Crypto Comeback Pro is a crypto trading tool for investing in the crypto market with an %88 average win rate on trades and is the #1 trading software for crypto traders from all around the globe in 2022. Try it For FREE Today. (Ad)
In a series of cyberattacks that have been targeted at various crypto firms recently, OpenSea’s Discord server is the latest on the list. Initially, the hacker’s message, posted in the notifications channel, noted that OpenSea had “teamed up with YouTube platform to introduce its user into the world of NFTs.” The NFT platform has warned its users to be wary of messages asking them to open a link.
OpenSea Platform Suffer Attack From Hackers
On the official Discord channel of the NFT market, OpenSea, hackers posted fraudulent “Youtube partnership” news, prompting the company to suspend its operations. A screenshot published on Friday displays a bogus announcement followed by a URL to a phishing page.
The verified Twitter account for OpenSea Support stated the platform’s Discord server had been breached and advised users not to click on any URLs in the channel. The message from the hacker stated that;
“OpenSea has teamed up with YouTube platform to introduce its user into the world of NFTs.”
This message was published on the news channel. It also stated that they would collaborate with OpenSea to create a mint permit that would enable holders to mine their work for free.
In this case, it seems that the hacker stayed on the platform for a long time until OpenSea personnel could recover custody of the server. An effort was made to generate “fear of missing out” in the clients by posting follow-up messages to the first fake statement, reposting the false link, and saying that 70% of supply had been generated.
The fraudster also sought to persuade OpenSea customers by declaring that those who acquired the NFTs would be provided with “crazy services” by YouTube. According to them, this promotion is exclusive, and there will be no other stages to partake in. This method is a prevalent technique used by scammers to lure unsuspecting users.
Thirteen Wallets Hacked So Far
Currently, on-chain data shows that thirteen wallets were breached. The most expensive NFT that has been stolen is a Founders’ Pass that is worth about 3.33 ETH or $8,982.98. Initial investigations show that the attacker gained access to network controls via the usage of webhooks. Essentially, a webhook refers to a network plugin that enables other apps to get real-time information from a web server.
Websites that support webhooks are becoming more popular as attack vectors for hackers, mainly because they make sending messages from authorized server accounts easy. OpenSea’s Discord service is among a long list of servers that have been accessed with webhooks.
At the beginning of April, many well-known NFT platforms had their channels hacked, including KaijuKings, Doodles, and Bored Ape Yacht Club. They were infiltrated by a similar flaw that allowed the attacker to utilize the official network accounts to publish phishing URLs to the public.
Crypto Comeback Pro is a crypto trading tool for investing in the crypto market with an %88 average win rate on trades and is the #1 trading software for crypto traders from all around the globe in 2022. Try it For FREE Today. (Ad)
