The New York Post’s (NYP) verified X account has been allegedly hijacked and used to target crypto enthusiasts, according to cybersecurity experts.
On May 3rd, Kerberus founder and CEO Alex Katz shared a screenshot of a scam in action – the NYP’s verified X account had been used to send fraudulent messages.
Cybercriminals send private messages pretending to be investigative journalists at the NYP, looking for guests for their podcast.
“We’re lining up new guests for our podcast and would love to feature you in an upcoming episode,” the fraudulent message reads.
The @nypost’s X account is compromised sending DM’s inviting crypto users to their “podcast”. pic.twitter.com/c3YbgmW9un
undefined Metro Katz (@metrokatz) May 3, 2025
Other X users report receiving the same message.
The cybercriminals immediately block users from replying on X and direct them to get in touch via a Telegram account. This was likely done to avoid alerting the actual New York Post team and lure potential victims into a Telegram‑based crypto trap.
Cybersecurity expert, NFT collector, and founder of Drew Security, Drew, further explained that a new scam tactic relies on implicit trust from previous conversations. Therefore, the scammers send personal messages instead of straight-up posting fraudulent ads or links to wallet-draining malware.
Interesting New Scam Tactic 👀
undefined NFT_Dreww.eth (@nft_dreww) May 3, 2025
If you have received this message from the @nypost (shoutout to @metrokatz for first reporting this), do not message the individual on Telegram,it is a scam!
What's interesting about this case is that the scammer gained unauthorized access but… pic.twitter.com/Xr0c1Q87O3
Some experts also speculate that hackers might attempt to exploit security vulnerabilities on popular platforms, such as Zoom, and install malware.
It’s unclear how the hackers got access to the account and how many people may’ve been contacted this way. No official statement or update has been posted. Cybernews reached out to the NYP for clarification and will include their response.
Security experts recommend a cautious approach to direct messages, especially those asking to switch to other platforms, even if they come from trusted sources as any account can be compromised.
Your email address will not be published. Required fields are markedmarked