Bored Ape Yacht Club Discord suffers phishing scam
Multiple Bored Ape's stolen
Bored Ape Yacht Club’s official Discord server was compromised early Friday, resulting in multiple high-valued NFTs getting stolen.
An unknown hacker gained access to Bored Ape Yacht Club’s server through a webhook and quickly posted a phishing link in the Mutant Ape Kennel Club channel that was as a ‘stealth NFT mint’. Because it is April Fools, a few users unfortunately thought it was legitimate.
With the phishing link, the hacker successfully stole Mutant Ape Yacht Club #8662, in addition to Bored Ape Yacht Club #3738, one Mutant Ape and two Doodles held by Taiwanese singer Jay Chou.
“STAY SAFE. Do not mint anything from any Discord right now. A webhook in our Discord was briefly compromised,” BAYC said in a Tweet. “We caught it immediately but please know: we are not doing any April Fools stealth mints / airdrops etc. Other Discords are also being attacked right now.”
Security researchers have concluded that a ticket tool that verifies users and sends channel notifications had been compromised. After anyone clicked on the link, they would be directed to a site where they could mint a ‘limited-edition NFT.’ Other NFT servers using the bot, including Doodles and Nyoki, also got hacked minutes later.
For more from us at Waivly, join our free fun-to-read and to-the-point newsletter enjoyed by hundreds of people across the internet every day of the week 👇