Scott Kisser

This is the hardest thing I’ve ever had to write. I’m completely devastated. Last Friday, I️ was notified that my monetization had been paused. I’ve shown up on this app for 5 years straight every single day to grow my account to what it is now. I️ never once paid for ads, never bought followers, never did anything but grow in an organic way. After appealing once, I️ was told my account was removed due to spam and inauthentic content. This couldn’t be further from the truth. I️ spend 6-12 hours on X daily in addition to my full time job; creating content, interacting and posting. I’ve adapted to new algorithms, posting strategies and even started a newsletter. I️’ve stopped using any other online platforms as I️ truly value the freedom and community X has brought me. Every single holiday, family event, vacation, wedding, birthday, you name it, I’ve been active on X during it. I’ve never once taken for granted the audience I’ve grown on this app and have thoroughly enjoyed the relationships I’ve built because of it. During this last period in which I️ was removed, I️ proposed to my girlfriend of 7 years. During this proposal trip, I️ stayed active online the entire time, which is nothing new. I have given up years of time to create something bigger with no regret. But now, after being denied and repeatedly called a spam account, with no way to plead my case, my last resort is to post here. Having to do this publicly feels so pathetic. It’s been almost a week and 2 appeals later, and I️ can’t get in touch with anyone who’s willing to help. I haven’t been given any clarification of where I️ went wrong or if there is a pathway to resolution. How can I️ dedicate myself so profoundly to something for so many years without being given any chance to make a simple change in my form of content? I’ve never had my account flagged or even been told of any misconduct in a 5 year period. The first I️ hear of an issue is ironically on pay day after spending hours upon hours working online during my vacation. I️ don’t expect everyone to be able to understand the severity of this situation because they will never see the time, sacrifices and work put into growing an account from 0 followers to over 260k. I️ can’t begin to explain the things I’ve sacrificed to get to the point of being a creator and I️ can’t help but feel like the platform has failed me. To you, this may just be a lighthearted meme account you follow. To me, this has altered my life. I️ was committing to go full time on X and even put in notice at my full time job. It is every content creators dream to be able to take this on full time, and to have it taken away from you almost as soon as you got it, feels gut wrenching. Over the last 2 years I’ve told everyone how important it is to get a blue checkmark, pay for premium and begin to monetize their account. I️ couldn’t have been louder about how much I️ love this platform and truly felt it was the only platform worth being on. The freedom I️ was given was amazing up until now. I️ truly never thought something like this would happen. All of this to say, I️ am not a spam account and I️ deserve reconciliation. I️f there is a specific thing I’ve done wrong, I️ will adapt my content to no longer do so. But a permanent suspension with a false reasoning will never be okay with me. I️ would hope that you are also not okay with taking away the livelihood of the creators on a platform that prides itself on free speech. @XCreators @premium @x @elonmusk @nikitabier

@hellohodl The compromised employee / employee laptop is the interesting part to me. And since Jimmy Song got his laptop rooted today, its not looking good for regular employees/ regular folks, wow.😬 Ofc the prod secrets should not have been on that employee's laptop,but still.

March 1st incident report On March 1, 2026, Bitrefill was the target of a cyberattack. Based on indicators observed during the investigation - including the modus operandi, the malware used, on-chain tracing and reused IP + email addresses (!) - we find many similarities between this attack and past cyberattacks by the DPRK Lazarus / Bluenoroff group against other companies in the crypto industries. The initial access originated through a compromised employee laptop, from which a legacy credential was exfiltrated. That credential provided access to a snapshot containing production secrets. From there, the attackers were able to escalate their access to our broader infrastructure, including parts of our database and certain cryptocurrency wallets. We first detected the incident after noticing suspicious purchasing patterns with certain suppliers. We realized that our gift card stock and supply lines were being exploited. At the same time we found some of our hot wallets being drained and funds transferred to attacker-controlled wallets. The moment we identified the breach, we took all of our systems offline as part of our containment response. Bitrefill operates a global e-commerce business with dozens of suppliers, thousands of products, and multiple payment methods across many countries. Safely switching all these things off and bringing them back online is not trivial. Since the incident, our team has been working closely with top industry security researchers, incident response specialists, on-chain analysts and law enforcement to understand what happened and how we can prevent it from happening again. A sincere thank you to @zeroshadow_io, @SEAL_Org, @RecoverisTeam and @fearsoff for their rapid response and support throughout this ordeal. What about your data Based on our investigation and our logs we don’t have reason to think that customer data was the target of this breach. There is no evidence that they extracted our entire database, only that the attackers ran a limited number of queries consistent with probing to understand what there was to steal, including cryptocurrency and Bitrefill gift card inventory. Bitrefill was designed to store very little personal data. We are a store, not a crypto service provider. We don’t require mandatory KYC. When a customer chooses to verify their account - e.g. to access higher purchasing tiers or certain products - that data is kept exclusively with our external KYC provider, with no backups in our system. Still, based on database logs, we know that a subset of purchase records was accessed and we want to be transparent about that. Around 18,500 purchase records were accessed by the attackers. Those records contained limited customer information, such as email addresses, crypto payment address, and metadata including IP address. For approximately 1,000 purchases, specific products required customers to provide a name. That information is encrypted in our database. However, since the attackers may have gotten access to the encryption keys, we are treating this data as potentially accessed. Customers in this category have already been notified directly by email. At this time, based on the information currently available, we do not believe customers need to take specific action. As a precaution, we recommend remaining cautious of any unexpected communications related to Bitrefill or crypto. If this assessment changes, we will of course immediately inform those affected. What we are doing We have already significantly improved our cybersecurity practices, but vow to continue to draw learnings from this experience to make sure user and company balances and data remain maximally safe. Specifically we’re: -Continuing thorough cybersecurity reviews and pentests with multiple external experts and implementing recommendations; -Further tightening internal access controls; -Further improving logging and monitoring for faster detection and more effective response; and -Continuing to refine and test our incident response procedures and automated shutdown procedures. The bottom line Getting hit by a sophisticated attack sucks (a lot). We’ve been in business for over 10 years and it’s the first time we’ve been hit this hard. But we survived. Bitrefill was designed to limit the impact if something like this ever happened. Bitrefill remains well funded, has been profitable for several years and will absorb these losses from our operational capital. Almost everything is back to normal: payments, stock, accounts. Sales volumes are also back to normal, and we are eternally thankful to our customers for your continued confidence in us. We will continue to do our best to continue deserving your trust. Thank you!

After much reflection, I have decided to resign from my position as Director of the National Counterterrorism Center, effective today. I cannot in good conscience support the ongoing war in Iran. Iran posed no imminent threat to our nation, and it is clear that we started this war due to pressure from Israel and its powerful American lobby. It has been an honor serving under @POTUS and @DNIGabbard and leading the professionals at NCTC. May God bless America.

LATEST: @Tether CEO @PaoloArdoino is set to speak at a conference and attend a gala luncheon with Donald Trump at Mar-a-Lago.