Unidentified exploit drains $10.5 million in NFTs across 11 blockchains, reports Metamask Developer

Share IT

Key Takeaways

  • Tyler Monahan notes that the exploit had taken over $10.5 million worth of NFTs/coins from experienced crypto community members who were “reasonably secure”.
  • The exploit targeted keys that were created from 2014 to 2022 and focused on those who were more “crypto native” 

The rising popularity of non-fungible tokens (NFTs) in the decentralized finance (DeFi) space has made it a prime target for hackers. Over the past few months, several high-profile NFT thefts have taken place, highlighting the need for increased security measures.

Recently, MetaMask developer Taylor Monahan reported a massive wallet-draining operation that had taken place since December 2022. The exploit had taken more than $10.5 million worth of NFTs and coins from experienced community members who were “reasonably secure.”

The exploit targeted keys that were created from 2014 to 2022 and focused on those who were more “crypto native” with multiple addresses and work within the space.

Monahan further advised those with their assets in a single private key to migrate their funds, split their assets, or opt for a hardware wallet. The developer also warned that the exploit was not like the usual phishing attempts or random scammers. 

“This is NOT a low-brow phishing site or a random scammer. It has NOT rekt a single noob. It ONLY rekts OGs. If you have all your stuff under a single Secret Recovery Phrase / Private Key, please be safe migrate”, Tyler’s tweet reads. He claims the exploit was a sophisticated attack that did not target newbies but rather focused on experienced community members.

This recent NFT theft is just one of many that have taken place in the DeFi space. In 2021, a hacker was able to steal $69 million worth of NFTs from the Nifty Gateway marketplace. The attacker exploited a vulnerability in the marketplace’s smart contract, allowing them to steal the tokens. This attack highlighted the need for improved security measures for DeFi platforms.

Another DeFi platform, Poly Network, was hacked for $600 million in digital assets in 2021. The attacker exploited a vulnerability in the platform’s smart contract, allowing them to steal the funds. The hacker eventually returned the funds, citing “not-for-profit” motives.

These NFT thefts have raised concerns among the DeFi community about the security of their digital assets. The decentralized nature of DeFi platforms can make them vulnerable to attacks, and it is essential to have robust security measures in place.

One of the most effective security measures is to opt for a hardware wallet. A hardware wallet is a physical device that stores your private keys and is disconnected from the internet. This makes it virtually impossible for hackers to access your digital assets.

The rising number of crypto phishing attacks is another concern for the DeFi community. According to cybersecurity and anti-virus provider Kaspersky, over 5 million crypto phishing attacks were detected in 2022, citing a 40% year-on-year increase in comparison to the year 2021. This further highlights the need for increased awareness and education on how to protect your digital assets from phishing attacks.

Share IT
Saniya Raahath
Saniya Raahath

Can’t find what you’re looking for? Type below and hit enter!