X is rolling out an automated security feature that instantly locks any account posting about cryptocurrency for the first time in its history. Users must complete additional identity verification before they can resume activity. Head of Product Nikita Bier confirmed the rollout, explaining that it directly targets the financial incentives behind account hijackings, where compromised profiles are used to promote fraudulent tokens and malicious links.
The policy addresses a persistent scam pattern in which attackers rely on phishing emails, often disguised as copyright notices or security alerts, to gain access to user accounts. Once inside, hackers post content promoting fake airdrops and memecoins. X has previously implemented bot purges, API rate limits, and behavioral detection systems, but scammers continued exploiting the trust built by long-standing accounts.
Impact on Scam Operations
This auto-lock mechanism removes the rapid monetization window that makes account hijacking profitable. Bier estimates it could eliminate up to 99 percent of such incentives. The feature also builds on recent efforts to block coordinated mention-spam campaigns used in crypto promotions.
Long-term users who have never posted about cryptocurrency will face verification checks on their first such post. Legitimate and verified accounts can regain access quickly after completing the process. The update comes amid ongoing criticism of upstream vulnerabilities, particularly phishing emails that bypass filters.
Current Scam Landscape
The auto-lock triggers only on an account’s first-ever cryptocurrency-related post, enforcing verification before further activity. This directly disrupts common hijacker workflows.
The rollout follows a surge in phishing attacks using fake copyright and security emails, including the April 1, 2026 compromise of Predictfully founder Benjamin White’s account. In that case, attackers used the stolen profile to promote scam tokens and demand ransom payments.
Many compromised accounts have also been used to spread AI-generated spam and mass replies. Bier pointed to email providers like Gmail as a contributing factor, noting that phishing messages still reach users. Reactions from the crypto community are mixed, with some welcoming stronger protections while others worry about potential restrictions on legitimate content.as X continues to strengthen platform security alongside its broader push into digital payments and financial services, including early access initiatives like its X Money payments service.
