In light of today’s events (our thoughts go out to those affected), we decided to put together a quick guide on noticing potential scams and protecting yourself and your wallet.
#Solana #SolanaNFTs #NFT #NFTs #blockchain #solanacommunity
#Solana #SolanaNFTs #NFT #NFTs #blockchain #solanacommunity
Realize that the scams WILL continue. This is a permanent feature of any “Wild West” environment, especially one like the blockchain where anonymity is relatively easy to achieve, and a lack of recourse is the norm. The bad actors are here to stay.
3/ There are 3 common scams currently making the rounds in almost every community:
4/
1. Discord Direct Messages - if you have direct messages on, you are likely inundated with DM’s containing server invitations or special offers. This is a primary way that scammers distribute phishing links, and best practice is to avoid clicking on anything in a DM
1. Discord Direct Messages - if you have direct messages on, you are likely inundated with DM’s containing server invitations or special offers. This is a primary way that scammers distribute phishing links, and best practice is to avoid clicking on anything in a DM
5/
2.Discord Compromises - hackers have been leveraging bot vulnerabilities to post scam phishing links in servers. These typically carry a sense of urgency and look VERY official. This is what happened today to @fractalwagmi
2.Discord Compromises - hackers have been leveraging bot vulnerabilities to post scam phishing links in servers. These typically carry a sense of urgency and look VERY official. This is what happened today to @fractalwagmi
6/
3. Typosquatting - this is the practice of registering a common misspelling of a known name (i.e. OpenSea.fo as opposed to OpenSea.io). Malicious actors are also doing this with Discord usernames in an attempt to mimic official project leadership.
3. Typosquatting - this is the practice of registering a common misspelling of a known name (i.e. OpenSea.fo as opposed to OpenSea.io). Malicious actors are also doing this with Discord usernames in an attempt to mimic official project leadership.
7/
So how can you protect yourself? 👇
So how can you protect yourself? 👇
8/
1.Only use official links posted from a verified source. Even within a trusted discord, be overly cautious of unforeseen “flash drop” announcements as this is a common discord hack that is becoming more prevalent.
1.Only use official links posted from a verified source. Even within a trusted discord, be overly cautious of unforeseen “flash drop” announcements as this is a common discord hack that is becoming more prevalent.
9/
2. Hover over links to preview the URL the link is taking you to prior to clicking to ensure you are going to a legitimate website (i.e. opensea.io is legit and opensea.fo would be fraudulent).
2. Hover over links to preview the URL the link is taking you to prior to clicking to ensure you are going to a legitimate website (i.e. opensea.io is legit and opensea.fo would be fraudulent).
10/
3. Disable discord DM’s by default. This reduces the chance of clicking on a scam discord invite as these are often facilitated via DM. Only accept discord invites from trusted sources.
3. Disable discord DM’s by default. This reduces the chance of clicking on a scam discord invite as these are often facilitated via DM. Only accept discord invites from trusted sources.
11/
4. Invest in a hardware Wallet. This makes it much more difficult for a hacker to empty your wallet as you will be required to sign the transaction with your physical device.
4. Invest in a hardware Wallet. This makes it much more difficult for a hacker to empty your wallet as you will be required to sign the transaction with your physical device.
12/
5. Verify, verify, verify. There is a lot of hype in the NFT community, but avoid acting on impulse and emotion. Always take a step back and verify the information and source you are receiving it from are legitimate.
5. Verify, verify, verify. There is a lot of hype in the NFT community, but avoid acting on impulse and emotion. Always take a step back and verify the information and source you are receiving it from are legitimate.
13/
6. NEVER give anyone your seed phrase. No one who is legitimate will ever ask you for this information.
6. NEVER give anyone your seed phrase. No one who is legitimate will ever ask you for this information.
14/14
Fin.
Fin.
• • •
Missing some Tweet in this thread? You can try to
force a refresh
