On the 6th of May, OpenSea revealed that its Discord server had been hacked. The hacker used phishing links to steal NFTs from the wallets of users. This will be the second time OpenSea will be facing an attack this year.
Following the attack, the OpenSea team warned its Twitter followers to refrain from clicking any links on its Discord server.
Participants of the Discord server reported that the attacker was in control of one of OpenSea’s Discord bots. The attacker used the bot to pass false information to the community members.
A series of posts were uploaded on the platform about a collaboration between OpenSea and YouTube. The post also claimed that more details regarding the “recent collaboration” will be shared soon on the channel.
Subsequently, the hacker notified OpenSea’s community members that passes would be given for its YouTube genesis mint, and only a few slots would be made available. Members who gained early access to the NFT mint were to receive NFTs with insane utilities.
Later in the day, the hacker claimed that most of the NFT passes had been given out and included a link for the community members to join the Cat and Watches society to claim their NFTs. Several users clicked on the link, connected their wallets, and lost some of their NFTs.
Peckshield security firm has reported that the phishing site is now down, although many members of the OpenSea community had taken the bait.
The OpenSea team eventually regained access to their Discord server, and the phishing links were trashed. The OpenSea team investigated the attack and discovered that the server’s webhooks had some plugins that allowed interaction with other applications.
The attacker’s wallet address was traced on Etherscan, and it was discovered that 13 NFTs were stolen from 6 different wallet addresses.
The OpenSea community is not the only NFT community that has suffered an attack recently. Less than a month ago, the BAYC Discord server and the Instagram page were also hacked. The community members lost NFTs worth millions of dollars before control of both social platforms was retrieved.