Login
Imagine β your favorite brand on Instagram just announced a giveaway. Youβll receive a free gift! All you have to do is provide your credit card information. Sounds easy, right? This is a brand youβve followed and trusted for a while now. Youβve engaged with them and even purchased some of their items. The link comes directly from their official page, so you donβt think to question it. Donβt fall prey to crypto scams, download reputable mobile security protection.
This is the same mindset that led to several Bored Ape Yacht Club (BAYC) NFTs being stolen by a cybercriminal who had hacked into the companyβs official Instagram account. Letβs dive into the details of this scam.Β Β
Bored Ape Yacht Club, the NFT collection, disclosed through Twitter that their Instagram account had been hacked, and advised users not to click on any links or link their crypto wallets to anything. The hacker managed to log into the account and post a phishing link promoting an βairdrop,β or a free token giveaway, to users who connected their MetaMask wallets. Those who linked their wallets before BAYCβs warning lost a combined amount of over $1 million in NFTs.Β
Despite the large price tag attached to NFTs, they are often held in smartphone wallets rather than more secure alternatives. MetaMask, the crypto wallet application, only allows NFT display through mobile devices and encourages users to use the smartphone app to manage them. While it may be a good method for display purposes, this limitation provides hackers with a new and effective way to easily steal from usersβ mobile wallets.Β
BAYC does not yet know how the hacker was able to gain access to their Instagram account, but they are following security best practices and actively working to contact the users affected.Β
This scam was conducted through the official BAYC account, making it appear legitimate to BAYCβs followers. It is incredibly important to stay vigilant and know how to protect yourself and your assets from scams like these. Follow the tips below to steer clear of phishing scams and keep your digital assets safe:Β Β
A seed phrase is the βopen sesameβ to your cryptocurrency wallet. The string of words is what grants you access to all your walletβs assets. Ensuring that your seed phrase is stored away safely and not easily accessible by anyone but yourself is the first step to making sure your wallet is secure.Β
With all transactional and wallet data publicly available, scammers can pick and choose their targets based on who appears to own valuable assets. To protect your privacy and avoid being targeted, refrain from sharing your personal information on social media sites or using your NFT as a social media avatar.Β
Phishing scams targeting NFT collectors are becoming increasingly common. Be wary of any airdrops offering free tokens in exchange for your information or other βcollectorsβ doing the same.Β
Phishing scams tend to get more sophisticated over time, especially in cases like the Bored Ape Yacht Club where the malicious links are coming straight from the official account. It is always best to remain skeptical and cautious, but when in doubt, here are some extra tips to spot phishing scams:Β
As crypto and NFTs continue to take the world by storm, hackers and scammers are constantly on the prowl for ways to steal and deceive. No matter the source or how trustworthy it may seem at first glance, always exercise caution to keep yourself and your assets safe!Β
The post Instagram Hack Results in $1 Million Loss in NFTs appeared first on McAfee Blog.
FreshRSS 