- Hackers used Migos’ Instagram to leak Raj Gokal’s KYC data in a 40 BTC extortion attempt.
- Gokal’s passport, ID, and phone number were posted before Instagram removed the hacked posts.
- The data dump included images resembling KYC checks commonly used for crypto verification.
The Instagram account belonging to the former American rap group Migos was hacked on May 27 in an incident that targeted Solana co-founder Raj Gokal. Hackers used the account, which has 13 million followers, to publish several images and personal data, apparently in an attempt to extort 40 BTC from Gokal.
Hackers Leak KYC Documents and Personal Information
At least seven images appeared on Migos’ Instagram page during the breach. Among these were photos showing a man alleged to be Raj Gokal holding up his passport and driver’s license, with all details visible. Another set of images included a woman, reportedly Gokal’s wife, also holding up a driver’s license. The hacker captioned one image, “you should’ve paid the 40 btc,” directly tagging Gokal and implying a failed extortion demand.
The leaked images mirrored those commonly required for Know Your Customer (KYC) checks on crypto exchanges. They revealed sensitive data, including mobile phone numbers and email addresses. One post encouraged viewers to “spam” Gokal using the leaked phone number. Additionally, the hacker linked to a Telegram group in the final post.
The compromised posts on Migos’ Instagram page remained live for more than an hour before Instagram removed them. Both the Solana Foundation and Gokal have been approached for comments regarding the breach.
Social Engineering and Ongoing Security Concerns
Raj Gokal had previously warned on X (formerly Twitter) that attackers were actively targeting his email, social media, and other personal accounts. His May 21 statement urged followers to treat any unusual communications from his accounts with suspicion. The attack on Migos’ Instagram now appears to be linked to these ongoing attempts to compromise his digital security.
Blockchain investigator ZachXBT commented on X that Gokal’s accounts were likely targeted using social engineering techniques. After failing to secure the demanded funds, the hackers publicized the information to exert further pressure.
Social media account breaches involving celebrities and crypto leaders have grown more common. In recent months, hackers have exploited high-profile accounts to promote scams or leak private data. The use of deepfake technology and stolen KYC documents has further complicated efforts to combat such attacks.
Industry Context: Data Breaches and User Security
The Gokal incident comes amid increased attention on how crypto firms treat customer KYC details. Early in May, Coinbase revealed that 69,000 customer accounts had been compromised in a serious data breach. The incident triggered a class action case in which people claimed Coinbase reported the breach late, which contributed to its stock falling.
Related Reading | Pi Coin Sees 2M Tokens Move to Exchanges Amid Sell-Off Concerns