Huge Solana hack: Hacker’s IP address identified thanks to NFT?

The Empire Strikes Back – The Solana blockchain has been experiencing technical issues and incidents for several months. This time it was a major attack aimed at protocol. If you missed the first elements of this major attack on the Solana network, read on our first detailed inventory. If you’re up to date, let’s keep exploring this hack that will leave a mark on memories!

Good hackers also have talent

The Solana Affair comes on the third day of a week decidedly interrupted by the hacks and suck off from purses cryptos. Ethereum, Fantom and now Solana have been targeted since Monday.

When mere mortals can’t do much about this type of attack, some netizens compete with ingenuity. Combining computer skills and a touch of human psychology, the white hacker nicknamed @lordnarfz0g on Twitter would have been able to recover the pirate’s IP address.

This Twitter user exploited a vulnerability related to NFTs. This vulnerability, uncovered earlier this year, allows a malicious actor to collect a fair amount of data about a non-fungible token.

Screenshot of White Hack's tweet
@lordnarfz0g reveals some of the extracted metadata to the hacker. source

By coding a program associated with the opening of an nft by its owner, it is possible to extract the metadata request made at the time of the click. The hacker recovers this data, including the victim’s IP address, and hosts it on a server that they have access to.

>> Make the choice of security: register with PrimeXBT (commercial link) <

“The Honeydukes Worked”

Our hacker with the white hat has therefore taken it into his head to use this method to trap the hacker. A method that he says he uses regularly to investigate such stories. He confides here that it took fifteen minutes to extract the scammer’s IP address.

As expected, the hacker received the NFT and clicked (no data extraction otherwise). So, in addition to the IP address, it seems to have been established that it is actually one wallet Spirit…

Had to think about it.

This type of information is sensitive and could actually help track the thief, at least initially at his location. The strategist himself couldn’t believe it, the coup worked.

Even more so after revealing the nature of the NFT sent to the pirate and the leverage used to encourage them to click. To make it short, it’s a black and white photo showing two very naked women.

According to the latest news, the attack is still ongoing and its causes are still unclear, although a vulnerability in an open-source code library could be the cause. Often decried, the crypto community isn’t just a view of the mind: the White hats are the best examples.

Stay away from drama and crypto hacks: Trust reliable and solid partners for your security. Register now on the PrimeXBT platform (commercial link).

Kaddouri Ismail

I am Ismail from Morocco, I work as a blogger and online marketer. I am also the founder of the “Mofid” site, in which I constantly publish many important articles in the field of technology, taking advantage of more than 5 years of experience working in the field. I focus on publishing in a group of areas, the most important of which are programming, e-marketing, digital currencies and freelance work.

Related Articles

Leave a Reply

Your email address will not be published.

Back to top button