window.coinzilla_header = window.coinzilla_header || [];function czilla(){coinzilla_header.push(arguments);}czilla(‘2946092a0f663306834’);
Creator of Bored Ape Yacht Club (BAYC), Yuga Labs, has warned of a “persistent threat group” targeting non-fungible token (NFT) holders and communities. The NFT firm urged its followers to be more cautious. It also said its security team has been monitoring this group for some time. The mode of operation of this group is to breach an NFT community by compromising their social media accounts.
Our security team has been tracking a persistent threat group that targets the NFT community. We believe that they may soon be launching a coordinated attack targeting multiple communities via compromised social media accounts. Please be vigilant and stay safe.
— Yuga Labs (@yugalabs) July 18, 2022

It isn’t the first time Yuga Labs would issue a warning notice about a possible coordinated attack on NFT communities. Last month, Gordon Goner, one of Yuga Labs’ founders but with an anonymous identity, shared a similar warning about the plan to attack Yuga’s social media accounts.
Following the warning, Yuga officials started tracking their social media accounts (especially Twitter) and improved their security. Goner further warned investors to steer clear of surprise mints. Most attackers usually deploy the surprise mints method to entice their potential victims.
The Yuga Labs co-founder clarified that the NFT company would never carry our surprise mints. Last month, hackers breached two official discord groups associated with BAYC and OtherSide NFTs. Thus, they successfully shared phishing links of NFT mints related to BAYC, mutant ape yacht club, and OtherSide on these channels.
However, Yuga Labs is yet to provide a more detailed explanation or an official statement of what it knows about the threat group mentioned on its Twitter channel. Also, the Yuga Labs team hasn’t responded to the media’s queries about the matter.
Yuga Lab’s warning notice follows an attack on the Premint NFT platform. The hack, which happened two days ago, caused the NFT platform to lose about 314 NFTs and $375,000 worth of ETH. Compared to other NFT hacks this year, this hack is one of the largest.
Premint provides an NFT safelisting service for NFT artists. It links them with a large pool of NFT collectors and safelists them for new NFT projects. Premint boasts of over 12,000 NFT projects and nearly 2.43 million collectors.
Analysis by blockchain security firm, Certik, showed that the attackers were able to breach Premint’s site after inserting a malicious code into their site. The web code led to a pop-up asking users to confirm their wallet ownership. However, the hackers used that means to obtain the vital information they needed to move NFTs from various Premint user wallets.
So far, six wallets are known to have been compromised. These wallets contain NFTs such as Goblintown, BAYC, oddities, and OtherSide. The Premint’s statement following the incident was that investigation is still ongoing. It also warned that its users should never sign off on any transaction as the platform would never ask them to do so.
We're continuing to dig into this incident, but a reminder:
❌ You will never, EVER be asked to approve ANY KIND OF transaction on PREMINT.
✍️ When connecting a wallet, you'll be asked to *sign* a message, but there will NEVER be a gas fee or anything resembling a transaction.
— PREMINT | NFT Access List Tool (@PREMINT_NFT) July 18, 2022

The NFT platform also made a change to the way users login into the website. Users no longer need their wallets to log in. The platform said this login method is more secure and convenient.
Paul is a cryptocurrency enthusiast from Canada, and since 2021 he has been writing about cryptocurrency for online news portals. He writes mostly news-related articles. Stay tuned to his posts to stay up to date with the crypto world.
Comments are closed.
Crypto News Flash
Crypto News Flash is your number one source for the latest news and information from the world of cryptocurrencies.
About us
Contact us
Legals
Data protection policy
*= Affiliate-Link
Risk warning and disclaimer: The contents of this website are intended solely for the entertainment and information of readers and do not provide investment advice or a recommendation within the context of the Securities Trading Act. The content of this website solely reflects the subjective and personal opinion of the authors. Readers are requested to form their own opinions on the contents of this website and to seek professional and independent advice before making concrete investment decisions. The information found on this site does not contain any information or messages, but is intended solely for information and personal use. None of the information shown constitutes an offer to buy or sell futures contracts, securities, options, CFDs, other derivatives or cryptocurrencies. Any opinions provided, including e-mails, live chat, SMS or other forms of communication across social media networks do not constitute a suitable basis for an investment decision. You alone bear the risk for your investment decisions. Read more!

source

Write A Comment