- Kevin Rose announced that he was phished into signing a malicious signature that allowed the hacker to transfer a large number of high-value tokens.
- The co-creator of Brotchain explained the unforeseen attack through a Twitter thread.
- Arran clarified that digital assets from Proof.xyz are unaffected and are not at risk.
Becoming a victim of an attack, Kevin Rose, a crypto analyst, announced that he was phished into signing a malicious signature that allowed the hacker to transfer a large number of high-value tokens. Kevin Rose then further shared a Twitter thread by Arran, the co-creator of Brotchain, which explained the unforeseen attack.
Arran broke down the hack faced by Kevin Rose by stating that this was a classic piece of social engineering. The co-creator of Brotchain further elucidated that the attacker made Kevin Rose believe in a false sense of security, moreover, the technical aspect of the hack was limited to crafting signatures accepted by OpenSea’s marketplace contract.
During the events of the scam, Arran mentioned he was on a call with Kevin Rose while it happened. The co-creator of Brotcoin also pointed out that they tried to use Revoke.cash to clear the approvals in order to prevent the hack. However, the scammer had already stolen some of Kevin Rose’s tokens. At the same time, Arran and another crypto analyst, cxkoda, joined forces to investigate the crime.
Arran clarified that digital assets (NFTs, ETH, etc) from Proof.xyz, a community-driven web3 platform, are unaffected and not at risk. He also verified that the vast majority of our assets require multiple approvals for access.
Furthermore, Arran proclaimed that he and his team are working closely with the anti-fraud teams from OpenSea and Ledger. Deconstructing his and cxkoda’s actions, Arran claimed:
cxkoda submitted code to have the offending website blocked by MetaMask (avoiding the bot responses). Our contact there believes that this should be rolled out globally within the hour.
Arran concluded his thread by thanking everyone who had stood behind them during this tough time. He also warned the crypto community to stay vigilant about the risks that remain in the shadows.