After hack, X claims SEC failed to use two-factor authentication

A hijacked SEC X (Twitter) account, apparently taken over by an individual who obtained control of an associated phone number (likely via SIM swapping), posted a false announcement that bitcoin ETFs had been approved, briefly moving the bitcoin market. X stated the compromise was not a platform breach but due to control of the phone number and noted the SEC had not enabled two‑factor authentication; the SEC is investigating with the OIG and FBI.