Hackers briefly hijacked Dota 2's YouTube to promote a fake Solana token, spotlighting crypto scams and Android Pixnapping vulnerabilities affecting esports channels.
The official YouTube channel of Dota 2, a leading multiplayer online battle arena (MOBA) game, was briefly hijacked on October 15, 2025, by hackers promoting a fake Solana-based cryptocurrency called "dota2coin."
The attackers livestreamed a deceptive event titled "Dota 2 Launch Official Meme Coin | Hurry Up" to lure fans into buying the fraudulent token via a PumpFun platform link.
The promotion falsified a partnership with Dota 2 by including a link to the legitimate channel, making the scam appear authentic.
The breach was short-lived, and the livestream was removed without any evidence of compromised user data.
The hacking incident, however, spread beyond Dota 2's channel to affect esports YouTube channels such as ESL, BLAST Counter-Strike, Esports World Cup, and Mobile Legends MPL Indonesia, revealing the scale of this coordinated attack.
Coordinated Attacks Exploit Channel Vulnerabilities and Emerging Android Flaws
Reddit communities warned users against interacting with the fake token, which surged briefly to a $7,000 market cap before plummeting to around $5,500.
On-chain data showed the token was created hours before the hack, with more than 98% of supply held by a single wallet, a classic rug-pull indicator.
“Nobody is falling for that garbage anymore,” an X user remarked, expressing frustration over scams exploiting celebrity affiliations.
Further complicating the security landscape, the YouTube incidents coincide with revelations of a new Android exploit called Pixnapping.
This attack stealthily steals sensitive on-screen data—including two-factor authentication (2FA) codes—from apps on devices without requiring special permissions.
The exploit, tested on Google Pixel and Samsung Galaxy S25 phones, allows malicious apps to capture "pixels" revealing authentication credentials, amplifying risks for users relying on Android's 2FA mechanisms.
This overlapping timeline raises questions about whether Android security flaws contributed to the session hijacking enabling these YouTube channel takeovers.
Despite Google releasing patches, Pixnapping variants appear to remain effective against current updates, leaving devices vulnerable
Key Topics
Crypto New Live
admin@cryptonewslive.org
Dota 2 YouTube Hacked to Push Fake Solana Token
Dota 2's official YouTube was hacked to promote a fake Solana meme coin amid Android's Pixnapping 2FA exploit, impacting multiple esports channels.