OpenSea freezes $2.2M of stolen Bored Apes

Published at: Dec. 31, 2021

NFT marketplace OpenSea has frozen 16 Bored Ape and Mutant Ape nonfungible tokens (NFT) after they were reportedly stolen yesterday from a New York art gallery operator.

In total, one Clonex, seven Mutant Ape Yacht Club, and eight Bored Ape Yacht Club NFTs currently valued at about 615 ETH ($2.28 million) were stolen and are now not able to be traded on OpenSea.

The toddkramer.eth account, which links to the Ross+Kramer Art Gallery in New York, fired off a series of tweets detailing the 16 NFTs that were stolen from his hot wallet and pleading with OpenSea and the NFT community for help. While the NFT community was often unsympathetic to the trader’s plight, OpenSea froze trading on the stolen items.

@gidwellsoon @Tob_Opensea @j1mmy I have been hacked. Please HelpApe 2771Ape 6416Ape 1623Ape 1708Ape 8214Ape 7528Ape 9988Ape 9410Mutants 25057Mutant 11177Mutant 28752Mutant 24718Mutant 2436Mutant 9278Mutant 2434Clonex 6801

— toddkramer.eth (@toddkramer1) December 30, 2021

The freeze on buying and selling the NFTs have some traders decrying a lack of decentralization, one of the cherished aspects of the crypto industry. One Twitter commenter kw.sol said, “Who was able to freeze the n? Feels pretty anti crypto to be asking third parties to do this and ideally they shouldn’t be able to.”

Famed software engineer Grady Booch chimed in about the lack of decentralization in this case when he commented:

“Silly me. And here I thought that the code is the law and that one of the very ideas of cryptocurrencies was the elimination of any possibility of centralized intervention. 

A hot wallet is a type of cryptocurrency software wallet that is connected to the internet — most commonly MetaMask — whenever the device it is installed on is connected.

Kramer tweeted that he lost his collection through a phishing scam that gained access to his hot wallet after he clicked on a malicious link. He deleted the tweet following the harsh vitriol in the comments. Kramer most recently tweeted on Dec. 31 that he was surprised by the reaction:

Twitter is ruuuuuuthlesssss

— toddkramer.eth (@toddkramer1) December 30, 2021

While Kramer has little recourse in retrieving the stolen NFTs, his experience highlights the importance of sound operational security (opsec) as a cryptocurrency trader or NFT collector. He said that he has learned a lesson about opsec in handling valuable cryptocurrency when he tweeted yesterday:

“Lessons learned. Use a hard wallet... “

A hard wallet, otherwise known as a cold wallet, is a crypto wallet that does not connect to the internet until manually plugged into a computer and then each transaction needs to be approved using physical buttons. Hard wallets are a superior measure over hot wallets to secure crypto assets.

Kramer’s ordeal is not a unique experience to NFT traders, especially those familiar with the Bored Ape Yacht Club collection.

On Dec. 26, NFT collector bergpay.eth said he suffered a similar fate to Kramer when 5 Jungle Freaks and 2 Sandbox NFTs were stolen from his Ethereum wallet and his ENS domain was transferred to a new address.

On Nov. 30, Twitter account friesframe summed up the frustration that can overcome an NFT owner if they find that their favorite items have been stolen from their hot wallet.

OpenSea has not frozen either bergpay’s or friesframe’s NFTs yet.

Tags
Decentralization
Nft
Cybersecurity
Security
Related Posts
The importance of decentralized oracles: Interview with Sergey Nazarov
Chainlink co-founder Sergey Nazarov believes that increasing the decentralization and scalability of oracle technologies are key to ensure trust in the DeFi ecosystem. Oracles play a key role in the correct functioning of DeFI protocols by connecting them to real-world data. However, the trustworthiness of oracles becomes compromised in instances where they rely on a single data source to retrieve information. For instance, according to Nazarov, excessively centralized oracles enabled five recent flash loan attacks, which resulted in DeFi protocols losing around $40 million. Flash loans, a form of loan that does not require any collateral, can be used to …
Decentralization / Dec. 19, 2020
Research: 60% of All Bitcoin Full-Nodes Are Still Vulnerable to Inflation Bug
According to bitcoin (BTC) node stats reported on the website of bitcoin core developer Luke Dashjr, 60.22% of the coin’s full-nodes are running software still vulnerable to the inflation bug at press time. According to the reported data, the software running on 60,101 bitcoin full-nodes is vulnerable to the CVE-2018-17144 bug. As Cointelegraph reported at the end of September last year, the bug allows malicious miners to artificially inflate bitcoin’s supply via a simple type of double input. According to a Cointelegraph analysis, at the time — likely because of the possible catastrophic consequences of the presence of the bug …
Decentralization / May 6, 2019
Can Solana become the dominant PoS chain despite persistent outages?
Like most new-age networks, Solana was developed to resolve major issues confronting the blockchain industry. While the network has addressed some of these issues by its very nature, it has also encountered a few unique problems. From resource exhaustion to a halt in block confirmation, the Solana network has suffered a number of setbacks that resulted in repeated power outages, causing the network to shut down for hours on several occasions. The network went down on December 4, 2020, about three years after Solana was introduced, causing confusion in the community. The chain appears to have stopped validating new blocks …
Decentralization / May 10, 2022
LayerZero bridging protocol denies accusation of 'critical vulnerabilities'
Summa founder James Prestwich has accused the $382 million LayerZero bridging protocol of hosting a “critical vulnerability.” According to a Jan. 30 post by Prestwich, this vulnerability “could result in theft of all user funds.” LayerZero CEO Bryan Pellegrino has called Prestwich’s accusation “absolutely shocking” and “wildly dishonest,” claiming that the vulnerability only applies to applications that don’t modify the default configuration. Absolutely shocking that a competitor would put out a wildly dishonest post about us. Happy to have @zellic_io @osec_io @ZOKYO_io or any other of the auditing firms come comment and dispel but let me summarize. If you set …
Decentralization / Jan. 31, 2023
Top 7 blockchain courses and certifications for beginners
Blockchain courses and certifications can play an important role in helping individuals gain a comprehensive understanding of blockchain technology and its applications. By completing these courses, individuals can develop technical skills, stay current with industry developments, enhance their career opportunities and increase their earning potential. Here are seven blockchain courses and certifications for beginners. INE’s Blockchain Security INE’s Blockchain Security course is an online course offered by Internetwork Expert (INE) that provides a comprehensive overview of the security aspects of blockchain technology. The course covers various topics such as consensus algorithms, cryptography, network security, smart contract security, and blockchain attacks …
Decentralization / Feb. 2, 2023