In a swift sequence of events, the official Discord servers of Layer-1 network Avalanche and Layer-2 blockchain zkSync were compromised within 48 hours of a similar attack on Polygon’s page. On August 25, Avalanche alerted users through its X account about the breach, advising them to avoid engaging with any posted links.
Details on the Attacks
Screenshots shared by Avalanche Discord members revealed that attackers posted fake AVAX distribution links, misleading users into believing they could claim free tokens. Ben Well, Avalanche’s community leader, later assured that the issue was identified and resolved, and efforts were underway to restore normalcy. Access NEWSLINKER to get the latest technology news.
Shortly after, zkSync’s official Discord also fell victim to a similar attack. Hackers disseminated fraudulent links for a non-existent second-round airdrop of ZK tokens. Although zkSync did not immediately address the breach publicly, members of its team acknowledged the vulnerability on the Discord page.
Context and Consequences
These incidents followed closely on the heels of Polygon’s Discord being compromised, with hackers sharing malicious links. Polygon’s Chief Information Security Officer Mudit Gupta confirmed the breach and warned users against clicking on any links. A user named ValidatorK reported a loss of $150,000 in Ethereum due to the scam.
Earlier in 2023, similar attacks were reported on Arbitrum and Gnus.AI’s Discord servers, resulting in significant financial losses. CertiK, a blockchain security firm, highlighted a phishing scam in Arbitrum’s server involving a hacked developer account. Additionally, Gnus.AI’s network faced a vulnerability that led to a loss of approximately $1.27 million.
User-Usable Inferences
Key takeaways from recent Discord breaches:
- Be cautious of links shared on Discord servers, even if they appear official.
- Verify announcements through multiple official channels before taking action.
- Organizations should strengthen their security measures to protect their Discord servers.
- Users should enable two-factor authentication for added security.
These measures can help mitigate the risks associated with such cyber-attacks.
The recent spate of Discord breaches underscores the urgent need for enhanced security protocols across blockchain networks. Both users and organizations must remain vigilant to safeguard their assets and information.
Disclaimer: The information contained in this article does not constitute investment advice. Investors should be aware that cryptocurrencies carry high volatility and therefore risk, and should conduct their own research.
Source: https://en.bitcoinhaber.net/hackers-breach-avalanche-zksync-discords