Watch out for sudden NFT drops in your wallet, which can take away all your assets
New scams in NFT

Article: 0x13, BlockBeats


如果你的钱包在最近收到了很多 NFT 空投,请你一定要提高警惕,你接下来的一举一动可能葬送你的全部藏品。


9 月 21 日,推特网友 AJ(@babbler_dabbler)发推表示自己的钱包被盗,损失了包括达米安·赫斯特作品《The Currency》在内的高价值 NFT,而据他描述,他犯的错误只是与那些突然出现在他账户中的 NFT 进行了交互。按照他被盗 NFT 的地板价计算,这一次 AJ 损失了 13.75 ETH,约合 4.13 万美元。



这种骗局在 DeFi 领域其实是很常见的事情。


近期,不少用户的钱包中都会莫名其妙地收到一些此前从未听说过的代币,它们通常会以「.io」结尾,而当你收到这几十万枚代币后,兴致勃勃地来到 Uniswap 准备把它们交易成 ETH 时你会发现这些代币价值上万美元,虽然流动性不足以支持你将这些代币一次性抛售,但起码还有一个流动性池可以慢慢卖出去。



请注意,你即将落入骗子的圈套。


有的骗子会在合约中限制卖出,用户只能买入,这样代币的价格就会一路攀升,币价的飞涨也会让更多投机者盲目追高,而当骗子对自己的收益满意时,只需要撤出流动性即可将骗来的 ETH 装进自己的口袋里。


而更危险的是上文中提到的那些以「.io」结尾的代币,这些代币在交易前的授权必须要去这些骗子项目的官网进行,而一旦在那些网站授权,就相当于把自己的钱包拱手相让,骗子将会有权力将你钱包中的资产全部转移。


NFT 空投安全吗?


如今,随着 NFT 的火爆,这样的骗术也出现在了 NFT 领域。


如果你是 NFT 的深度玩家,相信你的钱包也一定会经常收到一些 NFT 空投。大部分创作者的目的都是借助空投的形式宣传自己的作品,让自己的作品出现在一些 NFT 深度玩家的视线中,为自己的作品博得更多的关注,区块链的透明让我们无法阻止这种行为,而且这样的行为是合理的。



但并不是所有人都没有掺杂恶意。AJ 在推特上表示自己只进行了三次反常的操作,那就是将莫名其妙出现在自己账户中的 NFT 分别隐藏、挂单、接受出价。由于「隐藏」是 OpenSea 提供的功能,是链下操作,因此问题只可能出现在挂单和接受出价这两个操作中。


在使用 OpenSea 时,我们每和一个新的收藏品系列交互时都需要支付一次 Approve 的费用,这其实是十分危险的操作,但是进入 NFT 领域的新人较多,且此前没有发生过类似的被盗事件导致人们放松了警惕。


而当用户与骗子部署的合约交互之后,骗子便可以转移走用户的资产,虽然 OpenSea 可以暂时冻结被盗的 NFT 禁止交易与转移,但骗子们采取的方式大多数为直接接受机器人对 NFT 的远低于地板价的报价,然后将获得的 ETH 转移到自己的钱包中,而与此同时,被盗的 NFT 可能已经经历了多次转手,即使 OpenSea 将 NFT 冻结,被惩罚的也不是骗子。


除此之外,一些骗子会在 NFT 的隐藏链接中植入诈骗网站。


一些 NFT 创作者会将作品的源文件放入隐藏链接中,因为 OpenSea 等网站显示出来的往往并非作品原图,创作者们通过在隐藏链接中放入源文件存储的网盘链接等方式让藏家可以拿到最高质量的作品。


但同样,NFT 玩家们的低警惕性给了骗子们可乘之机。当藏家进入诈骗网站后,资产便又会不翼而飞。


为什么骗子们在近期将目标转移到了 NFT 玩家身上了呢?


