{"id":62465,"date":"2022-06-05T10:01:18","date_gmt":"2022-06-05T07:01:18","guid":{"rendered":"https:\/\/forklog.com\/en\/?p=62465"},"modified":"2025-09-05T18:14:41","modified_gmt":"2025-09-05T15:14:41","slug":"hackers-hacked-the-discord-servers-of-the-bored-ape-yacht-club-project","status":"publish","type":"post","link":"https:\/\/u1f987.com\/en\/hackers-hacked-the-discord-servers-of-the-bored-ape-yacht-club-project\/","title":{"rendered":"Hackers hacked the Discord servers of the Bored Ape Yacht Club project"},"content":{"rendered":"<p>On Saturday, May 4, hackers breached the Discord servers of the Bored Ape Yacht Club (BAYC) project and posted phishing links in its communication channels. NFT holders lost digital assets worth 200 ETH (~$359,000).<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">As a reminder, we do not offer surprise mints or giveaways.<\/p>\n<p>\u2014 Bored Ape Yacht Club (@BoredApeYC) <a href=\"https:\/\/twitter.com\/BoredApeYC\/status\/1533181014805295106?ref_src=twsrc%5Etfw\">June 4, 2022<\/a><\/p><\/blockquote>\n<p> <script async=\"\" src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>\u201cToday our Discord servers were briefly exploited. The team quickly detected and resolved the issue. It appears that NFTs worth about 200 ETH were affected. We are continuing the investigation,\u201d the developers wrote.<\/p>\n<\/blockquote>\n<p>The first to notice the incident was an analyst going by the handle OKHotShot. He noted that BAYC community manager Boris Vagner&#8217;s account had been compromised \u2014 enabling the phishing attack.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">\ud83d\udea8BAYC &#038; OtherSide discords got compromised\u203c\ufe0f<\/p>\n<p>Seems because Community Manager <a href=\"https:\/\/twitter.com\/BorisVagner?ref_src=twsrc%5Etfw\">@BorisVagner<\/a> got his account breached, which let the scammers execute their phishing attack. Over 145E in was stolen <\/p>\n<p>Proper permissions could prevent this <a href=\"https:\/\/t.co\/lCl2DfZQ0W\">pic.twitter.com\/lCl2DfZQ0W<\/a><\/p>\n<p>\u2014 OKHotshot (@NFTherder) <a href=\"https:\/\/twitter.com\/NFTherder\/status\/1533037408144572417?ref_src=twsrc%5Etfw\">June 4, 2022<\/a><\/p><\/blockquote>\n<p> <script async=\"\" src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>Vagner is the founder of Spoiled Banana Society (SBS) \u2014 a BAYC holder group that runs a fantasy football league. The attackers also posted malicious links attributed to him in SBS communication channels.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">We were hacked an hour ago hopefully no one clicked any links. We\u2019ve got back control of the discord and Boris\u2019s account. Thank god he didn\u2019t delete the server. Bayc &#038; Otherside discord was also hacked pls stay safe \ud83d\ude4f\ud83c\udffc<\/p>\n<p>\u2014 Spoiled Banana Society (@SBS_XYZ) <a href=\"https:\/\/twitter.com\/SBS_XYZ\/status\/1533029156920827904?ref_src=twsrc%5Etfw\">June 4, 2022<\/a><\/p><\/blockquote>\n<p> <script async=\"\" src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>This is not the first instance of hackers stealing BAYC holders&#8217; assets via phishing links in official communication channels. In April, attackers gained access to the project&#8217;s Instagram account \u2014 users had 765.3 ETH and 91 NFTs stolen.<\/p>\n<p>In the wake of the incident, BAYC co-founder Gordon Goner said that Discord is not suitable for crypto communities, as it is unsafe.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">Discord isn\u2019t working for web3 communities. We need a better platform that puts security first.<\/p>\n<p>\u2014 GordonGoner.eth (@GordonGoner) <a href=\"https:\/\/twitter.com\/GordonGoner\/status\/1533187460074815489?ref_src=twsrc%5Etfw\">June 4, 2022<\/a><\/p><\/blockquote>\n<p> <script async=\"\" src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>\u201cDiscord is not suitable for Web 3.0 communities. We need a better platform that puts security first,\u201d he wrote.<\/p>\n<\/blockquote>\n<p>Some commentators disagreed. The creator of the OpenAvatar NFT project, known as cory.eth, noted that the BAYC team had taken no measures to protect the Discord server. He proposed publishing all announcements on the blockchain, enabling a bot to repost them to traditional channels.<\/p>\n<blockquote class=\"twitter-tweet\" data-conversation=\"none\">\n<p lang=\"en\" dir=\"ltr\">.<a href=\"https:\/\/twitter.com\/GordonGoner?ref_src=twsrc%5Etfw\">@GordonGoner<\/a> you just need to use the technology better. Hit me up if you want an audit or implementation.<a href=\"https:\/\/t.co\/zybdI0eICl\">https:\/\/t.co\/zybdI0eICl<\/a><\/p>\n<p>\u2014 cory.eth (@cory_eth) <a href=\"https:\/\/twitter.com\/cory_eth\/status\/1533189714718515200?ref_src=twsrc%5Etfw\">June 4, 2022<\/a><\/p><\/blockquote>\n<p> <script async=\"\" src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>In May 2022, unknown actors <a href=\"https:\/\/forklog.io\/hakery-ukrali-okolo-438-000-cherez-vzlomannyj-twitter-akkaunt-beeple\/\">hacked the Twitter account of artist Mike Winkelmann<\/a>, known by the alias Beeple, to post phishing links. Their haul totaled about $438,000 in assets.<\/p>\n<p>Follow ForkLog&#8217;s Bitcoin news on our Telegram channel \u2014 cryptocurrency news, prices and analysis.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>On Saturday, May 4, hackers breached the Discord servers of the Bored Ape Yacht Club (BAYC) project and posted phishing links in its communication channels. NFT holders lost digital assets worth 200 ETH (~$359,000).<\/p>\n","protected":false},"author":1,"featured_media":62466,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"select":"1","news_style_id":"1","cryptorium_level":"","_short_excerpt_text":"","creation_source":"","_metatest_mainpost_news_update":false,"footnotes":""},"categories":[3],"tags":[1356,1154],"class_list":["post-62465","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-analysis","tag-bored-ape-yacht-club","tag-crimes"],"aioseo_notices":[],"amp_enabled":true,"views":"24","promo_type":"1","layout_type":"1","short_excerpt":"","is_update":"","_links":{"self":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/62465","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/comments?post=62465"}],"version-history":[{"count":1,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/62465\/revisions"}],"predecessor-version":[{"id":62467,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/posts\/62465\/revisions\/62467"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/media\/62466"}],"wp:attachment":[{"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/media?parent=62465"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/categories?post=62465"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/u1f987.com\/en\/wp-json\/wp\/v2\/tags?post=62465"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}