In a digital age rife with cyber threats, the venerable New York Post found itself the latest victim of a daring hack. On May 3, 2025, cybercriminals infiltrated the Post’s X account, using it to send deceptive direct messages to users, urging them to connect via Telegram for a supposed podcast feature. This incident marks a new chapter in the evolving narrative of social media security breaches—a story with significant implications for the cryptocurrency community.
A New Breed of Cyber Intrusion
The breach was first unearthed by Alex Katz, the founder and CEO of Kerberus, who shared a screenshot depicting messages allegedly from author Paul Sperry. Katz’s discovery highlighted a unique twist: instead of the usual crypto wallet drains or pump schemes, the hackers directed users to Telegram, a platform notorious for its anonymity and, thus, its appeal to cybercriminals.
Cybersecurity engineer and NFT aficionado Drew noted, “What’s interesting about this case is that the scammer gained unauthorized access but didn’t post a Pump.fun address or wallet drainer. Instead, they’re messaging users and then directing them to Telegram.” By blocking replies, the hackers cleverly prevented the New York Post team from swiftly identifying and addressing the breach.
The Zoom Factor
Adding another layer to the intrigue, Donny Clutterbuck from the NFT Bitcoin ordinals platform Fomojis suggested a potential Zoom exploit might be at play. Clutterbuck reported receiving similar messages, hinting at the possibility that enabling audio on Zoom might inadvertently grant scammers network access. “When you click to enable audio, a pop-up gives the option to either cancel or enable WiFi,” he explained, speculating that the latter might be the gateway for unauthorized access.
This revelation aligns with recent warnings from the crypto world. In April, Jake Gallen, CEO of Emblem Vault, cautioned users against Zoom’s vulnerabilities after losing $100,000 in crypto assets during a malware-laden interview. The confluence of X and Zoom in these scams underscores a broader trend: social engineering attacks are becoming more sophisticated, leveraging trusted platforms to ensnare victims. As explored in our recent coverage of Google’s integration of blockchain technology to enhance user privacy, the tech industry is actively seeking solutions to bolster security and user trust.
Historical Echoes and Market Implications
It isn’t the first time the New York Post’s social media presence has been compromised. Back in 2022, an insider incident saw the Post’s account hijacked to disseminate a series of obscene faux headlines. This recurrence raises questions about the robustness of security measures employed by media giants and the potential ripple effects on user trust and engagement.
For the cryptocurrency sector, the implications are multifaceted. Such breaches not only threaten individual investors but could also destabilize market sentiments, with users growing increasingly wary of digital communications. As ZachXBT, a noted blockchain investigator, pointed out, this incident echoes a similar compromise involving The Defiant’s X account, where direct messages were exploited for fraudulent schemes. This follows a pattern of increasing complexity in digital asset management, as detailed in our analysis of multi-wallet usage and AI’s potential to address crypto fragmentation.
Looking Ahead: A Call for Vigilance
The curious case of the New York Post’s X account hack serves as a stark reminder of the relentless adaptability of cybercriminals. As digital platforms become intertwined with daily life, the need for heightened security and user awareness is more pressing than ever.
While the Post has yet to comment on the breach, the incident underscores a critical question for the cryptocurrency community: How can users better protect themselves in an ecosystem where trust can be so easily exploited? As the crypto world continues to grapple with such challenges, one thing remains certain—vigilance and innovation must go hand in hand if the sector is to flourish in the face of mounting cyber threats.
Source
This article is based on: Hackers use New York Post’s X account to send scam DMs, users report
Further Reading
Deepen your understanding with these related articles:
- US crypto groups urge SEC for clarity on staking
- Crypto token failures soar, with 1 in 4 launched since 2021 dying in Q1: CoinGecko
- AI-Powered Court System Is Coming to Crypto With GenLayer
Steve Gregory is a lawyer in the United States who specializes in licensing for cryptocurrency companies and products. Steve began his career as an attorney in 2015 but made the switch to working in cryptocurrency full time shortly after joining the original team at Gemini Trust Company, an early cryptocurrency exchange based in New York City. Steve then joined CEX.io and was able to launch their regulated US-based cryptocurrency. Steve then went on to become the CEO at currency.com when he ran for four years and was able to lead currency.com to being fully acquired in 2025.
