On September 28, a recent highly covert phishing attack used the X platform application authorization mechanism to bypass passwords and two-factor authentication, which has led to the hijacking of the accounts of many people in the encryption field.
Attackers use phishing messages disguised as Google Calendar links to induce users to authorize the malicious app "Calendar", which actually contains disguised characters and requests full account control privileges. Security experts recommend that affected users promptly go to X's authorized app page and remove the suspicious "Calendar" app to prevent further losses.
A new type of phishing attack that uses fake applications to obtain authorization to bypass 2FA appears on the X platform
2025-09-26 03:16:18
Disclaimer:
1. The information provided does not constitute investment advice. Investors should make independent decisions and bear all risks themselves.
2. The copyright of this content belongs to the original author. The views expressed herein are solely those of the author and do not represent the stance or position of this website.
