Azuki Twitter Account Hacked, Attacker Drains Over $750K in 30 Minutes

Kate Irwin
Kate Irwin January 28, 2023
Updated 2023/01/28 at 10:48 AM
3 Min Read

An abrupt hostile takeover of the gold-checked Azuki Twitter account led to some users falling for yet another wallet-draining scam on Friday.

In less than 30 minutes, over $750,000 worth of USDC, 11 NFTs, and over 3.9 ETH were stolen through malicious links feigning as a “land mint” for the popular Azuki NFT project. The mint was fake, however, and the link instead sent unsuspecting users to a “drainer” contract that duped them into signing a transaction that swiped assets from their wallets.

A single user seemingly inadvertently sent over $750,000 worth of stablecoin USDC to the attacker’s wallet, per Etherscan data provided by Web3 security firm WalletGuard.

Many NFT traders quickly realized that the suspicious Azuki tweets, which referred to the fake “surprise mint,” meant the account had been compromised. Within the hour, the official Azuki Twitter account appeared to have been removed from Twitter search results, and the malicious tweets were deleted.

Azuki Community Manager Rose quickly confirmed that the Azuki account had been compromised.

MetaMask Security Research Harry Denley noticed the scam almost immediately and said that MetaMask has since blocked the malicious domain.

The Phantom wallet team has also marked the malicious domains as unsafe, alerting users who attempt to connect their Phantom wallets to the sites.

An hour after the account was compromised, Azuki Head of Community and Product Manager Dem said in a Twitter Space that the Azuki team is in touch with Twitter and is trying to regain control of the account.

“We’re on top of the situation,” he said.

This isn’t the first time that the NFT collection has been targeted by scammers. In April 2022, a deluge of compromised verified Twitter accounts with Azuki profile pictures promoted airdrop scams in an effort to capitalize off the anime-inspired brand. And earlier this week, the Twitter account of trading platform Robinhood was similarly hacked to promote a crypto scam, though the hackers in this instance were only able to make away with roughly $8,000 in crypto.


Stay on top of crypto news, get daily updates in your inbox.

This article was first published on
Share this Article