PSA: DISCORD HACK CLAIMS MANY STILL ACTIVE

PSA: DISCORD HACK CLAIMS MANY

Recently we saw the Leo Finance Discord hacked and while it was big news to many of us Leo Finance wasn't the only Discord server under attack or that has been compromised.

Published by Scam Sniffer a renegade group have hackers called Pink Drainer have been making their way into discord servers gaining control to project discord groups and activating the same scam we saw unfold in Leo Finance. Where people were asked to click a link from a notable Discord owner.

But the scam is a stern warning to all and may have possible impacts for Leo Finance journalists like myself who regularly reach out to projects and conduct interviews. Because that's how these scammers are getting access!

Fake Interviews

Pink Drainers are establishing themselves with rip off journalist profiles from well known crypto news sites like Decrypt and Cointelegraph and with now easy verification methods it is getting harder to tell the real apart from the fake.

After spending time establishing themselves as the impersonated journalist they reach out to projects seeking to interview the teams behind the projects. Once the interview is conducts they have the teams verify themselves and undertake a Know Your Customer (KYC) process.

Through the KYC process the hackers now have important information about the team and utilise this information to steal their discord accounts.
image source

Malicious JS Code

The Hackers KYC is actually a malicious Drag Me code which steals the users discord token and by following the steps the hackers provide you hand over your account without even knowing.

Once they have access to your account they will begin altering the Discord channel and launching phising attacks as seen in the Leo Finance Discord server.

While Leo Finance may have been hit in the early stages of the hack, Pink Drainers are still very much active and thus far stolen over USD 3 Million worth of assets from 2307 accounts and it keeps growing.

Ethereum remains their preferred stolen asset followed by Arbitrum and you can watch their activity live here which has been set up by Scam Sniffers who nicknamed the scammers due to the first identified hack of stolen assets being transferred to a wallet called pink-drainer.eth.

Scam Sniffers has identified that attacks have taken place on discords owned by Evomos, Starknet ID, LiFi, Cherry Network, Pika Protocol, Orbiter Finance, Flare Network, OpenAI CTO and it continues to grow.

So if you're in a projects official discord remain vigilant and question everything as Pink Drainers are still active and still stealing money with no news from Discord on how they will prevent the hack.

Stay safe and make sure not to click any links that are suspicious.

image sources provided supplemented by Canva Pro Subscription. This is not financial advice and readers are advised to undertake their own research or seek professional financial services.