CertiK Report: Redacted Money’s Discord Server Hacked
CertiK, a renowned blockchain security firm, has disclosed that the Discord server associated with Redacted Money, a prominent web3 project, has been breached by hackers. The server, boasting over 10,000 members, including influential figures within the cryptocurrency community, fell victim to unauthorized access.
Thanks; please do not click any links & double check. More info ASAP.
— Redacted Money (@redacted_money) July 8, 2023
Redacted Money’s Private Data
Once inside the Discord channel, the attackers capitalized on vulnerabilities and security loopholes to gain access to private messages and financial data. The Redacted Money team promptly alerted law enforcement and initiated an investigation into the breach. Measures have also been implemented to fortify the server’s security and prevent future attacks. The prevailing belief is that the hackers successfully infiltrated the server through a well-executed phishing attack, a tactic commonly employed to deceive individuals into divulging sensitive information.
Redacted Money, recognized as a trustless zero knowledge (ZK) protocol, empowers users to safeguard their cryptocurrency transactions from prying eyes. Unfortunately, social media handles associated with web3 projects and influential individuals have increasingly become attractive targets for scammers and crypto thieves.
🔔 Update on the Discord situation:
1⃣ We're currently in communication with @discord_support to shut down the compromised server.
2⃣ The fraudulent domain 'redactedmoney(dot)com' is on its way to being taken down, thanks to our swift interaction with @tucows.
3⃣ Rest assured,…— Redacted Money (@redacted_money) July 8, 2023
Phishing Scams and Server Breaches
This incident follows a string of similar occurrences. Last year, the Discord server of Bored Ape Yacht Club fell victim to compromise through a Twitter-related attack, resulting in the unauthorized sale of the project’s NFT collections at significantly reduced prices. In January 2023, NFT God, a popular digital collectibles blogger, experienced a devastating loss of his “entire digital livelihood” after falling victim to a malicious phishing scam propagated through a Google link. More recently, scammers hijacked the Twitter handle of the Aptos (APT) blockchain project to promote a fraudulent APT airdrop campaign, although no financial losses were reported at that time.
To safeguard oneself against phishing attacks and Discord server breaches, as well as similar incidents on other social media platforms, it is crucial to exercise caution when encountering unsolicited messages. Avoid clicking on links within such messages and remain vigilant regarding the information you share. Employing two-factor authentication (2FA) and utilizing strong passwords incorporating a combination of letters, numbers, and special characters are highly recommended security practices.
