British Army Twitter Hacked, Used to Promote NFTs
In early July 2022, the official Twitter account of the British army was seemingly hijacked. The hacked account was briefly abused to post advertisements related to NFTs.
During the stretch of time when the threat actors were in control of the compromised account, both its profile picture and its display name were changed several times. One of the image and name pairings belonged to BapesClan, featuring a cartoony image of an ape wearing a colorful suit and face paint like the Joker character from the 2019 movie. There is a "bapesclan" account on Twitter and it used the exact same profile picture. The real bapesclan profile describes itself as the number one "metavestor clan" with "multi-billion dollar experience".
Another NFT-related account whose profile image and description were used to temporarily replace the ones of the official British Army account is called "pssssd", shorthand for Possessed - a collection of NFT art that launched days ago.
There is no official information concerning the identity of the threat actor who pulled off the attack. As expected, a representative of the British army came up with a statement about the incident and about how seriously the British Army takes cyber security matters, with no further commentary.
The official account of the British Army has over 360 thousand followers, so the little stunt generated significant exposure for the NFT entities that were blipped on the Twitter page.
The NFT space replaced crypto as the Wild West of the digital world, with people rationalizing and getting more up to speed with crypto, but many are still in the dark when it comes to NFTs, despite their desire to get involved. Of course, this led to numerous scams and attempts to rob people blind using different NFT-related scams.