Article Contents
The Bored Ape Yacht Club, BAYC NFTs creator, has tweeted warning his followers that their official club’s Discord has been hacked and advised them not to mint anything currently, and confirmed that this is a real hack warning not an April Fools Day joke.
STAY SAFE. Do not mint anything from any Discord right now. A webhook in our Discord was briefly compromised. We caught it immediately but please know: we are not doing any April Fools stealth mints / airdrops etc. Other Discords are also being attacked right now.
— Bored Ape Yacht Club (@BoredApeYC) April 1, 2022
It’s very unfortunate.
— cakechef.eth (@cakechefeth) April 1, 2022
This the screenshot I got when the hacker send the message on BAYC Discord server.@BoredApeYC #BAYC #Discord https://t.co/npsaiJBtWw pic.twitter.com/gtdNGULiai
How was the Bored Ape Yacht Club’s Discord webhook hacked?
The original source of the hack was the Ticket Tool Bot, which generates support tickets automatically, where The hacker had posted a phishing link that was passed off as a ‘stealth NFT mint’, the hacker changed the Ticket Tool Bot‘s add command structure allowing for permission exploit.
The Ticket Tool’s official Twitter page tweeted that they reverted the update to the previous uncompromised version and will be looking into exactly how this bug happened.
A recent update I made to the add command had a bug allowing for some type of permission exploit..
— Ticket Tool (@Ticket_Tool) April 1, 2022
I’ve reverted the update to the previous uncompromised version and will be looking into exactly how this happened.
The bot itself is not compromised beyond a very unfortunate bug.
Peckshield, a blockchain security company, has tweeted that MutantApeYachtClub MAYC NFT #8662 was stolen during the attack.
#PeckShieldAlert @BoredApeYC Discord compromised, MutantApeYachtClub #8662 has been stolen.https://t.co/bMQrBgxreU
— PeckShieldAlert (@PeckShieldAlert) April 1, 2022
https://mintboredapeyc[.com]/ is #phishing site. Do *NOT* fall prey to it. https://t.co/NLMiIzKsR6 pic.twitter.com/mUlAkImvRY
Similar phishing messages were seen on other NFTS Discord channels, including the Doodles NFT collection, using the same phishing link.
I will immediately grab your rss feed as I can’t find your e-mail subscription hyperlink or e-newsletter service. Do you’ve any? Kindly allow me recognize in order that I could subscribe. Thanks.