Monkeys and million-dollar NFT owners lost them as a result of phishing. Then what?

How to lose a bag of money in seconds? All you need to do is click on the wrong link from the Bored Ape Yacht Club series as token owners.

It will take a long time for NFT to become a safe investment. The situation where billions of dollars were stolen from users’ wallets can be called infamous. This time it was one of the most popular series of non-exchangeable tokens and thus one of the most attractive investments of the past year. We are talking about the Bored Ape Yacht Club, an NFT where the favorite monkeys whose Instagram account was hacked yesterday. This was tragic for users.

Perfect phishing

The official Twitter page of the BAYC project spread information about a phishing attack targeting NFT investors last night. Instagram’s security has been compromised, and hackers have no doubt used it to share a link to a transaction that steals digital currencies from customers’ wallets.

The hacker drew a fishing line in the form of an airdrop theme known in the cryptocurrency world. It simply means giving a small portion of the currency given to carry out an activity. In this case, there should be a connection between the account and the MetaMask wallet. The graphics stylistically refer to the BAYC monkey universe, and unfortunately most of the victims of the usurpation have swallowed it. One Twitter user posted a screenshot shared on BAYC’s Instagram profile. You can see below.

Unfortunately, the Twitter alert came too late. The hacker collected more than a dozen different types of NFT, four of which are ID 7203, № 6778, № 6178, № 6623 ID numbers, the most valuable and worth more than a million dollars. It is unknown exactly how the thief managed to break into the security of his Instagram account. Boring Ape Yacht Club officials claim that two-factor authentication is active. The team is working to contact the affected users, but it is doubtful that they will get their money back because they know the rules governing NFT. Of course, although the sin is to some extent the naivety of the victims, it must be admitted that the phishing itself was well-prepared and made a reliable impression.

Rule number one, never click on suspicious links

The problem is also in the MetaMask application itself – a very popular cryptocurrency wallet – which allows you to display NFT only on mobile devices. Managing investments using a smartphone is convenient, but does not provide sufficient security measures. It is no coincidence that Instagram was chosen as the main cheating springboard. You are more likely to transfer directly to your mobile wallet than if you were using a desktop browser. Interestingly, one Twitter user shared a screenshot of the popular OpenSea exchange, which shows more than a dozen tokens belonging to the hacker. You can most likely assume that they were all stolen. The hacker’s account, of course, has been banned, but its content can be viewed through other exchanges. The NFT Rarible platform displays 134 NFTs assigned to the hacker’s account, including 4 BAYC tokens stolen yesterday, and many other digital items associated with the creators of the NFT monkey.

Bored Ape Yacht Club is one of the most well-known NFTs in the token world. Pictures of up to 10,000 colorful monkeys whose prices can be a headache. Last year, when the project was just starting, the token value started at 0.08 ETH, and today the most exclusive monkey is worth $ 3.4 million. The project owes these astronomical sums to a loyal community that the creators took care of with the help of the Yacht Club. In this regard, investors receive numerous bonuses and benefits. Thus, the hacker took advantage of investors’ trust in Yuga Labs, which is responsible for the Bored Ape Yacht Club. So you can see that in the world of NFT you can never be sure. Even the biggest brands trusted by society can fall into their traps. There is no place for emotions and hasty decisions in cryptocurrency investments. The scam can come from the most unexpected place.

Stock photo from Depositphotos

Leave a Comment