The attack came by hacking BAYC’s servers on Discord.
According to analyst OKHotshot, they impersonated a BAYC community manager.
Yuga Labs, the creator of the non-fungible tokens (NFTs) and OtherSide, the creator of the Bored Ape Yacht Club (BAYC), were the second victim of a hack in two months. On this occasion, the attack caused the loss of several holdings valued at 200 Ether (ETH), equivalent to $350,000, despite dealing with different issues in this aspect.
The attack was discovered by Onchain analyst OKHotshot, who sent a message on the social network Twitter, alerting what had happened. In a first tweet, he mentioned this BAYC and OtherSide’s Discord accounts have been hacked.
OKHotshot apparently commented Hackers hacked into the account of Boris Vagner, BAYC Community Manager.
“We are launching another exclusive giveaway for all BAYC, MAYC and Otherside NFT owners. As Otherside has been one of our biggest successes, both for our team and for all of our holders who currently own, we have decided to give one last gift to our holders as a token of our appreciation,” was part of the message sent by the attackers.
This post was accompanied by link from phishing Resulting in a fake websitewhere theft of NFTs occurs.
According to the blockchain analytics firm PeckShield, They stole 32 NFT, including 1 BAYC, 2 MAYC, 5 other, 1 BAKC.
It is important to note that the file phishing It consists of impersonating an authority, company, website, or even a person over the Internet. Its main goal is to deceive the victim into revealing her confidential information. in this way, The attacker can gain access to the accounts or wallets and steal the victim’s money, As defined by CriptoNoticias Criptopedia.
The company admitted the attack
Hours after OKHotshot alerted, the company a favour that their Discord servers have been attacked.
“The team grabbed it and responded quickly. Apparently around 200 ETH in NFT has been affected. We are still investigating, but if you are affected, please email us at [email protected]”
This is the The second attack on Yuga Labs in two monthsThe first was reported by CriptoNoticias last April. On that occasion, the official BAYC Instagram account was hacked by posting a malicious link that allowed 91 digital objects to be stolen.
Something also similar to the April attack is that it was carried out by it phishingat that time a link to a fake BAYC website, promising with an extension Air drop. Users are asked to sign a transaction afterwards All of their assets were transferred to a wallet controlled by the attacker.
Between the April attack and the currently reported attack, Yuga Labs faced losses of up to $2,500,000.
“Problem solver. Proud twitter specialist. Travel aficionado. Introvert. Coffee trailblazer. Professional zombie ninja. Extreme gamer.”