Just read through some multiple X handles now that Microstrategy’s X account had been hacked and tweet was done citing the claiming of the $MSTR tokens. As usual the link was a wallet drainer link and around $400k has been lost so far. Currently the tweet seems to have been deleted from the account but it’s deed has already been done.
There is daily continue warning of just clicking links as a bitcoin or cryptocurrency investors but yet many people actually continue fall victim for something I will say as a result of gullibility or greed.
The points from this phishing attack just like others is;
1. Make use of cold wallets; this shouldn’t be put on a second thought.
2. Do not trust any information from social media even if it is from an influencer account or an official account, verify, verify and verify your information.
3. If you are to engage on airdrops use a burner wallet at all cost.
Just as you said OP, burner wallet is the way to go for any of these AirDrop or any of the potential tokens you might want to receive.
Because nobody can be trusted, the internet is wild and full of predators that wouldn't spare you a minute if they get access to your wallet.
That's been a continuous campaign for social media users not to click links they are not familiar with, anybody holding such amount of cryptocurrency worth $400k should know better.