Latest news about Bitcoin and all cryptocurrencies. Your daily crypto news habit.
The attack is the latest in a long string of exploits targeting users on Discord with fake âstealthâ NFT drops.
Hong Kong-based gaming and venture capital company Animoca Brands and subsidiary Blowfish Studios have promised users that they will repay 265 Ether (ETH) or $1.1 million stolen in a fraudulent nonfungible token (NFT) sale on Discord.
The fraudulent minting event occurred at approximately 3 am Australian Eastern Daylight Time on Friday on the Phantom Galaxies Discord server. It saw 1,571 fake minting transactions over the course of about three hours.
Phantom Galaxies is an upcoming Australian game being developed by Blowfish Studios. The Phantom Galaxies Discord server has 94,000 members.
In an increasingly common occurrence on Discord, hackers gained control of the official Phantom Galaxies server by using a malware bot that compromised the Admin accountâs two-factor authentication. Once in control of the Discord server, the hackers banned all staff, advisor and community moderator accounts.
Screenshot of a fraudulent announcement about the so-called NFT drop. Source: PhantomGalaxies Discord server
The hackers then began posting announcements, claiming that the game was launching an immediate surprise âstealthâ NFT minting event. Users were directed to a fraudulent âPhantom Galaxies NFT minting platformâ that charged users a 0.1-ETH âminting fee.â
Screenshot of the fraudulent website where users could âmintâ PhantomGalaxies NFTs
Animoca Brands chairman Yat Siu warned followers about the fraudulent NFT drop in a tweet at around 4 am AEDT on Friday.
At 5:22 am he posted another tweet, saying that affected customers will be âappropriately compensated.â This has since been confirmed in a Wednesday release from Animoca stating that details regarding compensation will be announced shortly.
âWoodz,â a Californian project manager for an upcoming NFT project called Terra Obscura, lost $1,000 to this attack. They told Cointelegraph they realized theyâd been scammed shortly after âmintingâ two non-existent NFTs:
âAs I was doing it, it seemed a bit off. The gas was unusually low, and the contract looked different. I knew something was wrong but not sure what.â
Woodz added they âdonât normally just click linksâ but fell into the hackerâs trap because of the way the announcement was positioned inside the official announcement channel.
Related: Beepleâs Discord compromised, timed to coincide with Christieâs auction
The attack on Phantom Galaxies comes after a similar recent attack on Nov. 11 involving famed NFT artist Beeple. Users thought they were signing up for a very affordable NFT drop, timed to coincide with his second Christieâs auction.
The perpetrator impersonated one of the channel admins and the Beeple Announcements Bot to promote a fake NFT drop from Beeple on Nifty Gateway. Beeple has since removed links to the Discord from his Twitter profile, and other links to the server no longer appear not to work.
According to an Oct. 21 report by cyber security company RiskIQ, Discord is becoming an increasingly popular platform for cybercriminals. RiskIQ researchers uncovered 27 unique malware types hosted on Discordâs CDN servers.
In April, Talos Intelligence similarly found that hackers were increasingly using platforms such as Discord to take advantage of users who were at home due to global COVID-19 restrictions.
âAttackers are leveraging collaboration platforms, such as Discord and Slack, to stay under the radar and evade organizational defenses,â it wrote at the time.
Disclaimer
The views and opinions expressed in this article are solely those of the authors and do not reflect the views of Bitcoin Insider. Every investment and trading move involves risk - this is especially true for cryptocurrencies given their volatility. We strongly advise our readers to conduct their own research when making a decision.