On June 4, 2022, the Bored Ape Yacht Club (BAYC) Discord server was compromised and a phishing scam targeted non-fungible token (NFT) faucets holding BAYC, Mutant Ape Yacht Club (MAYC), and Otherside NFTs. According to an analysis by Web3 and blockchain auditing and security firm Certik, the BAYC Discord server attacker may have been involved in previous phishing attacks.
Blockchain Security Firm Certik Analyzes BAYC Discord Phishing Attack
Despite the fact that many NFTs are very expensive, it becomes even more profitable for attackers to steal them. This week, the Bored Ape Yacht Club (BAYC) Discord server was hacked and the attacker used a phishing scam to lure victims in.
Devil, a Web3 and blockchain auditing and security firm, published an analysis of the attack, and based on the company account, the attacker may have been involved in previous phishing attempts. The attack took place on Saturday and a total of 32 NFTs worth about $360k were stolen from blue-chip NFT holders.
The stolen NFTs came from Bored Ape Yacht Club (BAYC), Bored Ape Kennel Club (BAKC), Mutant Ape Yacht Club (MAYC), and NFTs from the Otherdeed collection. The Certik report states that the phishing site was “an exact copy of the project’s official site, but with minor differences.”
The site had no social media links and a tab called “Request Free Land” was added. After some victims were hijacked by fake phishing ads, the attacker got some NFTs and then proceeded to sell them.
The attackers managed to get 142 ethers, and Certik notes that it is likely 100. Ethereum was submitted to the Tornado Cash mixing app. Certik summarizes why the researchers believe that some evidence shows that some of the Ethereum received by the hacker was sent to Tornado Cash and possibly sent to one address.
“Although it is impossible to be sure that 99.5 Ethereum redeemed 0x2917…these are funds associated with today’s attack, it is likely that these are stolen funds after mixing due to 20.5 Ethereum sent to the depositor’s address,” Chertik’s report says.
Certik’s analysis adds:
Most of the funds went to [Externally Owned Account (EOA)] 0x5bC1… where they remain at the time of writing.
The blockchain security firm says the links indicate that 0x5bC1 is likely “associated not only with today’s BAYC phishing attack, but also with previous phishing attacks.” The company mentioned the fact that BAYC was targeted on April 25, 2022 when an attacker hacked into the NFT collection’s Instagram account.
At the time, a hacker got away with 888 Ether worth of non-fungible tokens by posting a fraudulent link to a fake airdrop. “Users were prompted to sign a ‘safeTransferFrom’ transaction,” Certik’s report concludes. Prior to the Instagram exploit at the end of April, on the first day of April, Mutant Ape Yacht Club #8662 was stolen via a phish posted on a Discord channel. Celebrity Seth Green was recently the victim of a phishing attack and lost his Bored Ape due to a scam. A bored monkey #8398 named “Fred” was to play a role in Green’s new series called “White Horse Tavern”.
What do you think of the recent BAYC phishing scam? Let us know what you think about it in the comments section below.
Denial of responsibilityA: This article is for informational purposes only. This is not a direct offer or solicitation to buy or sell, nor is it a recommendation or endorsement of any products, services or companies. Bitcoin.com does not provide investment, tax, legal or accounting advice. Neither the company nor the author is directly or indirectly liable for any damage or loss caused or alleged to be caused by the use of or reliance on any content, goods or services mentioned in this article.
Credit : news.bitcoin.com