Animoca to repay users 265 ETH stolen in fake NFT drop Discord hack

Published at: Nov. 25, 2021

Hong Kong-based gaming and venture capital company Animoca Brands and subsidiary Blowfish Studios have promised users that they will repay 265 ETH (US$1.1 million) stolen in a fraudulent nonfungible token (NFT) sale on D`iscord.

The fraudulent minting event occurred at approximately 3 AM AEDT on Nov 19 on the Phantom Galaxies Discord server. It saw 1,571 fake minting transactions over the course of about three hours.

Phantom Galaxies is an upcoming Australian game being developed by Blowfish Studios. The Phantom Galaxies Discord server has 94,000 members.

In an increasingly common occurrence on Discord, hackers gained control of the official Phantom Galaxies server by using a malware bot that compromised the Admin account’s two-factor authentication. Once in control of the Discord server, the hackers banned all staff, advisor, and community moderator accounts.

The hackers then began posting announcements, claiming that the game was launching an immediate surprise “stealth” NFT minting event. Users were directed to a fraudulent “Phantom Galaxies NFT minting platform,” which charged users a 0.1 ETH “minting fee.”

Chairman of Animoca Brands Yat Siu warned followers about the fraudulent NFT drop in a tweet at around 4AM AEDT Nov. 19.

At 5:22AM he posted another tweet, saying that affected customers will be “appropriately compensated.” This has since been confirmed in a Nov. 24 release from Animoca, which stated that details regarding compensation will be announced shortly.

“Woodz,” a Californian project manager for an upcoming NFT project called Terra Obscura lost $1000 USD to this attack. They told Cointelegraph they realized they’d been scammed shortly after ‘minting’ two non-existent NFTs:

“As I was doing it, it seemed a bit off. The gas was unusually low and the contract looked different. I knew something was wrong but not sure what.”

Woodz added they “don’t normally just click links,” but fell into the hacker’s trap because of the way the announcement was positioned inside the official announcement channel.

Related: Beeple’s Discord compromised, timed to coincide with Christie’s auction

The attack on Phantom Galaxies comes after a similar recent attack on Nov. 11 involving famed NFT artist, Beeple. Users thought they were signing up for a very affordable NFT drop, timed to coincide with his second Christie’s auction.

The perpetrator impersonated one of the channel admins and the Beeple Announcements Bot to promote a fake NFT drop from Beeple on Nifty Gateway. Beeple has since removed links to the Discord from his Twitter profile, and other links to the server no longer appear not to work.

According to an Oct. 21 report by cyber security company RiskIQ, Discord is becoming an increasingly popular platform for cybercriminals. RiskIQ researchers uncovered 27 unique malware types hosted on Discord's CDN servers.

In April, Talos Intelligence similarly found that hackers were increasingly using platforms like Discord to take advantage of users who were at home due to global COVID-19 restrictions.

“Attackers are leveraging collaboration platforms, such as Discord and Slack, to stay under the radar and evade organizational defenses,” it wrote at the time.

Tags
Nft
Blockchain Game
Scams
Related Posts
Logan Paul threatens to sue Coffeezilla over CryptoZoo ‘scam’ allegations
YouTuber Logan Paul has threatened to sue fellow YouTuber and internet detective Coffeezilla for defamation after he accused Paul’s CryptoZoo nonfungible token (NFT) project of being a “scam.” The two have been battling back and forth on both social media and YouTube videos ever since Dec. 17, when Stephen Findeisen — also known as Coffeezilla — launched the first of a three-part video series attacking CryptoZoo and Paul, who was the face of the project. “CryptoZoo was supposed to be a fun blockchain game that can earn you money [...] but millions of dollars of investor money later, things are …
Blockchain / Jan. 5, 2023
Play-and-earn is the secret to mainstream NFT gaming adoption
Since 2017, dozens of projects have created games that use blockchain and nonfungible token (NFT) technology. The overall vision is inspiring and has attracted a solid base of fans and investors in equal measure. However, the industry is still in its infancy, and we have a long way to go until it achieves mainstream adoption. There are various hurdles on the path to this promised land. Some of the primary barriers are that NFT games have relied too heavily on their money-making traits as the selling point and lag behind traditional games when it comes to engaging game mechanics. But …
Adoption / Aug. 6, 2021
Axie Infinity virtual land slot sells out for 550 ETH
In a tweet posted by Axie Infinity late Thursday, a lucrative land plot within the monster-battle fantasy nonfungible tokens, or NFTs, game sold for 550 ETH ($2.3 million). Axies are creatures that users command to duel other players, battle enemies, and complete daily quests. They are also NFTs can be bred (minted), bought, and sold freely. ✨A Genesis Land Plot just sold for 550 ETH! That's over 2.3 M USD! Our player-owned Digital nation continues to shock the world pic.twitter.com/SVvAtFNYUF — Axie Infinity (@AxieInfinity) November 24, 2021 The game takes place in the world of Lunacia that Axies inhabit. It …
Blockchain / Nov. 25, 2021
P2E gaming is in a rut, but Axie Infinity (AXS) could rebound for 3 key reasons
Play-to-earn gaming was one of the breakout sectors of the cryptocurrency market in 2021 and the trend was led by Axie Infinity (AXS), a mobile, blockchain-based game where users collect, breed, raise and battle nonfungible tokens (NFTs) called Axies for monetary rewards. As the market topped and then entered what has become a deep bear market, AXS price retraced from an all-time high near $170 to its current price at $15.20 following several setbacks, including a $600 million hack of the Ronin sidechain that hosts the game. Currently, the future of P2E gaming remains in question and advocates are watching …
Adoption / July 7, 2022
Illuvium DAO blocks NFT pack-opening event involving 3AC founder Su Zhu
The community supporting Illuvium, an interoperable blockchain game, has demonstrated the power of decentralized autonomous organizations (DAOs) after blocking a scheduled nonfungible token (NFT) pack-opening event between Illuvium CEO Kieran Warwick and Three Arrows Capital (3AC) founder Su Zhu. Warwick was scheduled to go against Zhu in what’s called an “Influencer Illuvitars D1sk Battle” where prominent crypto personalities go against each other to open NFT packs. However, due to the controversies surrounding Zhu and 3AC, the Illuvium community expressed concerns over the potential risks of being associated with Zhu, who currently faces various accusations of unethical behavior. Influencer Illuvitar D1sk …
Nft / Feb. 28, 2023