Specifically, the compromised account sent a fraudulent link for a fake airdrop to its followers, which led to a copycat website offering free land in Otherside, BAYC’s upcoming metaverse. From there, unsuspecting users were prompted to click a link that contained a safeTransferFrom attack, which connected their MetaMask wallet to the scammer’s wallet – transferring the victims’ assets.
— Bored Ape Yacht Club (@BoredApeYC) April 25, 2022 According to an estimate from CoinDesk, the hacker got away with a haul of 54 Bored Ape and Mutant Ape NFTs worth about US$13.7 million (~RM59.5 million). Meanwhile, a separate discovery by crypto scam researcher zachxbt found that a total of 91 NFTs had been transferred to the scammer’s account.
Hacker Address:https://t.co/0ngJ4SKV4G pic.twitter.com/9U2OGPKMmP — zachxbt (@zachxbt) April 25, 2022 NFT phishing scams aren’t anything new, but this is one of the biggest attacks this year directly involving users. Back in February, 32 OpenSea users lost several Bored Ape Yacht Club and other NFTs valued at 641 Ethereum (~RM7.3 million) to a phishing attack, which now seems small in comparison to this latest crypto caper. (Source: BAYC/Twitter)
