$342,526 was stolen from Creature Toadz NFT collection, but the 17-year old hacker returned the money in less than 6 hours

It’s the story of a young man who stole $342,526 from his game and returned it to its rightful owners in less than 6 hours. It was an act that increased trust in blockchain-based assets even more after it showed how easy they can be recovered.

A 17-year old hacker stole $342,526 from the Creature Toadz NFT collection. The hacker returned the money in less than 6 hours.

Scams and rug pulls are common in the DeFi industry, and the NFT sector is no exception. The Creature Toadz NFT collection was hacked last night by a hacker who used a phishing webhook to cause a discord server technical fault. The hacker duped one of the primary moderators into losing access to the system, making it exceedingly simple for him to publish any message on any channel. To put it another way, this wasn’t even a legitimate hack. He was able to expose the bogus URL thanks to the discord webhook. This topic has a thread dedicated to it. 

People that received NFTs made payments to an unidentified account that had complete control over the discord site. The crew was unable to accomplish anything for almost 45 minutes. However, those who had clicked on the phishing link had already lost roughly $350,000 (90 ETH) by that time. 

This is infuriating. For around 45 minutes, the discord was broken. We’ve just recently restored control. Anyone who has made a purchase from this con artist will be reimbursed. It’s 2 a.m.; they apprehended us as we were falling asleep.

As a community, we shall emerge stronger.

October 20, 2021 — CreatureToadz NFT (@CreatureToadz)

The most unexpected aspect of it all is that the hacker refunded the whole amount of money within less than 8 hours after the assault. He also discussed how he hacked the whole system and why he refunded the money on Twitter with Andrew Wang. According to what I hear in this video, he seems to be playing a game to test whether this approach would succeed or not. When the team checked the website registration, they discovered he had set up a phishing site on October 1. It’s been 20 days since that happened! 

The hacker announced his age on Twitter Spaces, saying he was 17 and worried about how huge this might go in the future. He also said many times that he had no intention of fleeing with that much money. In a similar vein, he commends the staff for their efforts in creating a fantastic product and a devoted community. Everyone was skeptical of him at first, but they subsequently decided not to file charges since the money had been returned in whole. 

The hacker has returned all of the money he took in a bizarre turn of events!!! This has been one of the most bizarre evenings of my life. All those who have been impacted will get a full refund in ETH. pic.twitter.com/zNa1K6COuv

October 20, 2021 — CreatureToadz NFT (@CreatureToadz)

All Creature Toadz NFTs are safe in terms of the mint. On the mint site, the hacker hosted a JavaScript file and delivered 0.1 ETH to the given wallet. He had no interaction with the contract itself. However, it’s still a good idea to double-check any Metamask-connected site. 

Finally, everyone working in the NFT area should learn from this experience. There have been several examples of hacks being reused with new collections with no one noticing. This hacker explicitly stated his game plan and said that it was not difficult.

 Consider what would happen if, unlike this 17-year-old, an experienced hacker with all the tools attempted to infiltrate the NFT area and began compromising projects. That individual, I’m sure, would not return the money. As a result, it is becoming more vital for collections to function as efficiently as possible and to undertake minting only after everything has been thoroughly scrutinized. I’m glad everyone is getting their money back, but imagine if that wasn’t the case. 

$342,526 was stolen from Creature Toadz NFT collection, but the 17-year old hacker returned the money in less than 6 hours

Karthikeya Gutta, a crypto writer and freelance contributor for ItsBlockchain, was born and raised in India. With in-depth analysis and research, he covers many facets of the sector. His enthusiasm for blockchain and the crypto ecosystem stems from his belief that it has the potential to transform the world and benefit millions of people.

You have successfully subscribed to our mailing list!

Subscribe to get updates on new posts.

The “is poly network the same as polygon” is a question that has been asked on various social media platforms. The answer is no, they are not the same thing.

Related Tags

  • poly hack
  • poly network founder
  • poly network owner
  • is poly network polygon
  • poly network coins