- Blockchain security firm Cetrik noted that a phishing link was likely posted on Arbitrum’s Discord server which allowed a hacker to steal 933,375 ARBs.
- The message spread on Arbitrum’s official Discord offered the opportunity to “claim an additional stake in Arbitrum’s DAO governance.”
March 25 Cetrika blockchain security firmspread on Twitter the possibility that a phishing link would have been published on the same Arbitrum server on Discord. Now a report revealed that approximately the hacker stole 933,375 ARB through that link.
Phishing, techniques most commonly used by hackers to steal private information and money by posing as a “trustworthy” entity, is one of the most latent and worrisome dangers for any member of the crypto community.
The only way to prevent falling for this type of scam is to be 100% wary of things all the time. You can no longer even trust Tweets or posts that are “in theory” made by official accounts.
Phishing promised to grant more ARB
The message spread on Arbitrum’s official Discord offered the opportunity to “claim an additional stake in Arbitrum’s DAO governance”, to do this, the attackers invited you to click on a link through which you could claim the new tokens.
A curious detail is that the message alerted users and ensured that there was no other link than the one they added, to “prevent” ARB users from falling for scams.
“Stay safe, Arbinauts”, the hackers say goodbye.
The problem is that when checking the link carefully, Cetrik notices that it says “arbtirum”, instead of “arbitrum”. Yes, literally, the hackers only changed the position of the letter “t” in order to fool the human eye and make people believe that they were accessing the official website.
Once a person clicks on the link, they usually navigate to a fake website that resembles the original and where they are asked for private information such as the wallet’s private key.
According to Cointelegraph, the link shared on Discord took people to a blank website with only the text “Astaghfirullah,” which translates to “I seek forgiveness from God.”
Attacker makes off with approximately 1 million ARB tokens
Six days later, PeckShieldAlert tweeted a report about theThe damages that were done from said phishing link. Apparently, a “0xbd4E” wallet converted 933,375 ARB tokens into 713 Ethereum (ETH), which translates to approximately $1.27 million USD.
In addition to that wallet, another “0x7AFd” stole 105,000 ARB tokens and transferred the funds to two new addresses, according to PeckShieldAlert, “0xC4cf” and “0xB209”. It is unknown if the wallets belong to a single person or if, on the contrary, the attack was carried out by several.
In fact, the scope of the attack cannot be accurately measured yet, since other wallets also accumulated a significant amount of ARB tokens, but whether or not it belongs to the hacker is unknown.
You might be interested in: