A few hours ago, Bored Ape Yacht Club confirmed that their Discord server was hacked. Luckily, the team caught the hack immediately. Additionally, the BAYC team clarified that there are no April Fools stealth mints or airdrops at this moment. Hence, BAYC followers should not mint anything from Discord until it is safe to do so. As of now, the BAYC Discord is under lockdown.
Bored Ape Yacht Club’s Discord is hacked among others
According to security firm PeckShield, the hacker posted a phishing link in the Mutant Ape Kennel Club channel. Disguising the link as “stealth NFT mint”, the hacker successfully stole Mutant Ape Yacht Club #8662 from a user, as shown in the data from Etherscan. The token is now worth 20 ETH (about $65,600) on Opensea.io.
Some Twitter users reported that the hacker might have carried out the attack via Ticket Tool, a popular Discord bot that auto generates support tickets. Earlier, there were rumors that the Discord hack is due to a security breach in Captcha Bot. However, there is no confirmation of this rumor so far.
Additionally, Twitter user @farokh warned that there is a similar exploit on Doodles’ Discord server. However, until now there is no official announcement from Doodles to confirm this.
In separate news, Taiwanese pop star Jay Chou fell victim to a phishing attack earlier. He lost several of his tokens including a BAYC, a MAYC, two Doodles, and 169 ETH ($549,000) as seen in data from Etherscan. Nonetheless, we are not sure whether these two incidents are related to each other.
As crypto-related exploits are on the rise, it is never too late to be safe. If you’re in the NFT space, it is always recommended to store your NFTs in cold wallets like Nano Ledger S. This hardware wallet is pretty affordable and only costs around $60 each. As an NFT collector, always keep in mind to use a hot wallet solely to sign NFT transactions. And do not ever reveal your cold wallet’s seed phrases. Recent exploits like what happened to Ronin Network and Wormhole Network also highlighted the need to keep your crypto assets in a safe location.