Recent Hacks: Lessons

Phishing Attack

  • Hackers sent some text messages requesting the user to reset the Apple ID password;
  • A bit later they call the user introducing themselves as Apple’s customer support, reaching out because of suspicious activity on the user’s account;
  • To prove to the support that he is the actual Apple ID owner, the caller asks to input his 6 digit verification code;
  • The user does so and the call immediately ends followed by a withdrawal of all MetaMask funds;
  • After getting the verification code, hackers were able to change the account’s password, enter the user’s iCloud data to find his MetaMask seed phrase stored there, and used it to steal all his funds.

Beanstalk Stablecoin Protocol

Hack prevention

About Lossless

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Lossless

Lossless

World’s first unrivalled exploit identification and mitigation tools, designed to foolproof web3 from malicious activity.