Bored Ape Yacht Club (BAYC) team has confirmed via a Twitter post today that their system has been compromised however, the team has advised their users not to mint any NFTs using a link posted on their Discord as they don’t have plans for any April Fools stealth mints.
In a tweet, BAYC wrote:
“STAY SAFE. Do not mint anything from any Discord right now. A webhook in our Discord was briefly compromised. We caught it immediately but please know: we are not doing any April Fools stealth mints/airdrops etc. Other Discords are also being attacked right now.”
STAY SAFE. Do not mint anything from any Discord right now. A webhook in our Discord was briefly compromised. We caught it immediately but please know: we are not doing any April Fools stealth mints / airdrops etc. Other Discords are also being attacked right now.
— Bored Ape Yacht Club (@BoredApeYC) April 1, 2022
All you need to know about the hack
According to the BAYC team, the hacker, who they are yet to identify, managed to access their official Discord account that was to host members of; three NFT collections from Yuga Labs, Mutant Ape Yacht Club, and Mutant Ape Kennel Club, and members of Bored Yacht Club.
According to PeckShield security firm, the hacker posted a phishing link in the Mutant Ape Kennel channel to gain the access to the servers. Mutant Ape Kennel termed as a ‘stealth NFT mint’ was used to steal Mutant Ape Yacht Club #8662 from one user.
However, the BAYC team was able to identify the issue on time and took the necessary measure by informing their users.
In a report, there were speculations that the hacker might have also used a Ticket tool in Discord that generates support tickets automatically.
Another NFT collection exploited
Twitter users have also been warned about Doodles servers which are also under attack, however, the Doodles team is yet to comment on that.
Lately, many hackers have been compromising Discord accounts to phish attacks on NFTs collectors, with the Rare Bears, a newly launched NFT collection, members losing assets of over $790,000 a few weeks ago following a similar attack.