• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
scammers target nft discord channel

Scammers Target NFT Discord Channel

You are here: Home / Latest Cyber Security Vulnerabilities / Scammers Target NFT Discord Channel
June 2, 2022

Hackers escalate phishing and scamming attacks to exploit preferred Discord bot and persuade people to simply click on the destructive inbound links.

Discord a community chat application designed for avid gamers has developed well-known between crypto owners all around the globe. Attackers are targeting the Discord servers of various well known nonfungible token (NFT) projects.

Josh Fraser founder of Origin protocol shared a thread on Twitter previously this thirty day period, revealing the issue and warning the person about the integrity of the Discord personal channels. Fraser extra that the issue was promptly shut as a “duplicate issue” when responsibly disclosed to the group of Discord.

✔ Approved From Our Partners
AOMEI Backupper Lifetime

Protect and backup your data using AOMEI Backupper. AOMEI Backupper takes secure and encrypted backups from your Windows, hard drives or partitions. With AOMEI Backupper you will never be worried about loosing your data anymore.

Get AOMEI Backupper with 72% discount from an authorized distrinutor of AOMEI: SerialCart® (Limited Offer).

➤ Activate Your Coupon Code


In accordance to Fraser, Discord API leaks “the title, description, members list, and activity facts for each and every personal channel on each individual server.” He defined he stumbled on the issue though location up an automatic script to notify him at any time a user enters a specific keyword.

Yet another tweet was shared by PeckShield, a blockchain cybersecurity business, warning buyers about compromised NFT Discord Server of Memeland, RTFKT, Proof/Moonbirds and infrastructure organization Cyberconnect.

Cyberconnect and Memeland verified the hack on their Twitter feeds and warned users to keep away from clicking on any hyperlink on Discord. Cyberconnect caution that the job will hardly ever ask for their non-public keys. In the same way, Memeland alerted consumers about the “fake links” in a concept.

A staff member of Memeland mentioned, “a discord bot (mee6) seems to be compromised across a variety of high profile servers.” The mee6 bot is applied by the server proprietors to automate welcome messages and tell about the server regulations, gatherings and matters.

With heaps of substantial-profile crypto projects applying Discord, this leakage of information and facts can expose “not-but-announced partnerships, future product launches, exchange listings, and coordinate multi-sig signers,” as documented by Fraser.

Devastating Impact

In accordance to Motherboard, the compromised Discord server bot can lead to devastating effects, as an adversary can write-up a malicious hyperlink disguising as an automatic bot and allure end users to open it, 1 incorrect click can lead to irreversible harm to individual earnings, and a hijacked Discord server can pose risk to a large viewers.

“That would be these types of a credible piece of bait that I’m positive hundreds or thousands of people today are gonna slide for that. […] People bots are a enormous liability when it will come to security,” defined Stephen Tong, co-founder of blockchain security organization Zellic.

The string of attacks from the NFT discord channel continues in recent months. Bored Ape Yacht Club, Nyoki, Shamanz, Doodles, and Kaiju Kingz, had their Discord accounts breached and compromised in April, and OpenSea accounts have been hacked in May well.

Roger Grimes at Knowbe4 claimed, “The crucial lesson right here is that any person in the likely attack chain of cryptocurrency or NFTs has to be secured as if they have been a significant-security federal government agency.”

Even more, Grimes suggested that cryptocurrency expert services should really introduce superior-security configurations for all application and gadgets. Initiate multi-factor authentication(MFA) to log in, patch all vulnerable program, impart education, and “run software command difficulties backed by a safe hypervisor chip”.


Some areas of this post are sourced from:
threatpost.com

Previous Post: «Cyber Security News ExpressVPN Removes Servers in India After Refusing to Comply with Government Order
Next Post: Researchers Demonstrate Ransomware for IoT Devices That Targets IT and OT Networks researchers demonstrate ransomware for iot devices that targets it and»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Report This Article

Recent Posts

  • Fortinet Releases Patch for Critical SQL Injection Flaw in FortiWeb (CVE-2025-25257)
  • PerfektBlue Bluetooth Vulnerabilities Expose Millions of Vehicles to Remote Code Execution
  • Securing Data in the AI Era
  • Critical Wing FTP Server Vulnerability (CVE-2025-47812) Actively Being Exploited in the Wild
  • Iranian-Backed Pay2Key Ransomware Resurfaces with 80% Profit Share for Cybercriminals
  • CISA Adds Citrix NetScaler CVE-2025-5777 to KEV Catalog as Active Exploits Target Enterprises
  • Critical mcp-remote Vulnerability Enables Remote Code Execution, Impacting 437,000+ Downloads
  • Fake Gaming and AI Firms Push Malware on Cryptocurrency Users via Telegram and Discord
  • Four Arrested in £440M Cyber Attack on Marks & Spencer, Co-op, and Harrods
  • What Security Leaders Need to Know About AI Governance for SaaS

Copyright © TheCyberSecurity.News, All Rights Reserved.