第一个原因便是上文中屡屡谈及的警惕性的问题,由于此前在 NFT 领域中没有发生过类似的事件,因此人们想不到会有这样的骗术;


第二个原因是如今高价值、高流动性的 NFT 越来愈多,从 CryptoPunks 到 Bored Ape、Cool Cats,再到一件件知名加密艺术家的作品,它们往往有着极高的价值,同时也有着较强的流动性,更关键的是大多数知名项目都会有机器人海量挂单,确保随时都可以套现,这在提高了流动性的同时也为骗子降低了套现难度;


第三个原因是买得起大量高价值资产的用户往往是「不差钱」的,骗子在将他们的 NFT 套现后也许还能从钱包中拿到更多的「惊喜」。


如今,在 NFT 领域中频繁交易的人们也需要时刻保持警惕,我们需要注意些什么呢?


First, don't click on any suspicious links, which is the most common way people get scammed; Secondly, take good care of the private key, mnemonic, do not share their own computer screen, do the most basic security protection measures; No one knows if it's a gift bag or a cannonball, so we need to stay as far away from them as possible, no matter what chain, erC-20 token or NFT they are.  



律动 BlockBeats 提醒,根据银保监会等五部门于 2018 年 8 月发布《关于防范以「虚拟货币」「区块链」名义进行非法集资的风险提示》的文件,请广大公众理性看待区块链,不要盲目相信天花乱坠的承诺,树立正确的货币观念和投资理念,切实提高风险意识;对发现的违法犯罪线索,可积极向有关部门举报反映。
NFT
栏目
以太坊上的「二次元」,独一无二的体现
关于作者
赞赏支持
赞赏记录
Related Flash
More
31分钟前
BlockBeats news, On October 24, Tencent Magic core issued a response to the change of its NFT words, said that Tencent Magic Core has been committed to the compliance framework of digital collections business, in the magic core platform digital collections business uses the user's full process real name, content full link review, The transfer of digital products between users is not open, and illegal activities related to virtual currency are firmly resisted. The business logic of phantasmagoric digital Collections is completely different from the internal logic and extension of overseas unregulated NFT business, so the name change is once again to express to the public the high standards and strict requirements of the compliance of phantasmagoric digital collections. In the future, Magic Core will continue to empower digital cultural creation and digital art together with Zhixinlian, actively explore the new ecology of digital economy, and launch more digital collections that everyone likes to see.
51分钟前
Law BlockBeats news, October 24, China Fund News published "Wall Street's first Bitcoin ETF crazy!" "Driven by money and optimism, bitcoin's price surge provides plenty of reasons for retail investors to buy the ETF: the threshold is low, it is easy to buy, and the underlying asset is still on the rise, but professionals advise retail investors not to buy easily," the article said. China Fund News noted that the existing ETFs invest in bitcoin futures traded on the CME futures market, with nearly 45 percent of their exposure in the November futures contract. If the fund maintains this pace of inflows, it will have no futures to buy at the end of the month because of position limits. If that happens, the net value of the fund will have a considerable tracking error with the price of bitcoin. Once the market turns and there is a mass exodus of money from virtual currencies, bitcoin ETFs are likely to see similarly rapid declines, leaving retail investors who are less knowledgeable about the market with significant losses. Etfs do not make risky assets safer; Retail investors are not advised to buy ETFs or futures without understanding their complex product structures.
1小时前
ProShares has applied to the Chicago Mercantile Exchange (CME) for an exemption from bitcoin futures ETF position limits, according to CoinDesk on Oct. 25. Michael Sapir, CEO of ProShares, said ProShares could convert assets into forward contracts, structured notes or swaps if CME does not exempt them. Prior to the move, Bloomberg pointed out that ProShares may hit the maximum position size limit for a monthly contract and the maximum position number limit for 5,000 contracts.
1小时前
BlockBeats news, Ant chain will sell "Purple forbidden - coloured glaze Glory" series OF NFT collection at 12 o 'clock on October 25th, this series of NFT includes "Purple forbidden door", "coloured glaze wall", "snow fall Purple Forbidden", "advancing with The Times" four limited edition NFT, Inspired by the culture of the Forbidden City, the collection is limited to 8,000 copies.