I noticed that Peanutswar mentioned receiving a link for Discord community management. Is it really possible for someone to gain access to your bitcointalk account just by clicking on such a link? Sorry if this sounds like a silly question, but I'm genuinely curious to learn about the countermeasures against this type of attack.
There was another such case happened here, I can't remember who was it. Will try to find it out.
I'm not an expert in such cases though I didn't the guy who claimed this few months back. However, I heard such a case recently where hacker got access of facebook account just because the victim clicked on a link. It was not a phishing password steal method. There was a group who recently got arrested in Bangladesh. They used to access facebook account by this trick and blackmail many people by collecting their private data.
If I'm not wrong then the method is called as "session hijacking" or "session cookie theft." In such type of attacks the hacker often send you a malicious link, and when a users clicks on the link then the hacker take advantage of the vulnerabilities of the browser that the user is using to access the link. The hacker then steal the session cookies of the user and then use that cookie on his/her browser with the help of extensions like cookie editor. Such type of attacks are often planned by the hackers who have access to some hidden vulnerabilities of the browsers that no-one knows yet. Those hackers can steal session cookies of any website they want, and that way they hack the access of the users.
I'm quite sure that the same thing happened with @Peanutswar when he clicked on that malicious link without even thinking about such exploits. The hacker knew that the user would click on the link, and he would be able to steal the cookies one the user will click the link. It's better to be aware of such type of hacks because they can easily hack someone's account and ask for loans that the user isn't asking for. It's our responsivity to protect ourselves from such type of hacking attacks, and we should never click on the links sent by a unknown user. That way we will be able to protect ourselves from such kind of hacks.