Hundreds of thousands flew away – Ecosystem i cryptocurrencies is a favorite prey for hackers. The latter double their ingenuity to monopolize your cryptocurrencies or your NFTs. One big name influencer found out the hard way after being the victim of a massive siphoning.
It only takes one click to lose your NFTs
Sunday, January 15, user NFT_God followed by more than 90,000 people on Twitter announced that they had been victim of a mass attack.
“Last night, all of my digital livelihoods were breached. All my personal and business accounts have been hacked and used to harm other people. Less important, I lost some of my net worth. »
Thus, nothing is left behind by the attacker. Twitter, Substack, Google, Discord accounts were used by the attacker and NFT_God wallets were removed.
Malware: be careful about your downloads
In a series of tweets, NFT_God revealed the course of his mishap, which will cost him hundreds of thousands of dollars.
Thus, everything begins when our protagonist wants download the OBS software, very famous among broadcasters. However, he did not realize that he had obtained the software through a sponsored link on google.
A mistake that will cost him dearly. Indeed, it would seem so the downloaded software was accompanied by malware that infected his personal computer. When he tries to install it, nothing seems to happen. Unfortunately, behind the scenes, the reality is quite different.
Target social media accounts
Only after a few hours does NFT_God realize the extent of the situation. So, other users warned him two of his Twitter accountsboth of them about 100,000 subscribers, had been COMPROMISE.
Thus, the attacker had already published a series of messages containing links to sites for conducting phishing attacks.
“I quickly deleted the hoax tweets the hackers posted. I figured it out 2 minutes after the links went live. Phew. If only this were the last chapter of this story. Unfortunately, it was only the first. »
NFTs and cryptos deleted
NFT_God then receives another message from one of his contacts asking if he had sold his yacht club NFT Bored Ape. Neither one nor two, NFT_God rushes to the OpenSea platform to find that his NFT was no longer in his wallet, but at a different address.
“I opened my monkey’s Opensea marker and there it was. A completely different wallet listed as owner. I knew at that moment that everything was gone. Everything. All my cryptos and NFTs have been removed from me. »
NFT_God then proceeded with a hard reset of his computer in an attempt to close the bug. Unfortunately, it was too late. Indeed, the attacker then took control of his Substack newsletter and used it to send phishing links to NFT_God’s 16,000 subscribers.
“Hackers sent 2 emails to my 16,000 closest fans with phishing links. The confidence that took me over a year to build is gone. Losing a portion of my net worth is nothing compared to losing the trust of my community. »
Indeed, many members of his community seem to have fallen for him and suffered losses as well.
Lack of cold wallet: the critical mistake
In his thread, NFT_God points out his biggest mistake: sorry you created your cold wallet.
“Now I’m very technical, but after not setting up a Ledger for 2 years, I broke it. I entered my opening phrase in a way that no longer kept it offline. I knew I had made a critical mistake. So far, I haven’t bought an NFT in months and I don’t plan to do so anytime soon. »
After making this mistake, NFT_God should have reset his cold wallet or liquidated one. However, he did not and this mistake was fatal for him and some of his subscribers.
This type of attack targets all users. so The COO of the RTFKT project was recently the target of a phishing attack that resulted in the loss of hundreds of NFTs. No one is immune to hacking, so it is essential to focus on security.
Your NFTs are of great value and deserve maximum protection! To sleep soundly, equip yourself with one Ledger secure hardware wallet, there is something for all budgets. Your safety is priceless (commercial link)