locked and require additional verification
- The security measure aims to stop phishing schemes where attackers compromise accounts to spread fake token promotions
- Product Chief Nikita Bier states this approach will eliminate “99% of the incentive” behind these attacks
- The initiative responds to a surge in fraudulent copyright notices designed to capture user credentials and authentication codes
- X’s Product Chief also placed blame on Google for insufficient email filtering that allows phishing attempts through Gmail
Elon Musk’s social media platform X is implementing a new defensive mechanism that will immediately freeze any account making its first cryptocurrency-related post. Users will need to go through an additional verification procedure before regaining posting abilities.
Nikita Bier, serving as X’s Product Chief, announced the initiative on the platform itself. He explained that the strategy directly addresses cybercriminals who compromise accounts with the sole purpose of executing cryptocurrency fraud schemes.
“This should kill 99% of the incentive,” Bier stated, addressing the ongoing surge of phishing campaigns directed at X’s user base.
The disclosure followed a user’s public account of losing control of their profile through a deceptive email masquerading as a copyright infringement alert. The perpetrator deployed a counterfeit login interface to steal the victim’s login details and two-factor authentication credentials.
After gaining unauthorized access, the attacker removed the legitimate owner’s access and began broadcasting fake cryptocurrency schemes to the account’s audience.
Anatomy of These Fraudulent Schemes
These cyber attacks follow a consistent methodology. An unauthorized party seizes control of an account, then exploits it to advertise counterfeit meme tokens, bogus airdrop opportunities, or cryptocurrency multiplication scams. The authenticity associated with a genuine account increases the likelihood that followers will engage.
Cryptocurrency transfers are permanent, meaning victims cannot retrieve stolen assets after transmission.
The most prominent instance of such an attack occurred in 2020. Cybercriminals penetrated Twitter’s backend infrastructure and commandeered verified profiles including those of Apple, Barack Obama, and Elon Musk.
These compromised accounts disseminated a fraudulent Bitcoin giveaway scheme that accumulated over $100,000 before removal. The perpetrator ultimately received a five-year prison sentence.
X’s Comprehensive Security Strategy
X has been actively combating fraudulent activity for an extended period. The organization has conducted automated account removals, restricted API permissions, and enhanced pattern recognition systems.
In late 2025, X reported dismantling a corruption scheme linked to cryptocurrency scam operations. Banned users had reportedly attempted to compensate middlemen to bribe X employees and reinstate previously suspended profiles.
The new automatic lockdown protocol extends these efforts by intercepting the scam at its origin point. When a compromised account cannot distribute cryptocurrency content without triggering a freeze, its value to attackers diminishes significantly.
Bier also emphasized his support for authentic cryptocurrency engagement on X. He distinguished between legitimate activity and schemes that “create incentives to spam, raid, and harass.”
He additionally called out Google specifically, asserting that Gmail’s security measures fail to block phishing messages before they reach users’ inboxes, attributing partial accountability to the technology company.
The automatic lockdown capability has not yet been activated but is scheduled for imminent deployment.
Get 3 Free Stock Ebooks
Discover top-performing stocks in AI, Crypto, and Technology with expert analysis.
- Top 10 AI Stocks - Leading AI companies
- Top 10 Crypto Stocks - Blockchain leaders
- Top 10 Tech Stocks - Tech giants
