First time, my company’s X account was hacked 2 weeks ago. Totally my fault — I clicked on a phishing email and gave them the password and even uploaded some company documents and my ID. But after 12hrs, X support helped me recover the account, I changed the password, enabled all 2FA options (eventhough I did it from the beginning but hacker bypassed it), and they told me they revoked all sessions. Since then, I’ve only been logging in from the official mobile app and all other staff only got delegated, not login access.

Second time, 2 weeks later (yesterday)— I suddenly get kicked out of the app, all my team delegator members lose access too, and when I try to log back in, it says it can’t find my email. . But this time, I never got any notification from X saying the email was changed like the first time.

My email is totally secure — no sign of compromise, no new login sessions.

SIM is fine. No new logins. I didn’t click on anything sketchy nor install any apps recently since that first phishing attack.

I’m wondering:

1. Can someone change the email on an X account without triggering a notification to the original email?

2. Does X suppress those if someone contacts support and claims the original email is compromised after 2 weeks?

Would love to hear if anyone else has seen something like this or knows how the backend systems work. I'm still waiting on X support, but this is really bothering me.