The Bored Ape Yacht Club (BAYC) Discord server was hacked on Saturday, with the attacker making off with 200 ETH ($360,000) worth of NFTs, according to Yuga Labs.
The hack took place after the project’s community manager, Boris Vagner, had his Discord account compromised, which the attacker then used to post phishing links in the Discord channels of both the official BAYC and its related metaverse project Otherside.
The attacker managed to circumvent two-factor authentication and infiltrate the group through the project manager’s compromised account, posting a phishing link from his account that then sent the users’ NFTs to the attacker’s address.
The attack marks the third time in two months that BAYC has been hacked, including an instance on April 1st when a Mutant Ape Yacht Club NFT was stolen via a phishing link on Discord. Four weeks later, BAYC’s Discord and Instagram accounts were also hacked using a fake link to a copycat website that tricked users out of millions of dollars’ worth of NFTs.
If you see something out of place or would like to contribute to this story, check out our Ethics and Policy section.