Quixotic NFT Marketplace Attack; Was the Platform Hacked?
Quixotic announced that they were attacked on the NFT marketplace. In the statement made by the platform, it was announced that the contract was compromised by hackers. In a post on Twitter, it was stated that the hacker stole ERC-20 tokens from the platform.
A detailed statement from the Quixotic NFT Marketplace has not yet been recorded. However, the platform assures its users that NFTs are safe and unaffected.
In addition, Quixotic stated that they will return all stolen ERC-20 tokens. After this attack, Quixotic decided to stop all activities on the NFT platform for a while. The Quixotic platform informed its users with posts on twitter. It was also added that users do not need to take any action. It was stated that the contract affected by hackers was permanently paused.
While it was stated that the refund of the tokens lost by the users who were attacked by hackers will be made within a few days, it was noted that the attack was possible through the offer features.
The Quixotic NFT marketplace is known for having a feature where users can make offers on NFTs. While hackers distribute a contract that bypasses some Quixotic smart contract logic; this distributed contract is lost by defeating the logic of the system through the offer feature. This makes it possible to capture all NFTs that have been bid.
The Quixotic NFT marketplace has stated that active bids should be canceled immediately. This will help system developers restore order. It will also prevent hackers from gaining further advantages.
More importantly, the attackers' wallet addresses will be identified. However, at the time of the report, no one was found responsible for this attack as all the funds at the address had been transferred. The value of this stolen token is estimated to be over $100,000.
NFT Attacks on the Rise
Every time there is an attack on the NFT domain, the NFT domain records a large loss. At the beginning of the year, a bug was exploited and OpenSea users lost $1 million worth of NFTs. Elliptic (a London-based blockchain analytics provider founded in 2013) was able to identify the five people who benefited from the attack after the fact. At the time, a loophole in OpenSea's code was recognized and exploited. They were then able to drive down prices and buy NFTs at much lower prices, fluctuating the value of the market. Among the victims was the Bored Ape Yacht Club. According to Elliptic, other victims were Cyberkongz NFTs and Cool Cats NFTs.
Source:NFXnews