- Multiple tweets suggest OpenSea’s Discord account has been hacked to promote a scam.
- OpenSea says it is investigating the incident.
“We are currently investigating a potential vulnerability in our Discord, please do not click on any links in the Discord,” tweeted OpenSea on the matter.
It appears that the access was used to promote a scam NFT mint. According to screenshots, an announcement was made in the Discord server that there was a mint pass being offered in collaboration with YouTube. It directed members to go to a website that contained the word YouTube but was not its official website. PeckShield has identified the link as a phishing site.
The scam message was shared in the announcements channel. This channel has now been hidden from users.
It is unclear if any users fell foul to the attack or if any NFTs have been lost.
This follows similar attacks in the NFT space, where Discord servers are often hacked to promote fake giveaways. This happened to Bored Ape Yacht Club’s Discord server. More recently, the Bored Ape Instagram account was also hacked to promote a fake NFT mint — one that gleaned $2.8 million of NFTs from unwitting users.
We have reached out to OpenSea for comment and will update this story should we hear back.
© 2022 The Block Crypto, Inc. All Rights Reserved. This article is provided for informational purposes only. It is not offered or intended to be used as legal, tax, investment, financial, or other advice.