BTC $62,111.61 -2.62%
ETH $1,765.64 -1.95%
BNB $565.55 -1.34%
XRP $1.06 -2.19%
SOL $74.59 -2.67%
TRX $0.3242 -2.09%
DOGE $0.0716 -1.14%
ADA $0.1566 -3.02%
BCH $234.53 -2.74%
LINK $7.85 -1.40%
HYPE $63.13 -6.22%
AAVE $93.99 -3.29%
SUI $0.7144 -2.69%
XLM $0.1804 -2.86%
ZEC $492.36 -7.65%
BTC $62,111.61 -2.62%
ETH $1,765.64 -1.95%
BNB $565.55 -1.34%
XRP $1.06 -2.19%
SOL $74.59 -2.67%
TRX $0.3242 -2.09%
DOGE $0.0716 -1.14%
ADA $0.1566 -3.02%
BCH $234.53 -2.74%
LINK $7.85 -1.40%
HYPE $63.13 -6.22%
AAVE $93.99 -3.29%
SUI $0.7144 -2.69%
XLM $0.1804 -2.86%
ZEC $492.36 -7.65%

X 平台出现冒用虚假应用获取授权绕过 2FA 的新型钓鱼攻击

2025-09-26 11:10:53
收藏

ChainCatcher 消息,近期一场高度隐蔽的钓鱼攻击利用 X 平台应用授权机制,绕过密码和双重验证,已导致多位加密领域人士账号被劫持。

攻击者通过伪装成 Google Calendar 链接的钓鱼信息,诱导用户授权恶意应用 “Calendar”,实则包含伪装字符并请求全面账号控制权限。安全专家建议受影响用户及时前往 X 的已授权应用页面,移除可疑 “Calendar” 应用以防止进一步损失。

app_icon
ChainCatcher 与创新者共建Web3世界