Watcher.Guru, a leading cryptocurrency news platform, announced on March 21, 2025, that its official X (formerly Twitter) account had been hacked.
The breach led to the spread of false information claiming that SWIFT, the global financial messaging giant, had partnered with Ripple to use XRP for cross-border payments.
The misleading post quickly gained traction on social media, causing confusion within the crypto community before Watcher.Guru was able to delete it and issue a correction.
Despite implementing two-factor authentication (2FA) and other security measures, the platform confirmed that hackers had still managed to compromise their account.
Watcher.Guru has since launched an internal investigation and is working with X support to prevent further incidents.
Possible Social Engineering Attack Linked to Telegram Scam
Watcher.Guru suspects that the hack may have originated from a phishing attempt involving a deceptive link shared by a Telegram user on March 5.
The suspicious link was disguised as an official X.com post but contained an unusual “token” query string not typically found in legitimate X links.
After encountering the link, Watcher.Guru’s team reported it to X’s head of cybersecurity but did not receive a response.
While they cannot confirm with certainty that this specific link led to the breach, the incident shares similarities with a recent attack on another prominent X user, @tier10k, who suffered a comparable compromise.
These developments raise concerns that hackers are leveraging social engineering tactics to bypass even the most secure accounts.
Watcher.Guru’s Immediate Response and Security Measures
The unauthorized post was made at 2:05 AM UTC on March 21 and was deleted within minutes once the Watcher.Guru team identified the hack.
In response, the platform immediately logged out of all active sessions, reset its passwords, and implemented additional security measures to prevent further breaches.
However, due to an automated bot that reposts Watcher.Guru’s “JUST IN” and “BREAKING” news across various platforms, including Telegram, Facebook, and Discord, the false report had already spread widely before it was taken down.
The incident highlights the challenges of automation in crypto news dissemination and the risks associated with rapid information sharing in the industry.
Security Concerns Rise Amid Growing Hacking Incidents
Despite having strong security measures in place, including 2FA, no connected third-party apps, and no API key leaks, Watcher.Guru has not yet determined how their account was compromised.
The attack raises concerns about potential vulnerabilities within X’s security framework, particularly as multiple crypto-related accounts have been targeted recently.
Some experts speculate that an insider threat at X or an undiscovered exploit could be at play. Watcher.Guru is actively collaborating with X’s security team to investigate the breach and prevent similar incidents in the future.
The attack serves as a warning to other crypto news platforms and influencers, emphasizing the need for constant vigilance and stronger cybersecurity practices in an increasingly hostile online environment.
Recent Crypto Hacks Highlight Increasing Digital Threats
The Watcher.Guru hack is just the latest in a string of high-profile cyberattacks targeting crypto-related platforms.
Recently, AI-powered crypto commentator AiXBT was hacked, resulting in a loss of 55.50 ETH (over $100,000).
In another case, Four.Meme suffered a $120,000 loss due to a compromised liquidity transaction on PancakeSwap, following a separate $200,000 hack the previous month.
Meanwhile, hackers have been exploiting Telegram accounts by sending fake video call links that install malware, stealing credentials and crypto assets.
These incidents underscore the growing threats in the cryptocurrency space, reinforcing the need for enhanced security measures, user awareness, and swift responses to cyberattacks.
Also Read: Coinbase Boosts Base Privacy With Iron Fish Team Acquisition, Amid Record Crypto Hacks In 2025