British Army’s YouTube and Twitter accounts hacked to promote crypto scam

The UK Ministry of Defence confirmed on July 4, that the British Army’s Facebook and Twitter accounts both were hacked to promote cryptocurrency scams.

Threat actors hijacked the British Army’s Twitter page, swapping out the organization’s profile picture, bio, and cover photo to make it seem like it was associated with The Possessed NFT collection. The account sent out various retweets for NFT giveaways, and its pinned tweet linked users to a fake NFT minting website:

Hackers also stripped the British Army’s YouTube channel, deleting all its videos, as well as changing its name and profile picture to resemble the legit investment firm Ark Invest. Miscreants replaced the British Army’s videos with a series of old livestreams featuring former Twitter CEO Jack Dorsey and Tesla CEO Elon Musk.

These livestreams were previously aired as part of The B Word conference held by Ark Invest last June, but hackers added an overlay that encouraged users to participate in a cryptocurrency scam. The channel aired four livestreams at once, with some of them racking up thousands of viewers.

The other day, the popular NFT marketplace Opensea warned users of email phishing attack after a major data breach.