QUADRIGA INITIATIVE
CRYPTO WATCHDOG & FRAUD RECOVERY PLATFORM
A COMMUNITY-BASED, NOT-FOR-PROFIT
$45 000 USD
MAY 2025
GLOBAL
TRON DAO
DESCRIPTION OF EVENTS
TRON DAO is a decentralized autonomous organization (DAO) that governs the TRON blockchain ecosystem. Originally founded in 2017 as the TRON network, it transitioned to a DAO structure in December 2021 to emphasize community-driven governance. The platform's core mission is to empower decentralized commerce and community on a global scale by supporting the development of decentralized applications (dApps) and financial tools. With over 311 million accounts and more than 10.5 billion transactions, TRON has positioned itself as one of the most active blockchain ecosystems in the world.
The TRON DAO focuses on enabling developers and users alike through robust infrastructure, educational resources, and accessible tools. Its architecture supports a wide range of applications across industries like gaming, finance, multimedia, and digital art. The platform promotes low barriers to entry, allowing individuals at any experience level to build, test, and deploy blockchain projects through its TestNet and developer tutorials.
In addition to supporting development, TRON DAO is actively involved in fostering innovation through initiatives like TRON DAO Ventures. These efforts aim to decentralize the web further and scale Web3 adoption. TRON also provides knowledge resources like TRONpedia to demystify blockchain and crypto concepts for users of all backgrounds. Ultimately, TRON DAO seeks to become the foundational infrastructure for decentralized money and community, shaping how value is exchanged globally.
Unfortunately, Tron DAO appears to have lacked sufficient preventative safeguards, particularly in areas like access control, employee security training, and incident response readiness. The multi-factor authentication may not have been enforced or properly configured, and the team member targeted may not have been adequately equipped to detect or resist phishing tactics.
The breach, attributed to a social engineering attack targeting a team member, led to unauthorized posts containing a contract address, unsolicited direct messages, and the following of unfamiliar accounts.
The Tron DAO X account breach appear to center around a social engineering attack rather than a direct exploitation of software vulnerabilities or platform infrastructure. According to Tron DAO, the attacker targeted a team member and successfully compromised their access credentials. Social engineering attacks typically involve manipulating a person into revealing confidential information—such as login credentials—via phishing emails, fake login portals, or impersonation tactics. Once the attacker gained control of the team member’s account, they used that access to take over Tron DAO’s official X (Twitter) account.
With control of the account, the attacker published a malicious smart contract address and began sending unsolicited direct messages (DMs) to Tron DAO’s followers. These messages falsely offered promotional opportunities and asked for payments, thereby exploiting the trust followers had in the verified account. The attacker also followed unfamiliar accounts, likely in an attempt to expand their reach or give legitimacy to associated fraudulent campaigns.
Approximately $45,000 was stolen through a fraudulent contract address and unsolicited direct messages.
Once the intrusion was detected, Tron’s security team swiftly revoked access and restored control. Tron DAO promptly secured the account and issued a public warning, emphasizing that they never solicit payments via direct messages and advising users to delete any received messages from that day. The organization also identified several accounts believed to be associated with the attacker.
Tron DAO did not report any breach of its blockchain infrastructure, smart contracts, or wallet systems—only its social media presence was compromised.
The hack of Tron DAO's X account remains unresolved. Despite regaining control of the account, no funds have been recovered, and the perpetrators have not been identified or apprehended. The community is advised to remain vigilant against similar scams.
As of the latest reports, no lost funds have been recovered from the Tron DAO X account hack. Tron DAO has confirmed approximately $45,000 was stolen, and while they are actively investigating and working with law enforcement, there has been no public indication that any of the funds have been retrieved.
Tron DAO continues to investigate the incident and is in communication with law enforcement. The team continues to analyze how the breach occurred, assess its full impact, and work with law enforcement to identify those responsible. Tron also noted possible links to other recent hacks, such as the New York Post’s X account, but said it's too early to confirm any connection.
Tron DAO is a community-governed organization overseeing the TRON blockchain ecosystem, which supports decentralized applications across gaming, finance, multimedia, and more. In May 2025, Tron DAO’s X (Twitter) account was compromised via a social engineering attack targeting a team member, leading to unauthorized posts, scam direct messages, and roughly $45,000 stolen through a fraudulent contract. While the breach did not affect TRON’s core blockchain infrastructure, it exposed vulnerabilities in access controls and security training. Tron DAO quickly regained control, issued warnings, and continues to investigate the incident in collaboration with law enforcement, urging the community to remain vigilant as the perpetrators have yet to be identified or apprehended.
HOW COULD THIS HAVE BEEN PREVENTED?
The incident highlights the need for enhanced multi-factor authentication (MFA), secure credential management, and employee training on phishing and social engineering tactics to prevent similar breaches in the future.
Tron DAO - "We’re aware that our X account was compromised from 9:25 AM PST on May 2, 2025. During this time, an unauthorized party published a post containing a contract address (CA), sent direct messages (DMs), and followed various accounts unknown to us." - Twitter/X (Jun 4)
Tron DAO Twitter/X (Jun 4)
Tron Logo - 1000Logos.net (Jun 4)
Star Xu - "Dear Mr H.E. Justin Sun, our LE cooperation team just checked the email including spam box, we haven’t received any request related with this case. Can you give us the screenshot to show when the enforcement agency send the request to us? @justinsuntron" - Twitter/X (Jun 4)
@justinsuntron" - Twitter/X (Jun 4)
Tron DAO Homepage (Jun 4)
Lpphong - Original Post By Justin Sun - Twitter/X (Jun 4)
Star Xu - "Dear Mr H.E. Justin Sun, OKX has public LE cooperation policy. You can offer some preliminary evidence of the incident through the public reporting channels, we will do a temporary urgent freeze according to the evidence. Then you should work with LE agents to offer us legal documents to continue the freeze. OKX also has consumers protection policy according to law, we can’t freeze a customer’s funds according to your personal X post or an oral communication. I think you should understand it as the CEO of HTX." - Twitter/X (Jun 4)
Justin Sun - "will send you privately" - Twitter/X (Jun 4)
Tron says DAO X hack cost victims $45K, Curve Finance also hit - CoinTelegraph (Jun 4)
OKX fires back at Tron’s Justin Sun over mysterious ‘freeze notice’ - CoinTelegraph (Jun 4)
TRON's X Account Hacked in Social Engineering Attack - A Invest (Jun 4)
TRON’s X account hacked in the latest social engineering attack - CryptoSlate (Jun 4)
Tron DAO - "We ask the community to stay vigilant. We will never ask for payments via DM or shared links." - Twitter/X (Jun 4)
