Cyber Incident Victim: Manchester, England, United Kingdom

On April 15, 2025, UK House of Commons Leader Lucy Powell’s verified X account was compromised by hackers who posted fraudulent cryptocurrency promotions. The attackers published multiple posts advertising "$HCC," a fabricated "House of Commons" digital currency falsely described as a community-driven blockchain initiative. These unauthorized messages included the official House of Commons logo and leveraged Powell’s cabinet position and 70,000 followers to imply legitimacy. The MP’s office confirmed the breach occurred on Tuesday morning and stated they swiftly secured the account and deleted the scam content. This incident mirrored prior attacks on high-profile accounts, including BBC journalist Nick Robinson, whose compromised X account earlier that year promoted a "$Today" cryptocurrency after he fell for a phishing email disguised as an X platform communication.

The attackers employed common credential-compromise tactics such as phishing or exploiting passwords leaked in prior data breaches. According to blockchain analysts at CoinShares, the "$HCC" promotion constituted a "pump and dump" scheme designed to inflate the coin’s value through deceptive endorsements before its creators liquidated their holdings. Only 34 transactions occurred, yielding approximately £225 in profit before the scam was disrupted. Action Fraud reported 35,343 similar social media and email account compromises in 2024, underscoring the prevalence of such attacks. UK Parliament officials reiterated their commitment to cybersecurity awareness for members but declined to disclose specific protective measures. The incident highlighted the operational risks of account takeovers targeting public figures to amplify financial scams.