The Tron X account was compromised in the latest social engineering attack.
The organization behind one of the largest Blockchain networks in the world confirmed that the Tron X account was compromised on May 2, 2025, in a targeted social engineering attack. The breach persisted from 9:25 AM Pacific Time, when an unauthorized party posted a message containing a suspicious contract address. The hacker then proceeded to send direct messages (DMs) to users and followed unknown accounts. According to Tron’s analysis after the incidents, the attacker was able to gain access by targeting a team member through a malicious social engineering scheme. Once inside, the perpetrator used the official account to post the contract address, potentially luring followers to interact with a fraudulent smart contract. The attacker also sent unsolicited DMs and followed various accounts, attempting to exploit the breach even after Tron regained control of the account. Tron Dao immediately warned users: 'Tron Dao will not post contract addresses or send unsolicited DMs. If you received a DM from our account on May 2, please delete it and consider it the work of the attacker.' The organization has since identified several X and Telegram accounts believed to be linked to the perpetrator and is working with law enforcement to investigate the incident. Tron founder Justin Sun also urged Exchange OKX to freeze funds associated with the hack and reposted Tron’s official message on X with the simple words: 'Stay safe.' Rise of Social Engineering Threats Social engineering is responsible for 98% of cyber attacks, and the Tron incident is the latest in a series of prominent social engineering and phishing attacks in the crypto sector this year. Just a few days ago, a senior American lost $330 million in Bitcoin after being targeted through an elaborate social engineering scam. In this case, the attackers manipulated the victim’s trust and gained access to their wallet, quickly laundering the stolen funds through multiple exchanges and privacy coins. Another recent case involved the theft of over $40 million in Bitcoin from a high-net-worth individual. The hackers used a mix of phishing emails, impersonation, and fake support tickets to bypass hardware wallet protection. Advanced social engineering tactics can defeat even the worst security measures, and even advanced crypto OGS can fall prey to hackers. The breach of Tron’s X account illustrates that even well-distributed organizations are not immune to the threat.
