Skip to main content

NFT scams hit record high: More than $100M stolen in one year

 


According to a report by blockchain analytics firm Elliptic, criminals stole over $100 million worth of NFTs between July 2021 and July 2022 .


In May 2022, the total value stolen by NFT scams hit a new record of nearly $24 million.


NFT Scams: Social media is a popular target

Elliptic's research found that the number of NFT scams on social media, particularly on Discord servers, has skyrocketed in 2022. 23% of all NFTs stolen in the last 12 months (around 5000 NFTs) were stolen via social media platforms. The combined value of these NFTs is approximately $20 million.


"The growing availability of customized malware capable of bypassing multifactor authentication is likely to be partly to blame," the analysts said.


According to the report, the actual numbers are likely higher because NFT thefts are not always public knowledge.


NFT trading volume skyrocketed in the summer of 2021. Average daily sales exceeded $50 million in 2021 and annual NFT sales exceeded $17.7 billion (an increase of over 200% from 2020).


Experts also predict an ever broader scope for NFTs as the gaming and metaverse markets continue to evolve.


Crypto Mixers and Money Laundering with NFTs

Blockchain intelligence firm TRM investigated the NFT thefts linked to Discord. Analysts at the company wrote :


“It's like classic scams . Once a community of criminal actors or scam-as-a-service operators understand the basic mechanisms from deception to execution, they can scale by reusing and iterating these techniques ."


State-sponsored malware and state-authorized entities are now seen as a growing threat to NFT-based services. An example of this is the theft of the $540 million from the Ronin bridge Axie Infinitys . North Korea’s Lazarus Group was responsible for this, using NFTs on US-licensed crypto exchange Chatex.


We previously reported that North Korean hackers are posing as applicants for crypto jobs in wealthy countries. With these jobs, the criminals want to finance government business. Furthermore, the hackers of the 620 million hack of Axie Infinity's Ronin sidechain used permissionless crypto mixers . The parties involved laundered the stolen funds.


Additionally, $137.6 million worth of crypto assets were laundered from NFT marketplaces via crypto mixer Tornado Cash . Crypto-Tumbler, now banned by the Office of Foreign Assets Control (OFAC), has been the most popular service to date for obfuscating money transactions linked to NFT scams. 5 2% of all funds related to NFT thefts went through Tornado Cash.


Tornado Cash ban made headlines in crypto space. Vitalik Buterin defended the Ethereum-based crypto mixer. Other members of the crypto community also spoke out against the ban on crypto mixers .


Disclaimer

All information contained on our website has been researched to the best of our knowledge and belief. The journalistic contributions are for general information purposes only. Any action taken by the reader based on the information found on our website is entirely at their own risk.

My Top Picks
Honeygain - Passive earner that pays in BTC or PayPal
MandalaExchange -The Best no KYC crypto Exchange! 
BetFury - Play And Earn BFG for daily Bitcoin and ETH dividends!
Pipeflare - Faucet that pays in ZCash and Matic, Games pay in DAI
Womplay - Mobile dApp gaming platform that rewards in EOS and Bitcoin
Cointiply - The #1 Crypto Earning Site
Torum - Join the latest Social Network and earn TRM for Free! 
LiteCoinPay - The #1 FaucetPay earner for Litecoin 
LBRY/Odysee - YouTube Alternative that lets you earn Money by viewing videos!
FaucetPay - The #1 Microwallet Platform
FREEBTC - The #1 FaucetPay earner for Satoshi's
FaucetCrypto - An earning/faucet site that pays out instantly
FireFaucet - An earning site that pays better for some than Cointiply
DogeFaucet - Dogecoin Faucet
xFaucet - BTC, ETH, LTC, Doge, Dash, Tron, DGB, BCH, BNB, ZEC, FEY - Claim every 5 minutes
Konstantinova - BTC, ETH, LTC, Doge, Dash, Tron, DGB, BNB, ZEC, USDT, FEY, 25 Claims Daily

Comments

Popular posts from this blog

From offchain to offchain: Statechains meets Lightning

  Without a doubt, the most significant off-chain Bitcoin solution is the Lightning network. But in its wake, the statechain has emerged as an intriguing replacement. There is currently a proposal to link the two offchain networks. From an ocean, for example, you can see sunbeams glistening in the water, waves rippling, and possibly a jellyfish drifting toward the light. But you only see a small portion of it. The distance from the sea's surface to its bottom is hundreds of meters. It has dozens of different fish species swimming in it, crabs and starfish crawling on the bottom, shells clinging to rocks, and sea plants climbing up. A completely new world starts where your gaze diverges. You can picture a blockchain like Bitcoin, just like the sea. What you see on the outside is only a small portion of what is actually there; the set of UTXOs (coins) and transaction history that full nodes store are just the beginning of a much larger world. It's the plan, at least. With Bitcoin...

Phishing attack on popular crypto sites tries to empty wallets

  Several major crypto sites such as Etherscan, CoinGecko, DeFi Pulse, and others report malicious pop-ups scammers use to try to trick users into connecting their MetaMask wallets. The phishing attack came from a domain displaying the Bored Ape Yacht Club (BAYC) logo. "We are investigating the root cause of this attack to fix the threat as soon as possible," CoinGecko founder Bobby Ong tweeted. The phishing attack appears to have been triggered by a malicious ad script from Coinzilla, a crypto ad network, according to CoinGecko. Etherscan also advises its users not to confirm any transactions that may appear on the website. The attackers attempted to use the hype around the “bored monkeys” non-fungible tokens (NFT) to gain access to the cryptocurrencies of unsuspecting website visitors. Although the websites affected by the scam attempt have reacted in the last few hours and deactivated the advertising pop-up, it is still recommended not to connect your MetaMask wallet to ne...

Bored Ape Yacht Club NFTs stolen through phishing on Instagram

  Bored Ape Yacht Club ( BAYC ) developers announced on Monday that hackers have hijacked the official Instagram page of the popular NFT collection and posted links to a fake airdrop. Crypto enthusiasts who connected their MetaMask wallet to the rogue website subsequently had their Ape NFTs stolen. Apparently, the attack was planned to coincide with the one-year anniversary of the BAYC collection. This increased the "perceived credibility" of the phishing link. About 100 NFTs are said to have been stolen in the phishing attack . According to CoinGecko data , the minimum price for a BAYC NFT is 139 Ether ( ETH ) or $400,726. So if reports are correct, over $40 million worth of NFTs were stolen in the attack. These numbers are only the lowest estimate, however, as they are based on the lowest price.  At the time of writing, it was still unclear how the hackers gained access to BAYC's official Instagram account. Social media users have pointed out the importance of two-fact...