**Tron Says DAO X Hack Cost Victims $45K, Curve Finance Also Hit**

A recent series of high-profile account takeovers on the X platform has left many victims with significant financial losses. Tron DAO's X account was compromised by a hacker who reportedly made around $45,000 in improperly solicited funds. The incident is just the latest in a growing list of security breaches on the X social media platform.

According to a spokesperson from Tron, on May 2, the Tron DAO account posted a contract address and sent direct messages to solicit payments in exchange for promotional advertising on the Tron account. However, the post was later revealed to be a malicious attempt by a hacker to scam users out of their funds. The Tron security team quickly identified the intrusion and cut off access to the hacker, but not before the hacker had made some significant withdrawals.

"We ask the community to continue to be vigilant," said the Tron public relations team. "We will never ask anyone for payments like this via DM or otherwise." Based on the illicit contract address the hacker posted, the amount improperly solicited appeared to be around $45,000.

However, there are concerns that the same hacker may have been responsible for another recent security incident involving a supposed New York Post's X account. The Tron team acknowledged that there "appear to be some similarities" between the two security incidents, but cautioned that the investigation is ongoing and "any definitive connection would be premature."

The Tron DAO team suspects that the hack resulted from a team member being "targeted in a malicious social engineering attack, which led to their account being compromised." Even after the perpetrator was logged out and access was restored, they continued contacting others, offering posts from the main account in exchange for payment.

The Tron founder, Justin Sun, has also accused crypto exchange OKX of failing to act on a law enforcement request to freeze stolen funds connected to the attack. However, OKX founder and CEO Star Xu has publicly denied the allegation, and Sun has removed the original post with the accusation.

**Curve Finance Joins List of X Account Hacks**

Decentralized lending protocol Curve Finance also recently suffered an X account takeover by a bad actor. A scammer posing as Curve Finance shared a link to a CRV airdrop with a weeklong registration period, which some eagle-eyed X users quickly suspected could be fraudulent.

Curve Finance founder Michael Egorov confirmed in a reply to analyst CrediBULL Crypto that it was a bad actor posting sham links so far. "No other account appears to be hacked — the control over X account was just silently taken by someone," he said. The Curve Finance team has since regained access with the help of a team that included the cybersecurity group SEAL.

While the cause of the hack is still unclear, the Curve finance team said it's still "unclear how account" access was taken, and there was "No sign of any client-side compromise." A slew of other high-profile X accounts have also been taken over by bad actors this year, including those belonging to the UK's Parliament, Crypto data aggregator Kaito AI, and Pump.fun.

**The Growing List of High-Profile Hacks**

On April 15, a member of the UK's Parliament, Lucy Powell, had her account taken over to promote a scam crypto token called the House of Commons Coin (HOC). Crypto data aggregator Kaito AI and its founder, Yu Hu, were also victims of an X social media hack on March 15, when scammers posted that the Kaito wallets were compromised and users' funds were at risk.

Meanwhile, Pump.fun's X account was hacked on February 26 and promoted several fake tokens, including a fraudulent governance token for the platform called Pump. The X platform has been struggling to keep up with the growing list of security breaches, and users are left wondering when the next incident will occur.

As the number of high-profile hacks continues to grow, it's clear that the X social media platform needs to take immediate action to address these issues. Until then, users should remain vigilant and report any suspicious activity to the authorities immediately.