The new DEFI platform enters the market! Earn passively - token sale 0.25 $ I'm going in!

Animoca to refund users 265 ETH stolen in a fraud NFT drop Discord scam.

3 min reading

The hack is recent in an extensive series of attacks aimed at Discord users with fraud "stealth" NFT drops.

Animoca Brands, a Hong Kong-based gaming and venture capital firm, and its auxiliary Blowfish Studios have pledged to repay users 265 ETH (US$1.1 million) stolen in a fake nonfungible token (NFT) sale on Discord.
The fake minting happened on the Phantom Galaxies Discord server around 3 a.m. AEDT on November 19. Over around three hours, it observed 1,571 fraud minting transactions.
Blowfish Studios in Australia is developing on Phantom Galaxies, an upcoming game. There are 94,000 members on the Phantom Galaxies Discord server.
Hackers captured control of the official Phantom Galaxies server using a malware bot that hacked the Admin account's two-factor authentication, an increasingly prevalent occurrence on Discord. When the hackers gained control of the Discord server, they blocked all staff, advisors, and community moderator accounts.
The hackers then started posting announcements, stating that the game was conducting a surprise "stealth" NFT minting event immediately. Users were routed to a fake "Phantom Galaxies NFT minting platform," where they were charged a 0.1 ETH "minting fee."
Yat Siu, Chairman of Animoca Brands, alerted followers about the fake NFT drop in a tweet around 4 a.m. AEDT on Nov. 19.
At 5:22 a.m., he tweeted again, stating that impacted consumers would be "appropriately compensated." This was confirmed in a Nov. 24 press release from Animoca, which announced that compensation details will be provided soon.
This attack cost "Woodz," a Californian project manager for an upcoming NFT project named Terra Obscura, $1000 USD. They told that they realised they'd been scammed soon after minting two non-existent NFTs: “As I was doing it, it seemed a bit off. The gas was unusually low and the contract looked different. I knew something was wrong but not sure what.”
Woodz went on to say that they "don't normally just click links," but fall into the hacker's trap due to the way the notification was placed within the official announcement channel.
The attack on Phantom Galaxies follows a similar attack on renowned NFT artist Beeple on November 11. Users mistakenly thought they were signed up for a low-cost NFT drop scheduled to correspond with his second Christie's auction.
The attacker impersonated one of the channel admins and also the Beeple Announcements Bot to publicize a fake NFT drop from Beeple on Nifty Gateway. Beeple has eventually deleted links to the Discord server from his Twitter profile, and other links to the server seem to be not working.
As per a report published on October 21 by cyber security company RiskIQ, Discord is becoming a consistently popular platform for cybercriminals. Researchers from RiskIQ discovered 27 distinct malware kinds housed on Discord's CDN servers.
Talos Intelligence observed in April that hackers were increasingly utilizing platforms like Discord to exploit users who were at home because of global COVID-19 restrictions.
“Attackers are leveraging collaboration platforms, such as Discord and Slack, to stay under the radar and evade organizational defences,” it stated at the time.





Currency Exchange rate Buy cryptocurrency

The new DEFI platform enters the market! Earn passively - token sale 0.25 $

Dear customer,

We use cookies to provide our services correctly and safely. Cookies are small text-based data sets that shall be saved on the device you are using in connection with the use of this instnat website. Cookies are created in order to ensure proper functioning of thes instant website. By clicking the button "I accept and go to the website", you implicitly agree to creation of the cookies on your computer and to deploy automatic tracking and data collection and processing on behalf of the Lushup Holdings FZ LEE. Click the above-captioned button is also tantamount to accepting website's privacy policy. Closing the notification by means of "X" is unequivocally connected with your consent. If you do not agree to any of the above, please discontinue using our Website.

“Cookies” shall make an identification of the software used by you and to customization of this instant website to your needs. Cookies contain the name of the domain from which they origin, duration of period of their storage on your computer and an assigned value.

Third party cookies:
We also use third-party cookies for the following purposes:

  • creating statistics - helping to understand the way Users use the Website, which allows to improve its structure and content with use of the analytical tools
  • defining a user profile - in order to display custom-tailored content in advertising networks.

External entities that might be source of any third-party cookies on this instant Website are as follows:

Using a settings of your web browser or by using pre-set configuration tools available in our service you can independently and at any time change the settings concerning your use of the “cookies”, specifying the conditionsof their storage and how your device is creating and downloading them. These settings can be changed to block the automatic handling of cookies in the settings of your web browser or inform about their placement on your device each time.

Detailed information about the options related to use of “cookies” is available in the settings of your software (web browser).

Service privacy policy

This instant document lays out the principles of the Privacy Policy on the tokeneo.com/news/pl website (hereinafter referred to as the "Website" or "Service"). The administrator of the Website is Lushup Holdings FZ LEE, Fujairah - Creative Tower, P.O.Box 4422 Fujairah, United Arabs Emirates.

The full document to read the Tokeneo privacy policy is available in this document.

Advanced settings can be changed in your browser.