Hackers takeover Azuki’s Twitter account, steal over $750K in less than 30 minutes

Published at: Jan. 28, 2023

Azuki, a popular nonfungible token (NFT) project, had its Twitter account compromised on Jan. 27 leading to hackers stealing over $750,000 worth of USD Coin (USDC) by posting a malicious “wallet drainer link” posed as a virtual land mint.

Hackers stole $751,321.80 USDC from a single wallet within half an hour of the malicious links being tweeted, according to Etherscan data provided to Cointelegraph by crypto wallet security firm Wallet Guard.

The data also revealed that hackers stole a further $6,752.62 worth of USDC from various wallets holding 11 NFTs and over 3.9 Ether (ETH).

Wallet Guard stated that the total amount stolen was $758,074.42.

Emily Rose, community manager for the anime-inspired NFT project confirmed via Twitter on Jan. 27 that the Azuki account was hacked, warning users not to click any links from Azuki’s Twitter account.

AZUKI OFFICIAL TWITTER ACCOUNT IS HACKED.DO NOT CLICK LINKS FROM OUR ACCOUNT.PLEASE RETWEET.

— Rose | | ⛩️NGL (@emilyrosemcg) January 27, 2023

Azuki’s head of community and product manager Dem explained on a Twitter Space hosted by Wallet Guard on Jan. 27 that scammers were able to “post a wallet drainer link,” after gaining control of Azuki's Twitter account.

Dem urged users to “stay safe and stay suspicious” while the team attempted to regain control of the account.

Several hours later Azuki stated that it had regained control of its Twitter account via a tweet:

1/ The @AzukiOfficial Twitter was compromised today. A series of malicious tweets were posted during the morning of Friday, Jan 27th (Pacific Time). The team has regained control of the @AzukiOfficial Twitter. Details below

— Azuki (@AzukiOfficial) January 27, 2023

This was confirmed by Rose and Dem retweeting the announcement.

Liz Yang, head of growth at Chiru Labs, the company behind Azuki, told Cointelegraph that the team is “currently in contact with Twitter and investigating the breach,” noting that Azuki “will provide an update once we have more information.”

Related: Hackers take over CoinDCX Twitter account, promote fake XRP ads

Ohm Shah, co-founder of Wallet Guard, told Cointelegraph that “it does not matter” if an account is official or verified, users should treat everything as suspicious until proven otherwise. Shah noted:

“Don’t be the first person that clicks the link. It’s better to be paranoid in Web3 than not.”

Upon Azuki regaining control of the account, it emphasised to its followers in a tweet to always “go out on several channels” to confirm announcements.

It also noted to reach out to the Azuki "mod team" on Discord when in doubt.

This news comes after stock trading platform Robinhood’s Twitter account was compromised on Jan. 25.

The hackers pushed Robinhood’s followers to each pay $0.0005 for a token called “RBH” on the BNB Smart Chain.

Conor Grogan, the head of product business operations at Coinbase, tweeted that at least 10 people had purchased approximately $1,000 worth of the scam token before the tweet was removed.

Tags
Nft
Ethereum
Altcoin
Cryptocurrencies
Hacks
Hackers
Wallet
Web3
Usd Coin
Twitter
Fraud
Related Posts
Targeted phishing scam nets $438K in crypto and NFTs from hacked Beeple account
Digital artist and popular nonfungible token (NFT) creator Mike Winkelmann, more commonly known as Beeple, had his Twitter account hacked on Sunday as part of a phishing scam. Harry Denley, security analyst of MetaMask, alerted users that Beeple’s tweets at the time containing a link to a raffle of a Louis Vuitton NFT collaboration were, in fact, a phishing scam that would drain the crypto out of users’ wallets if clicked. ⚠️ Beeple's Twitter account has been compromised (ATO) to post a phishing website to steal funds. 0x7b69c4f2ACF77300025E49DbDbB65B068b2Fda7D 0xF305F6073CFa24f05FF15CA5b387DD91f871b983 pic.twitter.com/0MPNwOPlEu — harry.eth (whg.eth) (@sniko_) May 22, 2022 The scammers were …
Artists / May 23, 2022
North Korean hackers stealing NFTs using nearly 500 phishing domains
Hackers linked to North Korea’s Lazarus Group are reportedly behind a massive phishing campaign targeting non-fungible token (NFT) investors — utilizing nearly 500 phishing domains to dupe victims. Blockchain security firm SlowMist released a report on Dec. 24, revealing the tactics that North Korean Advanced Persistent Threat (APT) groups have used to part NFT investors from their NFTs, including decoy websites disguised as a variety of NFT-related platforms and projects. Examples of these fake websites include a site pretending to be a project associated with the World Cup, as well as sites that impersonate well-known NFT marketplaces such as OpenSea, …
Nft / Dec. 26, 2022
Jump Crypto replenishes funds from $320M Wormhole hack in largest-ever DeFi 'bailout'
On Thursday, Jump Crypto, a crypto venture capital firm that owns Certus One, the developer of the Wormhole token bridge, announced it had deposited 120 thousand Ether (ETH) into a Solana-Ethereum bridge that suffered a devastating exploit. The day prior, hackers fraudulently minted 120 thousand wrapped Ether (wETH) worth $321 million on the Solana (SOL) platform, then redeemed 93,750 wETH for ETH on the Ethereum network while swapping the rest for other altcoins on the Solana network. The cross-chain ETH-wETH is supposed to have an exchange ratio of 1:1 against one another. Therefore, unauthorized minting of wETH leads to significant …
Technology / Feb. 3, 2022
STEPN impersonators stealing users' seed phrases, warn security experts
Peckshield, a prominent blockchain security firm, exposed the existence of numerous phishing websites for the Web3 lifestyle app STEPN on Monday. Hackers insert a forged MetaMask browser plugin through which they can steal seed phrases from unsuspecting STEPN users, according to Peckshield. When these cybercriminals obtain the seed phrase, they gain complete control over the STEPN user's dashboard where they may connect their stolen wallets to their own or "claim" a giveaway as per Peckshield. #PeckShieldAlert #phishing PeckShield has detected a bath of @Stepnofficial phishing sites. They insert a false Metamask browser extension leading to stealing your seed phrase or …
Adoption / April 25, 2022
'Haunts me to this day' — Crypto project hacked for $4M in a hotel lobby
The co-founder of Web3 metaverse game engine “Webaverse” has revealed they were victims of a $4 million crypto h after meeting with scammers posing as investors in a hotel lobby in Rome. The bizarre aspect of the story, according to co-founder Ahad Shams, is that the crypto was stolen from a newly set up Trust Wallet and that the hack took place during the meeting at some point. He claims the thieves could not have possibly seen the private key, nor was he connected to a public WiFi network at the time. The thieves were somehow able to gain access …
Nft / Feb. 7, 2023