Popular non-fungible token (NFT) collections such as Bored Apes Yacht Club (BAYC) and meme token of ApeCoin Yuga Labs, the developer studio behind it, warned of a group of attackers targeting the NFT community with its tweet.
Meme Token Developer Yuga Labs Warns Its Community Of An Immediate Attack
Altcoins The developers gave the following message on the subject:
“Our security team is tracking a persistent group of cyber threats targeting the NFT community. We believe they will soon be able to launch a coordinated attack targeting multiple communities through their hacked social media accounts.”
Yuga Labs did not respond to requests for more specific information at the time of this writing. But the warning comes at a time when millions of dollars worth of NFT attacks have taken place in the past few months.
Our security team has been tracking a persistent threat group that targets the NFT community. We believe that they may soon be launching a coordinated attack targeting multiple communities via compromised social media accounts. Please be vigilant and stay safe.
— Yuga Labs (@yugalabs) July 18, 2022
Last weekend, $375,000 worth of Ethereum (ETH) and 314 NFTs were stolen from Premint NFT, a popular NFT platform.
An NFT Platform Was Attacked Last Weekend
An investigation by the security firm CertiK revealed that the threats placed malicious JavaScript code on the premint.xyz website.
The code was designed to instruct users to “set approvals for everyone” when connecting their wallets to the site, allowing attackers to access all assets in the user’s wallets.
CertiK gave the following details in its statement at the time of the attack:
“Although the malicious file is no longer present due to the Domain Name Server being unavailable, the effects of the attack are visible on the chain. There are a total of 6 accounts associated with the attack, and approximately 275 Ethereum ($375,000) was stolen.”
The company added that attackers “abuse centralization issues and single points of failure” that come with crypto projects that rely on centralized internet infrastructures. Regarding the attacks, CertiK said:
“Such attacks are becoming more and more popular. There has been a marked increase in attackers targeting other official accounts, such as social media platforms, to exploit vulnerabilities.”
*Not investment advice.