The popular play-to-earn NFT game Axie Infinity had its MEE6 bot hacked on its Discord server earlier on Wednesday.
MEE6 is a well-known Discord bot that is mostly used to automate roles and messages. Several crypto projects use it. The attackers used the hacked bot to give permissions to a fake Jiho account and then sent out a fake notification about a mint.
1/ There was a compromise of the Mee6 bot which was installed on the main Axie server. The attackers used that bot to add permissions to a fake Jiho account, which then posted a fake announcement about a mint.
— Axie Infinity(@AxieInfinity) May 18, 2022
The engineers were able to get rid of the fake messages and remove the hacked MEE6 bot from the main server. But the official Twitter account for the project said that many users would still see the fake message until they restarted Discord.
The developers also said that the MEE6 compromise is not new and that many projects have had problems like this before. But the official MEE6 Discord support channel said that they had checked with their engineers and found nothing strange.
Many people think that the hackers first took over the admin accounts and then used MEE6 to get into the other admin account. This let them send webbook messages while hiding the fact that the administrator account had been taken over.
Less than a month before the Discord bot hack, one of the biggest heists happened on Axie Infinity’s Ronin bridge, where more than $600 million worth of crypto assets were stolen. A recent string of security holes has shaken the community’s faith in the game, which was once seen as a game-changing initiative.
Leave this field empty if you're human:
