NFT EveningNFT Evening
    Facebook Twitter Instagram Reddit
    NFT Evening NFT Evening
    • News
      • Collectibles
      • Crypto Art
      • Blockchain games
      • Metaverse
      • Music
      • Interviews
      • Columns
    • Guides
      • Top NFT Projects
      • Top Blockchain Games
      • NFT Marketplaces and Tools
    • Learn here!
      • What is an NFT?
      • How to keep your NFTs safe
      • NFT Glossary
    • NFT Calendar
      • NFT Drops
      • NFT Conferences
      • NFT Launchpad
    • Newsletter
    NFT EveningNFT Evening
    News

    Home » News » North Korean Phishing Scam Targets NFTs

    North Korean Phishing Scam Targets NFTs

    By Reethu RaviDecember 26, 2022Updated:January 2, 20232 Mins Read

    In the latest report on NFT scams, North Korean hackers have been found to be behind a major phishing scam targeting NFT holders. According to Blockchain security firm, SlowMist, the hackers used as many as 500 phishing domains to lure unsuspecting victims. Most of these websites were duplicates of popular NFT platforms such as OpenSea and X2Y2.

    Here’s all you need to know about the North Korean NFT phishing scam:

    North Korean NFT phishing scam
    The North Korean hackers created around 500 phishing domains. Credit: Unsplash

    What is the North Korean NFT Phishing Scam?

    In a report released on December 24, SlowMist alleged that hackers connected to North Korea’s Lazarus Group were behind a massive NFT phishing scam. Typically, the North Korean Advanced Persistent Threat (APT) groups used fake websites to offer investors “malicious mints”. 

    To explain, the websites lure victims under the pretext of minting legitimate NFTs. Once they connect their wallets to the website, the hackers get access to the wallets and can drain them as they please. 

    How do Hackers Steal NFTs?   

    Furthermore, SlowMist discovered several unique NFT phishing traits used by the North Korean groups. For example, the phishing websites would record visitor data and save it to external sites. Then, they would run various “attack scripts” to access sensitive information such as victim’s access records, wallet addresses, authorizations, approve records, and sigData. Using this information, the North Korean hackers can drain victims’ wallets. 

    Then, most of the sites used the same Internet Protocol (IP). Moreover, they used multiple tokens, such as WETH, USDC, and DAI, in their phishing attacks. Additionally, one phishing address, in particular, was responsible for a major number of transactions. 

    “The hacker was able to receive a total of 1,055 NFTs and made off with a profit of approximately 300 ETH through their sales,” the report added. 

    SlowMist’s findings on the North Korean NFT phishing scam further emphasise the need to take NFT security seriously.

     


    All investment/financial opinions expressed by NFTevening.com are not recommendations.

    This article is educational material.

    As always, make your own research prior to making any kind of investment.

    NFT Scam
    Previous Article‘Who is Wagmi-San?’ and Everything Else You Need To Know About 10KTF NFTs
    Next Article Samsung Invests Over $35M In Latin America-focused Metaverse Initiatives
    Reethu Ravi
    • Twitter
    • LinkedIn

    Reethu Ravi is a journalist currently based in the UK, covering environment, sustainability, tech and innovation. When not found between the pages of a book, she can be seen catching up on the latest developments in the tech world. A naval architect-turned-journalist, she loves bringing stories of change and innovation to the limelight.

    More great NFT Evening content:

    Reddit Co-founder Alexis Ohanian: ‘Play-to-Earn’ Gaming is the Future

    June 2, 2023

    From Moonbirds to Doodles, Blue-Chips Collection Prices Continue to Decline

    June 1, 2023

    Experience the Magic: Doodles Teams Up with Camp for Unforgettable Retail Adventure

    June 1, 2023

    Azuki Rewards Spirit DAO With Comic Book Token Trait

    June 1, 2023

    Fortnite x 0N1 Force: Epic Collaboration with Theia3D Kicks Off Spectacular Tour

    June 1, 2023

    Sotheby’s to Sell Second Lot of Seized 3AC NFTs, Including “The Goose”!

    June 1, 2023

    Don’t Miss Out: Fewocious Set to Drop “Fewos” Collection this August!

    June 1, 2023

    NFL Players Union Misses Out on $41.8M, Report Reveals

    June 1, 2023

    NFTevening is the biggest website for NFT news. We cover; breaking news, upcoming mints, plus, interviews with top NFT artists and projects. Put simply, we are the best place for new and experienced non-fungible token fans — making content fun & accessible

    Privacy policy
    Terms and conditions

    Article Categories
    • Blockchain games
    • Collectibles
    • Columns
    • Crypto Art
    • Guides
    • Interviews
    • Metaverse
    • Music
    • News
    • NFT Marketplaces and Tools
    • Sponsored Content
    • Top Blockchain Games
    • Top NFT Projects
    NFT Calendar
    • Today’s NFT Drops
    • Upcoming NFT Drops
    • Solana NFT Drops
    • NFT Calendar
    • NFT Calendar : Add Your NFT Event
    Get In Touch
    • Advertise (Media Kit)
    • Job Opportunities
    • About Us
    • Contact Us
    • Newsletter
    NFT Beginners Guides
    • How to Sell NFT Art
    • How to Create NFT Art
    • How to Display NFT Art
    • How To Make Passive Income With NFTs
    • Best Crypto Wallet
    • Best NFT Coins
    • Best NFT Rarity Tools
    • What is a DAO ?
    • What Are Crypto Gas Fees ?

    Type above and press Enter to search. Press Esc to cancel.

    Go to mobile version