A new phishing campaign targets crypto personalities’ X accounts, bypassing two-factor authentication. MetaMask researcher confirms the attack “in the wild.” The campaign appears credible, using X infrastructure to gain account access. The phishing link disguises as Google Calendar but redirects to a different URL, requesting excessive account control permissions. Users should revoke suspicious apps on X’s connected apps page.

Read more at Cointelegraph: New X Account Takeover Attack Targets Crypto Community