Note: The original text is from bankless, written by William M. Peaster.
Note: The original text is from bankless, written by William M. Peaster.
Hackers are exploring the NFT Discord for weaknesses, and we saw a tragic example this week when CreatureToadz’s Discord was temporarily compromised.
During the incident, hackers used the opportunity to post a fake "stealth drop" link that appeared to point to an NFT minting interface, and victims then spent ETH (thinking they were minting NFTs) when in fact all The money went directly to the attacker's address without minting any NFTs.
Fortunately, the CreatureToadz team has regained control of Discord and will be compensating affected participants. However, this incident reminds us that as NFT minters, we must remain vigilant. In fact, more and more hackers are targeting us.
For today's post, I've collected some tips for safely minting NFTs. All in all, these tips can help you avoid or minimize the security issues NFT minting faces.
1
Learn about common NFT scams
Generally speaking, the first step towards NFT security is to become familiar with the main scams that NFT users face today, and current and future scams are likely to evolve from these types of tricks.
secondary title
Tip 1: Use a dedicated minting wallet
In some cases, criminals may abuse or disrupt the permissions users grant to these items to steal funds.
In some cases, criminals may abuse or disrupt the permissions users grant to these items to steal funds.
“In fact, some sites are created with the intention of stealing funds/NFTs after users grant access to their wallets 😱, so be careful what Dapp/site you connect to…”
Tip 2: Regularly clean up your token authorization
Tip 2: Regularly clean up your token authorization
Speaking of permission grants, regular cleanups are a good idea, as well, users often grant spending approvals to NFT items in order to interact with them. In the worst case, these spending approvals are unlimited and thus potentially exploitable by attackers.
"If you see this when you're minting on a site, double-check your links, double-check your URLs, double-check everything.
Tip 3: Pay attention to "Sending ETH"
"If you see this when you're minting on a site, double-check your links, double-check your URLs, double-check everything.
If you try to mint a new project NFT and see "Sending ETH" appearing in your MetaMask interface, please leave, it's a scam!
secondary title
Tip Four: Find Official Information
secondary title
Tip Five: After Casting, Beware of Fakes
Suppose a highly anticipated NFT item has just sold out and you missed the minting. If you want to collect the NFT of this series, you will rush to the secondary market such as OpenSea to participate in the transaction.
Scammers will take advantage of the above dynamics to defraud by launching fake pirated NFT collections.
We are pioneers on the NFT frontier, and there is no shortage of excitement here, but also a lot of risk. Following the tips above and double-checking things like URLs and contract addresses will go a long way toward ensuring your NFT collection process remains safe.
2
in conclusion
We are pioneers on the NFT frontier, and there is no shortage of excitement here, but also a lot of risk. Following the tips above and double-checking things like URLs and contract addresses will go a long way toward ensuring your NFT collection process remains safe.
This article comes from Tao of Yuan Universe, reproduced with authorization.
