Bored Ape Yacht Club’s official discord server got hacked

Bored Ape Yacht Club

The Bored Ape Yacht Club, BAYC NFTs creator, has tweeted warning his followers that their official club’s Discord has been hacked and advised them not to mint anything currently, and confirmed that this is a real hack warning not an April Fools Day joke.

How was the Bored Ape Yacht Club’s Discord webhook hacked?

The original source of the hack was the Ticket Tool Bot, which generates support tickets automatically, where The hacker had posted a phishing link that was passed off as a ‘stealth NFT mint’, the hacker changed the Ticket Tool Bot‘s add command structure allowing for permission exploit.

The Ticket Tool’s official Twitter page tweeted that they reverted the update to the previous uncompromised version and will be looking into exactly how this bug happened.

Peckshield, a blockchain security company, has tweeted that MutantApeYachtClub MAYC NFT #8662 was stolen during the attack.

Similar phishing messages were seen on other NFTS Discord channels, including the Doodles NFT collection, using the same phishing link.

NFTs-Related Ad: Your Heart Feelings Non-Fungible Token Art Collection

One Response

Leave a Reply

Your email address will not be published