Hacker Exploits the Social Account of The Sandbox
In the world of Metaverse and NFTs, Hackers are on the rise nowadays despite the overall decline of the market. Another such ineffective phishing attempt has been witnessed recently. The social media-based discord server of The Sandbox on Instagram has been exploited by the hackers and the followers were redirected to a false giveaway URL. In a blog post, which was published on 9th September, The Sandbox’s CEO – Sebastien Borget – validated that the discord server of the platform got compromised on the behalf of the hackers.
The Instagram Account of The Sandbox Gets Compromised by the Hackers
The CEO also mentioned that the followers were redirected to the links taking to bogus giveaways and the exploiters even attempted to rent the Bored Ape non-fungible tokens of Sandbox from the Instagram consumers. In his Twitter post, the executive of the venue revealed that notwithstanding the 2FA as well as the rest of the protections, the respective attack was successfully carried out.
He moved on to note that they have informed the management of Instagram to take immediate action and resolve the respective matter. Additionally, the consumers were advised not to click the unique links given on the Instagram account of The Sandbox as they are forged. As per Borget, the profile of The Sandbox – which has been compromised – advertised a bogus raffle ticket occasion touting a giveaway to target innocent consumers on Instagram.
The Sandbox, an NFT venue powered by Voxel, elaborated that the profile pictures of Bored Ape Yacht Club (BAYC) were utilized by the hackers so that they could rent out the non-fungible tokens. The exploiters infringed the 2-factor as well as the rest of the security measures and publicized the false giveaway. At that point, a user of Instagram had the intention to surrender forty ETH tokens to utilize BAYC non-fungible tokens for twenty-four hours.
$100M in NFTs Swindled by Cybercriminals Till July 2022
However, luckily, the control of The Sandbox’s Instagram account was restored by it. In this case, just one consumer asserted to have been deprived of non-fungible tokens following opting for a fake link. The respective phishing exploits attempt took place some days following the publication of an elaborated report by a research company Elliptic asserting that non-fungible tokens of above $100M worth had been stolen till July this year.
