Premint NFT hack and post mortem you should not miss
The latest hack in the crypto area witnessed a robbery of over $ 375k on the Premint NFT registration platform. The platform has since provided updates on the case after the hacking.
Attacks on NFTs are becoming far more frequent.
Just another day at work
Coordinated hacks are becoming a prominent theme in the crypto world. The infiltrator “manipulated a file” on Premint that gave users a malicious wallet connection. Later, the platform had to take down the page for security reasons.
Ironically, Brenden Mulligan, founder of Premint NFT, released new security updates for the platforms on July 8. In his chirpinghad he said,
“Today we have made many great security updates to PREMINT as a continuous effort to keep collectors safe.”
However, the platform was attacked in late July 16 by a malicious actor.
This issue only affected users who connected to a wallet via this dialog after midnight Pacific time.
Thanks to the incredible web3 community that spreads alerts, a relatively small number of users fell for this.
We removed the page early this morning to fix the problem. pic.twitter.com/Wq9FyRtIMl
– PREMINT | NFT Access List Tool (@PREMINT_NFT) July 17, 2022
The site was up again the day after the attack. In addition, the platform could flag four accounts in all that can be suspected of stealing from Premint.
In fact, Premint also introduced a new security feature after the hack. According to the new security update, users would not need wallets when logging back into Premint.
Once the Twitter and Discord accounts are linked to the wallet, users can easily log in afterwards.
Hear it from the experts
Cyber security expert Simona stated her opinion on user account security after the attack. She suggested users follow the step-by-step process to ensure safe passage and avoid such malicious attacks. Simona alerted additional users and said,
“If you see a wallet ID that uses an NFT like the one in the picture (not OpenSea or a marketplace contract), it’s probably a scam wallet that can withdraw your NFTs.”
Source: Simona / Twitter
Cyber-security measures continue to fail in the crypto industry as hackers are able to handle robbery after robbery.
Although this attack happens to be relatively small compared to the $ 100 million stolen in the Harmony Bridge attack, the need for proper action is constantly in place.
And the need for rigid security measures is becoming crucial now more than ever.
