zkSync released a detailed report on the compromise of its Twitter account, stating that "the impostor forged his identity and claimed to be an official representative of zkSync when contacting Twitter support. Unfortunately, Twitter's technical support staff did not follow standard procedures and approved the impostor's request to change his email and password."
Since zkSync has 2FA enabled, the attacker was unable to access the account, but since the password had been changed and the team was logged out and unable to access, Twitter subsequently secured the account and worked closely to resolve the issue. In addition, Twitter has accelerated the application for the gold verified badge, and now all officially affiliated accounts have a small zkSync symbol next to their names.
