Bored Ape Yacht Club NFTs were recently compromised after a hacker tried to scam users by attacking the collection’s official Discord server, the BAYC Twitter account revealed the news Friday.
Planning to benefit from the phishing scam, the hacker posted malicious links on the BAYC’s official Discord server, alleging that a new collection would be available to mint for Mutant Ape and Bored Ape NFT holders.
“Do not mint anything from any Discord right now. A webhook in our Discord was briefly compromised. We caught it immediately but please know: we are not doing any April Fools stealth mints/airdrops etc. Other Discords are also being attacked right now,” BAYC tweeted.
Blockchain security firm Peckshield later reported that at least one Mutant Ape Yacht Club, MAYC #8662, was stolen in the scam. At the time of writing, the floor price of a single Mutant Ape is 20.5 ETH, or $69,663.
#PeckShieldAlert @BoredApeYC Discord compromised, MutantApeYachtClub #8662 has been stolen.https://t.co/bMQrBgxreU
https://mintboredapeyc[.com]/ is #phishing site. Do *NOT* fall prey to it. https://t.co/NLMiIzKsR6 pic.twitter.com/mUlAkImvRY
— PeckShieldAlert (@PeckShieldAlert) April 1, 2022
Similar unauthorized access to Discord servers of Doodles, Shamanzs, Nyoki, and others were reported during the day. According to security researchers, the hacker was able to access the servers via ‘ticket tools’, a Discord bot that automates the online search process for tickets.
THIS IS 100% CONFIRMED. AUDIT LOG FROM DOODLES & SHAMANZS
🚨 TICKET TOOL IS HACKED 🚨
REMOVE IT FROM YOUR SERVER. pic.twitter.com/KKHn5RHCVL
— Serpent (@SerpentAU) April 1, 2022
Meanwhile, BAYC has shut down Discord channel access to new members. ApeCoin, the native token of the NFT collection, has since recovered and was trading at $13.39, up by $1.73 from the previous day.