Open Seathe market of Non-Fungible Tokens (NFT) suffered a cyber attack again, however, this time involved Discordwhere a massive phishing attack against multiple users who clicked on a link that led to claim a supposed free NFT.
It was during the early hours of May 6 that a hack to the company’s official Discord channel where a false announcement was made about a alleged association between OpenSea and YouTube in which they were giving away 100 NFT’s to the first to click on a link to claim the prize.
Supposedly the link “YouTube Genesis Mint Pass” that allows to obtain the tokens, which would have a “great utility” and could not be claimed later. Faced with the tempting offer launched on the official Discord channel, many users clicked. Unfortunately it was a case of phishing that hackers were executing after taking control of the account.
Due to the incident OpenSea warned his followers on his verified Twitter account not to click on any links on his Discord channel and that they were investigating the situation.
“Do not click on links in our Discord. We are continuing to investigate this situation and will share information as we have it.”
Although the free NFT’s malicious link and others they placed on OpenSea’s Discord channels were up for quite some time, according to Xatakaless than 10 wallets were affected with stolen itemsfor an amount less than 10 ETH (about US 27 thousand dollars).
At the time of the attack a total of 13 NFT’s were transferred from five sourceswhich were classified by OpenSea as suspicious activity.
The link the victims were being redirected to was: “youtubenft.art”. In these cases, never forget that before clicking on any site you have to hover over it to see the address, because if it looks strange or does not end the way it usually would, in this case “.com” , the best is do not enter them because they could be phishing sites.
According to TheVerge said messages posted on the official OpenSea Discord are no longer available and that the phishing site is down.
After the events that occurred, the NFT’s platform pointed out that the majority of fraud and phishing attacks are through private messages. He also recommended being careful with friend requests.
“The most popular Discord servers in web3 have direct messages turned off by default. But be on the lookout for new friend requests in existing conversations (they may be from compromised users).”
Third, he said does not advise clicking on unknown links or downloading unexpected files. “This advice is as old as the Internet but is just as relevant to web3. Clicking on either of these is compromising the device and personal information.
He said receiving 2FA via SMS is a potential risk vector if your phone’s SIM card has been compromised. “It is best to use a timestamp-based method of 2FA with apps like Google Authenticator.”
Finally, OpenSea advises using multiple accounts and electronic devices. He said that multiple Discord accounts can now be managed on a single gadget. He also said that only one device can be used for Discord. “For example, you can install Discord on an older smartphone and log into your Discord account through your browser.”