Social-media impersonation scam spike

Jupiter Perpetual Exchange's assessment for RD-F-109 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Social-media impersonation scam-spike signal (T-09 phase-2 signal). Applicable to Jupiter — active X (@JupiterExchange, >500k followers), Discord, Telegram channels. The 2025-02-06 X account hack is a direct real-world precedent: attacker hijacked the official account to promote fake $MEOW and DCOIN tokens; JUP price dropped 12%; traders lost an estimated $20M+ via the scam tokens. This was not a fake impersonator account but a hijacked official account — a related but distinct event class. Post-hack account was recovered; $0 to protocol funds. As of 2026-05-16 no active social-media impersonation spike detected. Historical precedent elevates monitoring priority. Scored yellow because: (1) confirmed prior attack via this vector; (2) ongoing typosquat domain activity (F161); (3) Jupiter is a known high-value social engineering target.

Sources #

URL
The Block — Jupiter X Account HackThe Block — Jupiter X account hacked 2025-02-06 to promote fake $MEOW and DCOIN tokens.retrieved 2026-05-16
URL
CryptoPotato — Jupiter X Account RecoveryCryptoPotato — Jupiter regained X account; Meow confirmed US-based IP, $0 protocol funds lost.retrieved 2026-05-16

Methodology #

Detect a sharp uptick in Discord/Telegram/X accounts impersonating the protocol team or announcing fake airdrops.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol jupiter-perps factor RD-F-109 score yellow collected_at 2026-05-16 01:53:11