TLDR
- The platform will automatically freeze accounts making their first cryptocurrency-related posts, demanding additional verification steps
- This security measure addresses phishing schemes where cybercriminals commandeer accounts to advertise fraudulent tokens
- Product Chief Nikita Bier claims the tool will eliminate “99% of the incentive” behind such attacks
- The initiative responds to widespread fake copyright notice emails designed to capture login details and authentication codes
- Bier also pointed fingers at Google for permitting phishing messages to reach Gmail users
The social media platform X is preparing to launch a security mechanism that will immediately freeze any user account that references cryptocurrency in its debut post on the topic. Access will remain restricted until the account holder successfully navigates a verification procedure.
Nikita Bier, who leads product development at X, confirmed the upcoming feature through a post on the platform itself. He explained that the primary objective is to eliminate the profitability of account takeovers orchestrated for crypto fraud purposes.
“This should kill 99% of the incentive,” Bier stated, addressing the ongoing surge of phishing campaigns directed at X’s user base.
The disclosure followed a user’s public account of being locked out after falling victim to a deceptive email that mimicked a copyright infringement warning. The malicious actor deployed a counterfeit login portal to harvest the victim’s authentication credentials and two-factor codes.
After gaining unauthorized entry, the attacker prevented the legitimate owner from accessing their profile and proceeded to broadcast fraudulent cryptocurrency ventures to the account’s audience.
How the Scams Work
These cyber intrusions typically follow a consistent blueprint. An unauthorized party seizes control of an established account, then leverages it to distribute fake memecoin offerings, bogus airdrops, or schemes promising to multiply crypto holdings. The established reputation of a genuine account increases the likelihood that followers will engage.
Because cryptocurrency transfers are irreversible by design, victims cannot reclaim their assets once transactions have been processed.
The most infamous incident of this attack vector occurred in 2020. Cybercriminals penetrated Twitter’s backend infrastructure and commandeered verified profiles belonging to major entities like Apple, Barack Obama, and Elon Musk.
These compromised accounts broadcasted a fabricated Bitcoin giveaway that accumulated more than $100,000 before platform moderators removed the fraudulent content. The perpetrator ultimately received a five-year prison sentence.
X’s Broader Security Push
The platform has been actively working to combat fraudulent behavior for an extended period. Previous initiatives have included automated bot removal campaigns, stricter API limitations, and enhanced behavioral analysis systems.
Toward the end of 2025, X announced it had dismantled a corruption scheme involving crypto scam operators. According to the company, banned users had attempted to funnel payments through middlemen to bribe X employees into reinstating suspended accounts.
This new automatic freeze mechanism extends those efforts by intercepting scams before they can propagate. When a compromised account triggers an immediate lock upon attempting crypto-related content, it significantly diminishes its value to cybercriminals.
Bier emphasized his support for authentic cryptocurrency discourse on X while distinguishing it from ventures that “create incentives to spam, raid, and harass.”
He additionally called out Google specifically, asserting that Gmail’s spam detection systems are failing to block phishing attempts before they land in user mailboxes, assigning partial accountability to the search giant.
While the automatic lock capability hasn’t officially deployed yet, X indicates it will arrive in the near future.
