Premint platform was attacked. Hackers hacked the site and then gained access to the wallet data of hundreds of users. The attackers stole 314 NFT for 375 thousand dollars.
It is known that the criminals used JavaScript to access the portal. Then they placed a fake window on the official website, asking the users to confirm the data to enter the account.
That’s how they gained access to the wallets. In a matter of minutes they stole hundreds of NFTs. And although the hack was localized and eliminated in time, the attackers did a lot of damage.
Most of the stolen tokens belonged to the BAYC, Otherside, Oddities and Goblintown collections. Around 7:30 EST on Sunday, the hacker sold the tokens for 270 ETH before withdrawing the funds into a Tornado Cash mixer.
The Premint team confirmed the hack and thanked those users who noticed the hack and alerted others:
PREMINT | NFT Access List Tool on Twitter: “Last night, a file was manipulated on PREMINT by an unknown third party that led to users being presented with a wallet connection that was malicious. / Twitter”
Last night, a file was manipulated on PREMINT by an unknown third party that led to users being presented with a wallet connection that was malicious.
Notably, Premint said it shut down the service shortly after localizing the hack. But at the same time, users on Twitter noted that the site continues to work.
Later, the administration published a form for victims. The platform promises to compensate for losses after the proceedings in the case are over.
