The social media platform X is weighing a significant policy shift that could automatically lock the accounts of users who mention cryptocurrency for the first time. This move comes directly in response to a bizarre and audacious scam where a fraudster impersonated a veterinarian to falsely report the death of the world’s oldest living land animal, a 193-year-old tortoise named Jonathan. According to Nikita Bier, X’s head of product, the proposed verification requirement aims to dismantle the financial incentive for phishing attacks that compromise accounts. “This should kill 99% of the incentive, especially since Google isn’t doing shit to stop the phishing emails,” Bier stated in a post on the platform on Wednesday, April 1, 2026. The incident highlights the persistent vulnerability of social media users to financially motivated impersonation and fraud.
X Considers Stricter Crypto Posting Rules
In his announcement, Bier outlined a potential system where any account making its first-ever post containing cryptocurrency-related terms would be automatically locked. The user would then need to complete a verification process to regain access. This proposal targets a common attack vector: scammers who use phishing emails to steal login credentials for legitimate, often established, social media accounts. They then use the hijacked accounts’ existing credibility to promote fraudulent crypto schemes. Data from blockchain analytics firms consistently shows that account takeovers are a primary method for launching “pump-and-dump” memecoin campaigns. The new rules would aim to break this cycle by adding a friction point immediately after a compromised account is repurposed for crypto promotion. Industry watchers note that while this could reduce spam, it may also inadvertently affect legitimate new users discussing digital assets.
Also read: Bermuda to move key financial services onto Stellar blockchain, premier says
The Bizarre Tortoise Scam That Prompted the Review
The immediate catalyst for this policy review was a scam of unusual creativity. On March 31, 2026, an account on X impersonating Joe Hollins, the veterinarian caring for the famed tortoise Jonathan on the island of Saint Helena, posted that the animal had died. The post included a link to a new Solana-based memecoin named JONATHAN. The story gained traction before the BBC and other outlets debunked it on April 2. The real Joe Hollins told The Guardian, “Jonathan the tortoise is very much alive. I believe on X the person purporting to be me is asking for crypto donations, so it’s not even an April fool joke. It’s a con.” According to data from CoinMarketCap, the price of the JONATHAN token surged by over 6,000% following the fraudulent posts before collapsing. At the time of publication, the token was virtually worthless. This event demonstrated how scammers apply breaking news narratives, no matter how niche, to create artificial urgency.
How Memecoin Scams Operate
These scams follow a predictable pattern. First, fraudsters create a token with a low initial value. Next, they use compromised or anonymous social media accounts to fabricate a compelling narrative tied to the token’s name. This creates a wave of speculative buying. Finally, the creators “dump” their pre-allocated holdings at the peak, causing the price to crash and leaving retail investors with significant losses. The Jonathan tortoise incident is a variation, using impersonation for credibility rather than just a pseudonymous account. What this means for investors is that any token promoted through unverified, sensational social media posts carries extreme risk. The speed of the JONATHAN token’s pump and dump—likely occurring within 24 hours—is typical for these schemes.
The Persistent Problem of Social Media Phishing
Bier’s criticism of Google’s efforts to stop phishing emails points to the root of the problem. Many of the high-profile account takeovers on X begin with sophisticated email phishing campaigns that trick users into surrendering their login credentials. Once inside, scammers often disable two-factor authentication and change the account’s password. The platform has existing safeguards, but the process of detecting a compromised account and restoring it to its rightful owner can take hours or days. During that window, a scammer can cause immense financial harm to the account’s followers. X’s proposed solution attempts to insert a barrier at the exact moment a stolen account becomes useful for fraud: the first crypto post. This suggests a shift toward preemptive action rather than reactive account recovery.
Historical Context of Crypto Impersonation Scams
Impersonating a tortoise’s veterinarian is novel, but using fake celebrity or authority figures to shill crypto is not new. Unauthorized memecoins have been created around numerous public figures, including Japanese Prime Minister Sanae Takaichi and former US President Donald Trump, without their consent. Furthermore, high-profile account takeovers have been a problem for years. In 2024, a major breach saw accounts for prominent figures and companies like the SEC and Apple post fake Bitcoin ETF approval announcements. The implication is that as long as cryptocurrency remains a high-reward, speculative asset, social media platforms will be battlegrounds for influence and fraud. Each platform’s security and moderation policies directly shape the cost of doing business for these scammers.
Potential Impact and Industry Reaction
If implemented, X’s rules would represent one of the most aggressive platform-led interventions against crypto spam. The impact could be twofold. First, it could significantly reduce the volume of scam posts from newly compromised accounts. Second, it might push bad actors toward other, less restrictive platforms or different fraudulent tactics. Some free speech advocates and crypto community members have expressed concern that such automated systems could overreach, mistakenly flagging legitimate discussion or news sharing. The key will be in the design of the verification process and the accuracy of the keyword detection. A clumsy system could frustrate genuine users while determined scammers find workarounds. Analysis from cybersecurity firms indicates that multi-layered defenses, including better phishing detection and user education, are still necessary.
Conclusion
The proposed X crypto rules for first-time posters highlight the ongoing struggle social media companies face in balancing open discourse with user protection. The bizarre tortoise scam was a stark reminder of the lengths to which fraudsters will go to exploit trust and momentum in the crypto space. While an automatic account lock for first-time crypto mentions is a drastic measure, it targets a specific and costly abuse pattern with precision. The effectiveness of such a policy will depend on its execution and its ability to adapt to the next creative scam. For now, the incident underscores a critical warning for users: always verify sensational news from official sources and be deeply skeptical of any financial opportunity promoted through unsolicited social media posts.
FAQs
Q1: What specific rule is X considering for crypto posts?
X is considering a system that would automatically lock any user account the first time it posts content containing cryptocurrency-related terms. The account owner would then need to complete a verification process to unlock it.
Q2: What scam caused X to propose these new rules?
The proposal came after a scammer impersonated the veterinarian for Jonathan, a 193-year-old tortoise, falsely claiming the animal had died and promoting a Solana memecoin called JONATHAN. The fraudulent post caused the token’s price to spike over 6,000% before it crashed.
Q3: How do scammers typically gain control of accounts to run these schemes?
According to security experts, most account takeovers begin with phishing attacks. Scammers send deceptive emails that trick users into entering their X login credentials on fake websites, granting the fraudsters direct access.
Q4: Have there been similar impersonation crypto scams before?
Yes. Impersonation scams are common. Unauthorized memecoins have been created using the names and likenesses of numerous celebrities and politicians. High-profile account takeovers have also been used to post fake news that moves crypto markets.
Q5: What should users do to avoid these scams?
Users should enable two-factor authentication on their social media accounts, be wary of clicking links in unsolicited emails, and independently verify any sensational financial news or crypto offers seen on social platforms through trusted, official sources.
Be the first to comment