Bored Ape Yacht Club’s official Discord server was compromised early Friday, resulting in multiple high-valued NFTs getting stolen.

⠀

An unknown hacker gained access to Bored Ape Yacht Club’s server through a webhook and quickly posted a phishing link in the Mutant Ape Kennel Club channel that was as a ‘stealth NFT mint’. Because it is April Fools, a few users unfortunately thought it was legitimate.

⠀

With the phishing link, the hacker successfully stole Mutant Ape Yacht Club #8662, in addition to Bored Ape Yacht Club #3738, one Mutant Ape and two Doodles held by Taiwanese singer Jay Chou.

PeckShieldAlert @PeckShieldAlert

#PeckShieldAlert #phishing JayChou's NFTs were stolen, including a BAYC, MAYC, & two Doodles. etherscan.io/address/0xe34F… #BAYC #phantabear #jaychou @BoredApeYC #nft #BoredApeYachtClub #BoredApeYC

April 1st 2022

20 Retweets39 Likes

“STAY SAFE. Do not mint anything from any Discord right now. A webhook in our Discord was briefly compromised,” BAYC said in a Tweet. “We caught it immediately but please know: we are not doing any April Fools stealth mints / airdrops etc. Other Discords are also being attacked right now.”

⠀

Security researchers have concluded that a ticket tool that verifies users and sends channel notifications had been compromised. After anyone clicked on the link, they would be directed to a site where they could mint a ‘limited-edition NFT.’ Other NFT servers using the bot, including Doodles and Nyoki, also got hacked minutes later.
⠀

For more from us at Waivly, join our free fun-to-read and to-the-point newsletter enjoyed by hundreds of people across the internet every day of the week 👇