Hong Kong-based gaming and venture upper-case letter company Animoca Brands and subsidiary Blowfish Studios accept promised users that they will repay 265 Ether (ETH) or $1.1 one thousand thousand stolen in a fraudulent nonfungible token (NFT) sale on Discord.

The fraudulent minting event occurred at approximately three am Australian Eastern Daylight Time on Friday on the Phantom Galaxies Discord server. It saw 1,571 fake minting transactions over the course of about iii hours.

Phantom Galaxies is an upcoming Australian game being developed by Blowfish Studios. The Phantom Galaxies Discord server has 94,000 members.

In an increasingly mutual occurrence on Discord, hackers gained control of the official Phantom Galaxies server by using a malware bot that compromised the Admin account'due south two-gene authentication. Once in control of the Discord server, the hackers banned all staff, advisor and customs moderator accounts.

Screenshot of a fraudulent declaration virtually the and then-called NFT drop. Source: PhantomGalaxies Discord server

The hackers then began posting announcements, challenge that the game was launching an immediate surprise "stealth" NFT minting event. Users were directed to a fraudulent "Phantom Galaxies NFT minting platform" that charged users a 0.one-ETH "minting fee."

Screenshot of the fraudulent website where users could "mint" PhantomGalaxies NFTs

Animoca Brands chairman Yat Siu warned followers near the fraudulent NFT drop in a tweet at around four am AEDT on Friday.

At 5:22 am he posted another tweet, saying that affected customers will exist "appropriately compensated." This has since been confirmed in a Wednesday release from Animoca stating that details regarding compensation will exist announced shortly.

"Woodz," a Californian project managing director for an upcoming NFT project called Terra Obscura, lost $1,000 to this attack. They told Cointelegraph they realized they'd been scammed shortly after "minting" two not-existent NFTs:

"As I was doing information technology, it seemed a bit off. The gas was unusually depression, and the contract looked different. I knew something was wrong but not sure what."

Woodz added they "don't usually just click links" merely fell into the hacker's trap because of the way the announcement was positioned inside the official announcement channel.

Related: Beeple's Discord compromised, timed to coincide with Christie'due south sale

The set on on Phantom Galaxies comes after a similar contempo attack on Nov. eleven involving famed NFT artist Beeple. Users idea they were signing upwards for a very affordable NFT drib, timed to coincide with his second Christie'south auction.

The perpetrator impersonated i of the channel admins and the Beeple Announcements Bot to promote a false NFT drop from Beeple on Cracking Gateway. Beeple has since removed links to the Discord from his Twitter profile, and other links to the server no longer appear not to piece of work.

According to an October. 21 report past cyber security company RiskIQ, Discord is condign an increasingly pop platform for cybercriminals. RiskIQ researchers uncovered 27 unique malware types hosted on Discord's CDN servers.

In April, Talos Intelligence similarly plant that hackers were increasingly using platforms such as Discord to take reward of users who were at home due to global COVID-19 restrictions.

"Attackers are leveraging collaboration platforms, such as Discord and Slack, to stay under the radar and evade organizational defenses," it wrote at the fourth dimension.