Original - Odaily
Author-husband how
Editor - Qin Xiaofeng
Recently, two malicious attacks against NFT protocol contracts have attracted market attention - NFT Trader and Flooring Protocol were hacked on the 16th and 17th respectively. Odaily reviewed this.
Information on the chain shows that on December 16, 37 BAYC and 13 MAYC were transferred to a specific address, and NFT Trader was suspected of being attacked. Subsequently, NFT whale dingaling posted that NFT Trader’s Batch Swap contract was under attack.
News of the attack was quickly confirmed by NFT Trader. Officials said that hackers carried out malicious code attacks on two old smart contracts.As a result, 37 BAYC and 13 MAYC were stolen, resulting in a total loss of approximately US$4 million.
According to past experience, the subsequent plot will either be that the project side considers itself unlucky and compensates users, or the project side will negotiate with the hacker for a refund. This time, the hacker was very aware and skipped the communication process with the project party, directly reselling the stolen NFT and leaving part of the funds as a bounty.
A hacker left a message on the chain saying that he was not the attacker this time, and revealed that the original attacker was an address ending in bd46, mocking himself that he was just picking up trash behind the scenes. At the same time, the hacker also said that he only needs 10% of the bounty to return the NFT, and the amount is calculated at 30 ETH for each BAYC and 6 ETH for MAYC. After that, the hacker sold a BAYC in Blur for 35 ETH, leaving 4 ETH for himself, and the remaining ETH was returned to the NFT holder.
This sounds like the story of a conscientious hacker - selling the victim NFT, only taking the bounty, and returning the rest to the victim, but this does not excuse him.
Soon, a user offered a way to recover stolen NFTs. @0xQuit posted that through analysis of the addresses of NFTs in the hands of hackers, multiple NFT addresses authorized NFT Trader, and through reverse retrieval, the NFTs in the hands of hackers can be retrieved.
This method was also recognized by the project party, and the stolen assets were eventually successfully recovered. Boring Security, a security public welfare organization funded by ApecoinDAO, issued a statement stating that the stolen 36 BAYC and 18 MAYC have been recovered (some of the stolen ones have been sold), and will provide a 10% bounty to the hacker and return the NFT for free. to the victim.
At this point, NFT Trader’s NFT theft incident has come to an end for the time being, and the victim’s losses are not large. Just a few hours before the NFT Trader incident ended, another NFT protocol, Flooring Protocol, also suffered a hacker attack.
Delegate founder foobar posted on the X platform that 14 BAYC and 36 Pudgy Penguins were stolen from Flooring Protocol. Then the hacker started a fire sale on Blur at a price far below the floor price. BAYC was listed at 26.2 ETH, and Pudgy Penguins was listed at 9.2 ETH. A total of nearly 1.68 million US dollars was obtained, all of which went into the hackers pocket.
Although both Flooring Protocol and NFT Trader were attacked, the situations of the victims were very different. It can only be said that the victims of NFT Trader were lucky. However, the consecutive thefts in just two days should still sound the alarm for everyone.
SlowMist founder Yu Xian reminded: If you have important assets in the EVM chain, check and cancel the authorization of important assets (especially unlimited authorization). No one can be 100% sure that no matter how well-known the protocol is, there will be no security issues.
Odaily reminds everyone not to click on any unfamiliar links easily and to clear wallet authorization regularly.
