Cointelegraph, a prominent media outlet in the cryptocurrency space, is suspected of having its official X (formerly Twitter) account compromised in what appears to be a sophisticated phishing operation. 

According to reports by DeFi Edge, a well-known voice in the decentralized finance community, the compromised account has allegedly been sending direct messages (DMs) to users. 

🚨 WARNING: New social engineering scam@Cointelegraph account sent me a DM asking me to review an article they said involved my content.

I'm already on red alert for scams due to the fake zoom / bloomberg stuff. I saw that the account's legit (2.6m followers and plenty of… pic.twitter.com/ltBcALqELp

— Edgy – The DeFi Edge 🗡️ (@thedefiedge) May 10, 2025

These messages invite recipients to read an article supposedly related to their work, but instead, direct them to a malicious website that imitates Cointelegraph’s branding using a misspelled domain name, “Cointetegraph.” 

The phishing website then prompts users to log in with their X credentials, a classic social engineering tactic designed to hijack their accounts.

Hackers Exploit Trust in Verified Accounts With Large Followings

What makes this attack particularly dangerous is that it originates from Cointelegraph’s verified X account, which boasts a following of over 2.6 million users. 

The legitimacy of the account, with its verification badge, long-standing reputation, and mutual followers, can easily lull even seasoned crypto users into a false sense of security. 

DeFi Edge, who received one of these messages, immediately flagged the situation as suspicious after noting the odd request to log in before accessing the article and spotting the subtle domain typo. 

Their prompt warning has helped raise awareness, but the risk remains high given the scale and credibility associated with the official account being used for malicious purposes.

Also Read: Crypto Phishing Scam Alert: “HyperSwap” Ads on Google Could Drain Your Wallet

A Growing Trend of Phishing Attacks Targeting Crypto Communities

This incident is part of a growing trend of phishing scams that leverage the brand identity of well-known companies in the financial and tech sectors. 

Earlier cases have involved impersonations of companies such as Bloomberg and Zoom, where attackers similarly crafted believable messages to trick users into handing over sensitive information. 

The use of Cointelegraph’s actual account rather than a spoofed or cloned profile represents an escalation in tactics, as attackers now directly compromise trusted sources to amplify their reach and credibility. 

The development underscores the increasingly sophisticated nature of online scams targeting the crypto space.

Also Read: Crypto Hacker Steals $5.4 Million in Ethereum from zkLend Only to Fall Victim to Phishing Scam on Tornado Cash

Urgent Calls for Caution as the Community Reacts

Security experts and influencers across the crypto community are urging users to remain vigilant, especially when engaging with content that requires login credentials or comes from unfamiliar links, even if they appear to be from verified sources. 

DeFi Edge emphasized the importance of checking URLs carefully and recommended opening suspicious links only in secure environments like private browser windows. 

Until Cointelegraph or X makes an official statement regarding the status of the account, users are advised to avoid interacting with any unsolicited messages from the platform. 

The event serves as a stark reminder that even established platforms can fall victim to breaches, and the burden of protection often falls on individual users to recognize and resist these sophisticated social engineering threats.

Also Read: Crypto Phishing Scam Alert: “HyperSwap” Ads on Google Could Drain Your Wallet