- SeaHorseArmy Discord was compromised on May 9th,2022, and the Hacker has posted messages related to a fake minting phishing website.
Below is a quick overview of this project.
SeaHorseArmy NFT is a 7777 legendary SeaHorse Warriors back to life to rule the Metaverse. They are exceptionally rare, and owning one is like walking among the gods.
What was the Team’s Response to the Attack?
As soon as Team was notified of this Attack, they have posted on Twitter that, **Dear SeaHorseArmy Community. Our Discord has been hacked, we do not have a mint open. Please do not mint. The minting date is yet to be announced!.
According to the official information released by them in their Discord Announcements, There were two people with
Mister SeaHorse‘s profile, who is the Admin of the SeaHorseArmy Discord. They have posted a fake minting link. So, Full Lockdown Mode was enabled by the Team, as a result of which all the announcement channels were private. After visiting the minting link, Team only found a
Connect Wallet Button was visible on that phishing site.
How did the Attack Occur?
Investigation of the Audit log shows that Attack was started with one of their trusted admins deleting the Admin Role, and his account got compromised by the Hacker. Below is the screenshot of the Audit Log.
It was a well-planned attack. Atoki starts updating the warrior role and updates the
Manage Server and
Manage Events permission. Below is the screenshot of all the steps performed by the Hacker.
Every NFT from the SeaHorseArmy will come from seahorsearmy.eth!
As discord hacks are increasing nowadays, our readers should stay alert.