A phishing link was included in the tweet and shared with the affected users of the hack, leading them to believe it is associated with Fantom Foundation.