Bored Ape Yacht Club Discord server got exploited for 200 ETH
On June 4th, The Bored Ape Yacht Club (BAYC) Discord server underwent a phishing attack that resulted in a loss of 200 ETH worth of NFTs.
To be specific, the hacker breached the security of the Discord account belonging to a community manager, Boris Vagner. After getting access, they executed a phishing attack by promoting a fake giveaway which is hosted exclusively for holders of Bore Ape, Mutant Ape and Other NFTs. They attached a phishing link which will allow access to users' wallets once they click on it.
As a result, 32 NFTs were stolen in the scam, including 1 BAYC, 2 MAYC, 5 Otherdeed and 1 BAKC. It is estimated about 200 ETH worth of NFTs have been impacted. The stolen funds were traced back to 4 separate wallets.
So how can you prevent phishing attacks?
Phishing is a type of social engineering attack often used to steal user data, including login credentials and credit card numbers.
The hacker normally masquerades as a trusted entity and then dupes victims into installing a malicious file, clicking a malicious link or exposing sensitive information.
After understanding basically about phishing attack, users can follows these simple tips to avoid phishing scams:
Change password regularly
The habit of changing your online accounts’ password regularly will prevent an attacker from gaining unlimited access.
Avoid clicking on strange links from random emails and instant messages
Before clicking on any link, please make sure to hover over the link to see if the destination is correct. Instead of clicking on the link in the original message, users can visit the site directly by typing in the search engine.
Install firewalls
High-quality firewalls act as a solid shield to prevent your computer from external attacks and malicious intruders.
———————————————————————————————
About 1Shield
1Shield provides Audit & KYC services to help build trust in Blockchain industry. With expertise in formal verification and fast audit process, 1Shield ensures your project will get invaluable credibility.
Website | Twitter | Blog | Telegram Channel