Hackers steal $ 400,000 in NFTs from Premint users via malicious link

The popular NFT platform Premint was hacked on July 17, resulting in a total loss of around $ 400,000 for users who clicked on a malicious link.

According to available information, the hacker compromised Premint’s website by adding a malicious JS file to the site. Unsuspecting users who clicked on the link gave the hacker access to steal the NFTs in their wallets.

Over 300 NFTs lost

Blockchain security company Certik confirmed that the hackers stole 314 NFTs, which included NFTs from notable projects such as Bored Ape, Goblintown and Otherside.

We are actively working to get a complete list of wallets that had assets taken from them.

These are the wallets that Etherscan has flagged to steal assets.

–
– https://t.co/wdo7sJMia1
– https://t.co/8bBEgpKupN
– https://t.co/iY4tna437S

– PREMINT | NFT Access List Tool (@PREMINT_NFT) July 17, 2022

Premint confirmed the hack, saying only a “relatively small number of users” were exposed, adding that Etherscan had identified four wallets related to the attack.

The total Ethereum value (ETH) of stolen assets is estimated at 275 ETH, worth over $ 400,000.

🛑Please do not sign any transactions that say permanent approvals for everyone! 🛑

– PREMINT | NFT Access List Tool (@PREMINT_NFT) July 17, 2022

The attack took place hours after Premint warning users should not “sign any transactions that say permanent approvals for everyone!”

Today we have made many great security updates to PREMINT as a continuous effort to keep collectors safe. It affected everything from the dashboard to project pages to emails. Here is an overview:

🧵

– BrendΞn Mulligan | PREMINT (@mulligan) July 8, 2022

Premint restores the service

Premint has been able to restore the normality of its website and has added an update that removes the wallet login feature.

From today, you will not need your wallet when you log in to PREMINT again.

Now that you’ve linked your Twitter or Discord accounts to your wallet (use them to sign in to your account.

It is safer and much more convenient. Especially on mobile! pic.twitter.com/BSSyzx7zkj

– PREMINT | NFT Access List Tool (@PREMINT_NFT) July 18, 2022

Users can now log in to the platform via Discord or Twitter social media accounts, such as the platform claims is “safer and more convenient, especially for those who log on to mobile.”

PREMINT is safe to log on to. You will see a confirmation screen for gas-free signing when you connect your wallet.

We never, ever ask for any transaction access, and you will never, ever see gas associated with connecting to PREMINT.

– PREMINT | NFT Access List Tool (@PREMINT_NFT) July 18, 2022

It also required affected users to add their wallet address to a document.

If you were affected by the incident on PREMINT today, add your wallet here: https://t.co/gvNiOyD24M

– PREMINT | NFT Access List Tool (@PREMINT_NFT) July 17, 2022

However, there is no information on how or when they will be refunded.

NFT hacks

The latest attack on Premint is the latest in a long line of hacks in the NFT area within a relatively short time.

🚨🚨🚨🚨

Be safe.
DeeKay’s twitter has been hacked. pic.twitter.com/qpZtlHF8UR

– sean (@SeanOhio_) July 15, 2022

On July 15, famed NFT artist DeeKay lost $ 150,000 NFT to malicious gamers.

A Footprint Analytics report said that around 5% of the total hacks in web3 during the second quarter of 2022 occurred in NFTs.