- X’s Safety team has cleared the air on SEC’s misleading tweet with the claim that hacker exploited SEC Chair Gary Gengler’s phone number to tweet the misleading spot BTC ETFs approval.
According to the social media X, the Securities and Exchange Commission (SEC) did not employ basic security measures on its X (formerly Twitter) account when it was “compromised” to spread false bitcoin ETF news,
Late Tuesday, X’s Safety team said it had completed its “preliminary investigation” into the SEC’s market-moving, false post on approval of bitcoin ETF applications, which the regulator blamed on its “compromised” account.
“The compromise was not due to any breach of X’s systems, but rather due to an unidentified individual obtaining control over a phone number associated with the @SECGov account through a third party,” X’s Safety account posted.
The explanation seemingly rules out an “inside job” or “fat finger” theory of the midday post.
Bitcoin (BTC) price pumped on the post, but quickly crashed after SEC Chair Gary Gensler clarified that the post was phony.
The incident raises new questions about basic security measures being taken by the SEC, the most powerful investment regulator in the US and one whose statements are closely watched and traded on.
Gensler himself has previously encouraged investors to take their security seriously.
This is a reminder to secure your financial accounts as well as protect against identity theft and fraud.
— Gary Gensler (@GaryGensler) October 24, 2023
US senators J.D. Vance and Thom Tillis have sent a letter to the SEC demanding an explanation of its lapse in cybersecurity.
"It is unacceptable that the agency entrusted with regulating the epicenter of the world’s capital markets would make such a colossal error." pic.twitter.com/xG77jM9xAM
— Senator Vance Press Office (@SenVancePress) January 10, 2024
“It is unacceptable that the agency entrusted with regulating the epicenter of the world’s capital markets would make such a colossal error,” they wrote.
“We can also confirm that the account did not have two-factor authentication enabled at the time the account was compromised. We encourage all users to enable this extra layer of security,” X posted.
“turns out the sec was worried about the wrong security” pic.twitter.com/NAComcTcSH
— twicrates 5’8.375 (@twicrates) January 9, 2024