It seems as though Bored Ape Yacht Club has a persistent problem with security. Unlike other crypto projects that are hacked via a bug in a smart contract, or a highly sophisticated attack on a chain, Bored Ape Yacht Club’s poor security practices are costing their members millions in losses every few weeks–because they can’t keep their passwords safe.
Previously, the story was that the official Yuga Labs Instagram account for Bored Ape Yacht Club was hacked and resulted in roughly $13.7M in losses due to phishing hacks. This time, the BAYC Discord was hacked and a post was made saying that holders of Bored Ape Yacht Club NFTs (meaning Bored Ape Yacht Club, Mutated Ape Yacht Club, Otherdeed, and Bored Ape Kennel Club) were all eligible for a new NFT drop. The team has historically done these types of giveaways, adding credence to the scam.
This phishing scam resulted in roughly just under 150 ETH and 32 NFTs stolen. BAYC holders have been the target of constant phishing and hacking attempts, as the project quickly became the most valuable NFT projects ever made.
Notably, actor and director Seth Green was recently hacked and lost his four blue chip NFTs, which were the subject of a show he was creating, White Horse Tavern. It was unclear if Green could continue with the show without owning the NFT, but the individual who bought the NFT from the hacker made a deal with Green to move forward with White Horse Tavern.