X Account of Google Cybersecurity Firm Mandiant Hacked in Crypto Scam

**Executive summary:** On January 3, 2024, attackers compromised Mandiant's X (Twitter) account, changed its handle to impersonate the Phantom crypto wallet, and pushed malicious links promoting a fake airdrop to over 122,000 followers; Mandiant later regained control and removed the malicious posts. The report also contextualizes this incident with prior high-profile Twitter/X crypto scams and offers basic account-security advice.