Crypto scammers are feeding off the hype surrounding Moonbirds NFTs — one even appeared to hack Bernie Sanders’s son’s account


142
182 shares, 142 points


If you’ve been tagged multiple times a day in strange Twitter threads from verified accounts with NFT profile pictures, you’re not alone. It’s part of what seems to be a massive phishing attempt by hackers using the platform.

In the most recent wave, hackers have hijacked verified Twitter accounts to exploit interest in the Moonbirds NFT collection, the now $300 million non-fungible token collection which launched days ago.

They’ve changed accounts’ profile pictures to a Moonbird and updated bios with links that appear to be associated with the project but are not.

Once set up, they’ve tagged countless users in tweets, encouraging them to enter a Moonbirds “raffle.”

If a victim ultimately clicks on the provided links and connects their crypto wallet, they might be hit with a phishing attack that can drain their funds and crypto assets.

One of the blue-checkmark accounts targeted by the scammers belongs to Sen. Bernie Sanders’s son, Levi Sanders. Hackers appeared to change Levi’s Twitter account name to “Moonbirds,” and tagged many users in a series of tweets to click on an NFT “raffle” link. Levi appears to have regained control of his account, with his name reinstated and most of the spam tweets deleted.

Representatives for Sanders and Levi did not immediately respond to Fortune’s request for comment.

Though the verified accounts used for the scam appear to be hacked, they might have been bought. It’s unknown what Twitter might do to combat the continuation of the scam.

Twitter confirmed to Fortune that it’s “aware of and actively working on a solution to combat this,” and also pointed to its spam and impersonation policies.

Leadership for the Proof Collective, which is the company behind the Moonbirds project, noticed this happening and sent a warning to followers.

On Monday, Justin Mezzell, cofounder and chief product officer of Proof, tweeted, “These scammers who purchase verified accounts, pretend to be @moonbirds_xyz, and try to get folks to connect their wallet and siphon funds. It’s the worst. Just block / report if you’re seeing it!”

The Moonbirds Twitter account also tweeted about the scammers, noting that the project doesn’t have an Instagram, public Discord chat, or any website beside http://moonbirds.xyz.

This same type of scam was seen in March after the ApeCoin drop by Yuga Labs and its Bored Ape Yacht Club, exploiting the fear of missing out surrounding the token’s airdrop. It resulted in a loss of more than $1 million for victims, Decrypt reported.

The scam was repeated in early April with another popular NFT collection, Azuki.

This story was originally featured on Fortune.com





Source link


Like it? Share with your friends!

142
182 shares, 142 points

What's Your Reaction?

hate hate
16
hate
confused confused
3
confused
fail fail
26
fail
fun fun
23
fun
geeky geeky
20
geeky
love love
10
love
lol lol
13
lol
omg omg
3
omg
win win
26
win
Daily List

0 Comments

Choose A Format
List
The Classic Internet Listicles
Ranked List
Upvote or downvote to decide the best list item
Meme
Upload your own images to make custom memes
Story
Formatted Text with Embeds and Visuals
Poll
Voting to make decisions or determine opinions