Fake Bitcoin ETF Approval: SEC’s X Account Lacked 2FA; Lawmakers Seek Investigation

<p dir="ltr">On Tuesday afternoon, the official X (formerly Twitter) account of the Securities and Exchange Commission (SEC) posted a much-anticipated tweet: “Today the SEC grants approval for Bitcoin ETFs for listing on all registered national securities exchanges.” However, it was a false announcement as the SEC X account was hacked.</p><p dir="ltr">SEC Failed to Secure Its X Account</p><p dir="ltr">According to the Safety team at X, the compromise was “due to an unidentified individual obtaining control over a phone number associated with the [SEC] account through a third party.”</p><p dir="ltr">The “preliminary investigation” of X further found that the SEC account “did not have two-factor authentication enabled at the time the account was compromised.” This raised massive security concerns on the part of the regulator.</p><blockquote><p lang="en" dir="ltr">We can confirm that the account <a href="https://twitter.com/SECGov?ref_src=twsrc%5Etfw">@SECGov</a> was compromised and we have completed a preliminary investigation. Based on our investigation, the compromise was not due to any breach of X’s systems, but rather due to an unidentified individual obtaining control over a phone number…</p>— Safety (@Safety) <a href="https://twitter.com/Safety/status/1744924042681897343?ref_src=twsrc%5Etfw">January 10, 2024</a></blockquote><p dir="ltr">Prompt Action Failed in Damage Control</p><p dir="ltr">After the false tweet, the SEC's Chief, Gary Gensler, quickly announced from his personal X account that the official X account of the regulator was compromised, and the fake tweet was deleted in about 30 minutes. However, the damage was already done.</p><blockquote><p lang="en" dir="ltr">The <a href="https://twitter.com/SECGov?ref_src=twsrc%5Etfw">@SECGov</a> twitter account was compromised, and an unauthorized tweet was posted. The SEC has not approved the listing and trading of spot bitcoin exchange-traded products.</p>— Gary Gensler (@GaryGensler) <a href="https://twitter.com/GaryGensler/status/1744833049064288387?ref_src=twsrc%5Etfw">January 9, 2024</a></blockquote><p dir="ltr">Some theories of an “inside job” and “fat finger” mistake were floated around. However, X’s confirmation of a compromised phone number debunked those theories.</p><p dir="ltr">The false announcement was made a day before the deadline for the SEC’s decision on the spot Bitcoin ETF application submitted by Ark and 21Shares. Although the regulator has been delaying or rejecting Bitcoin ETF applications since 2013, this time, the industry is anticipating approval. Even two top Bloomberg analysts have put 90 percent odds on the approval before the Wednesday deadline.</p><p dir="ltr">Crypto Market Reacts Quickly</p><p dir="ltr">The already bullish demand for Bitcoin momentarily jumped 4 percent in response to a false tweet from the compromised X account of the SEC. However, the prices swiftly corrected once the inaccuracy of the announcement came to light. There are some speculations that the hackers might have benefited from the Bitcoin price swings caused by the fake announcement.</p><p dir="ltr">Allegations of “Market Manipulation”</p><p dir="ltr">Earlier, Gensler was vocal about cybersecurity for financial services firms. He even encouraged investors to secure their financial accounts. However, the lack of 2FA for the regulator’s X account raised basic security questions.</p><blockquote><p lang="en" dir="ltr">This is a reminder to secure your financial accounts as well as protect against identity theft and fraud.Remember to: