Hackers reportedly gained access to PREMINT, a supplier of NFT access lists, in the early morning of July 18. PREMINT warned users not to click any links or complete any transactions on their website and urged them to immediately change their passwords and make sure they are using two-factor authentication when logging into their accounts in a series of tweets posted on the platform’s official Twitter account.
Additionally, users were urged to verify their wallets for any unauthorized transactions and report any they discovered by the PREMINT team. Users were instructed to check their wallet histories on Etherscan to discover if they had been impacted by the attack. Users’ history will display any transactions that they did not make themselves, which is a blatant sign that their wallet was compromised.
Users were urged by PREMINT to revoke permission if they thought their wallets had been hacked by going to revoke.cash and clicking the “Revoke” button to deny access to each NFT that had been falsely granted.
Once the license had been canceled, users were instructed to visit Etherscan again; if the data section under logs in their account read “False,” then they had successfully withdrawn the unauthorized permissions. Users can also temporarily transfer all of their assets to another wallet as an alternative.
Although some PREMINT users allege that their NFTs were stolen during the breach, the PREMINT team has not yet said if they have recaptured access to the PREMINT website as of the time of going to press.
Blockchain technology, PREMINTS is used to create digital collectibles. Utilizing PREM tokens, NFT artists produce original works of art. The PREM token-powered auction system is then used to sell this job. These pieces are available for purchase from the artist directly or through a third party. Every sale is tracked on the blockchain, and the network verifies every transaction.
The PREMINT breach is the most recent in a series of increasingly common NFT frauds and attacks. Just last week, a hacker took control of well-known NFT artist DeeKay Kwon’s Twitter account and sent a phishing link to his more than 180,000 followers under the premise of a restricted NFT airdrop announcement.