Recently, attackers hacked into Duppies NFT’s official Twitter account and posted a malicious link causing various wallets to lose control over their digital assets. The Duppies NFT community instantly came on Twitter to warn users about the link.
For the past months, the NFT community has seen minor and major hacks on official accounts. Discord and Twitter, which are the main social accounts for almost every NFT project, have become unsafe due to phishing attacks.
Just recently, Yuga Labs’ Discord servers were hacked where attackers posted a malicious link through a high-up official account. Many users lost their Bored Apes in this attack. Similarly, the Solana NFT Discord server was also hacked but the community was able to recover the fallen NFTs by scamming the scammer.
Following the same pattern, Duppies NFT fell into the trap of hackers and its official Twitter account was exploited. Having over 50k followers, the attackers made good use of the opportunity to scam people and steal digital from their wallets.
Duppies NFT posts fake ‘stealth mint’ link
The attack was carefully planned to make sure it succeeded in one go. As soon as the attackers got hold of Duppies NFT’s Twitter account, they posted a ‘stealth mint’ link. Stealth mint is an approach when the creator releases a minting smart contract at the time or a short time before the public mint goes live.
The followers, thinking it was a surprise mint, instantly clicked on the link and logged into their wallets. However, instead of receiving the minting reward, they lost control over their wallets.
Since the link was posted on the main account, no one really suspected it to be a phishing link meant to exploit wallets.
Duppies NFT community alerts users
The Duppies NFT community immediately started tweeting to warn the rest of Duppies NFT followers to not click on the link. The official account of DeGods NFT also tweeted:
The user @Helloimmorgan reported that various wallets got drained in this attack, causing a lot of loss for many people.
Duppies NFT on a hunt
Duppies NFT team contacted Twitter Support and requested them to shut down the account to avoid more loss for other users who are currently not aware of the exploit, but the account is still running.
The team is now trying to recover from the losses. They recently awarded $DUST tokens to those who reported the hack on Twitter. However, as of now, no updates have been given on the exploit.
About Duppies NFT
Duppies NFT is a project by the same team as the famous and well-known DeGods NFT collection. Although the DeGods NFT collection was a huge success, Duppies NFT might face complications after the exploit.
Frank, the creator of DeGods and Duppies, has made quite a name in the NFT community. There’s no doubt that the Duppies NFT project will also be a success since a well-known team is involved.
Duppies NFT collection is set to go live on July 15th, 2022 featuring 15k NFTs. Every DeGods owner will be added to the whitelist.
Only the whitelisted individuals can mint Duppies NFT. According to the website, 9.5k NFTs will be available for DeGods NFT holders, 1.5k for various DAOs based on the amount of DUST token (Duppies’ native token) they own, and the remaining 3.5k are scholarship spots. Whistlisted Buyers who are interested in minting Duppies NFT need 375 DUST in their wallet to mint one NFT.
As of now, Duppies hasn’t released any details to the NFT collection except the release date.
The Duppies NFT Twitter account hack shows that the attackers haven’t stopped preying on the wallet owners. Although the team has started an investigation against hackers, the findings are yet to be revealed.
With so many phishing attacks taking place within the NFT community, it is recommended by experts and NFT teams themselves to never click on a suspicious link even if it is posted on the official account. It is the responsibility of wallet owners to always recheck the links they are clicking before giving access to the wallet.