$USUAL X ( Twitter) #USUAL, nos informa
👇
"At 8:06 PM UTC, Usual’s official Twitter account was compromised, leading to unauthorized tweets promoting a memecoin contract. No other Usual systems, accounts, or operations were impacted: everything is running smoothly.
Our team responded immediately, issuing warnings on Discord and Telegram. Within 10 minutes, all unauthorized tweets were removed, and full control of the account was restored.
Security & Investigation Updates:
- This incident was limited to our X (Twitter) account. No other company systems, employee accounts, or internal infrastructure were affected.
- Our security protocols are stringent, minimizing such risks. The attack vector remains unknown at this time, and a full investigation is underway.
- No security notifications were received via our linked email regarding account changes. No unusual activity/log has been detected across Usual’s company or authorized team accounts.
- The account and delegate accounts were and remain secured with app-based 2FA and/or physical security keys. The account’s 2FA credentials are held exclusively by a subset of Usual’s three co-founders.
- This incident bears similarities to other recent high-profile account compromises. As noted by on-chain investigator @zachxbt, "I suspect a threat actor is social engineering employees at X with fraudulent documents / emails or a panel is being exploited.".
Next Steps:
- All company credentials have been rotated, and all active sessions have been terminated.
- We are coordinating with various teams to conduct a thorough investigation and reassess all internal security processes."
Security and transparency remain our top priorities. Thank you for your vigilance and trust. Stay cautious, and always verify information from multiple official channels.