Brave hacker, nothing is impossible! – And when a social network is all the rage, coupled with strong income opportunities, it doesn’t take long before hackers don’t come to settle. Discord bears the brunt of this with all the NFT projects it hosts.
Sow discord to reap substantial profits
« Tag 14 friends, like, RT, dance on one foot wrapped in a cement blanket, and join us on Discord! »
Who has never seen this type of message on Twitter, encouraging people to join a channel on Discord for a chance to win a NFTdeveloped by a project that seeks to make itself known?
If you saw them pass, hackers too. And what are the conditions for a hacker to be interested in something?
- That what is proposed be used by as many people as possible
- That there is a potential and consequent gain in preference.
Projects NFT hosted on Discord meets both of these requirements. In fact, Discord has become THE go-to platform for all projects, trustworthy or not. If you follow what is going on in the NFT world, you must surely be a member of about twenty salons. You had to identify yourself, confirm your wallet. you may have passed by an external site to obtain a certification in order to give you a “qualification” in the project.
It’s all those little steps that will allow you to mintbelieve, an NFT that hackers use to siphon off your wallet, the project’s wallet, and everyone else’s unlucky enough to click the wrong link.
Heat, NFT and unprotected salons, the perfect trio!
In June, the phishing attacksthe most used, increased by more than 55% compared to May, only on Discord. It is estimated that the hackers thus recovered more than 22 million dollars in less than 2 months.
Many of these hacks go unnoticed by the user, since the person asking them to click on a fraudulent link is none other than the administrator from the room of discord. In fact, many of these scams use flaws that allow you to take control of administrators’ accounts.
The rest is easy, just post a link that seems honest, related to the project, in the programs, and the community takes the bait. something smart to disable even full moderator rights. Therefore, they cannot do anything other than witness the massacre, without being able to intervene or warn the members of the project.
>> Forget scams. Prefer serenity by buying Bitcoin with Bitstack… and earn €5 in BTC with the code JDC5 (commercial link) <
Hackers play a lot with the fact that in this kind of NFT projects, everything is done in urgency. Contests are fleeting, sometimes you only have a few hours, or even minutes, to validate an action and have a potential chance of winning.
So when hackers post a malicious link, users jump on it to be the first to win. And above all, the first to lose.
Don’t imagine that only small projects get hacked. Even if it is easier to hack a small living room, admittedly poorly protected, the grandmasters of NFT they also had. BAYC, LacosteBubbleWorld and many others top the list, along with small projects.
“Our Discord servers were briefly exploited today. The team reacted and dealt quickly. Around 200 ETH worth of NFTs appear to have been affected. We are still investigating but if you have been affected please email us at [email protected] »
Bored Ape Yacht Club (@BoredApeYC)
Once your cryptos, or worse, your NFTs are stolen, they are quickly resold, via NFT marketplace platforms like OpenSea, for ETH usually.
The pirates then distribute the profits to various wallets. Then they go through protocols like Tornado Cash. These allow to hide transactions to be able to distribute the profits in other wallets. Neither seen nor known.
The actions, that look similar each time, they are certainly the work of the same group. They are fast, efficient and Contact informationin order to exploit vulnerabilities in several projects simultaneously.
Already, being aware that these fraudulent maneuvers exist is a first shield. Awareness will keep you from clicking back and forth, especially when the proposition sounds too good to be true.
If a link, contest, or other suggestion made in the program looks suspicious to you, don’t click. Isn’t it better to lose a real chance to win an NFT (which, let’s face it, will be useless in 99% of cases), than to see your wallet empty in a few seconds?
On the side of the creators of the shows, there are a series of checks and manipulations to perform to better secure your discord.
So make sure the admins know what they’re doing. Ask questions, don’t hesitate to visit all the rooms, to question the moderators. If you feel that you bother them or that they take security lightly, run away ! You will have the opportunity to find other projects in the next week, day or even the minute!
It is difficult to know if a project is serious. And even if there are many methods of analysis and often apparent red flags, even the most honest (and well-known) of projects is susceptible to being hacked.
Unfortunately, there is no magic method to avoid falling into the trap. The best protection in history is you. Take the time to read, learn, follow social networks and above all do not click anyway in a hurry, just to gain a white list that allows you Minter a dead nft squirrel.
Put your cryptos safe in your wallet. To buy Bitcoin without even realizing it, sign up for Bitstack… and earn €5 free BTC thanks to the code JDC5 (commercial link)!