June 6, 2022 – NFTs (non-fungible tokens) amounting to about $360,000 were reportedly stolen after servers of the popular NFT collectible Bored Ape Yacht Club (BAYC) were compromised over the weekend, according to reports by international news websites.
The reports were confirmed by BAYC’s parent company, Yuga Labs, which sent out a tweet from BAYC’s account.
“Our Discord servers were briefly exploited today. The team caught and addressed it quickly. About 200 ETH worth of NFTs appear to have been impacted. We are still investigating.”
Our Discord servers were briefly exploited today. The team caught and addressed it quickly. About 200 ETH worth of NFTs appear to have been impacted. We are still investigating, but if you were impacted, email us at discord@yugalabs.io.
— Bored Ape Yacht Club (@BoredApeYC) June 4, 2022
The attack was first reported by NFTherder in a tweet, following which Yuga Labs confirmed the news. The hacker was able to breach the security of the Discord account belonging to BAYC’s project manager, Boris Vagner, whose login credentials were used to post false links in the official BAYC and its related metaverse project called Otherside’s Discord channels.
This is the second time in two months that Yuga Labs’ NFTs have been exploited. Earlier, an attacker stole users’ payments by exploiting a CAPTCHA bot that Yuga Labs had employed to deter scammers. The corporation had suffered a loss worth almost $2.8 million in NFTs following the hack.
While Yuga Labs is investigating the attack, it has warned potential customers that the corporation does not “offer surprise mints or giveaways”.