Recently, a bunch of Discord servers have been the target of hacking attacks. We have compiled a list of countermeasures and how azitors can take precautions to prevent spreading of damage.
What if the admin’s account has hacked
Other accounts can be banned or kicked out. And it makes the server unable to be run.
Post fake announcements like it’s by admin and lead to scam websites.
Even if server members’ (not admin) case, the hacked account is able to send DM to other member’s account and share scam websites.
In scam websites, users can be urged to send tokens or connect wallet to them, and funds can be drained. Also, posting on other servers that the hacked account participates in is possible.
We do not touch the admin’s account on the discord server
AZITO team members are required to set two factor authentication.
We review roles again
Channels and roles are able to be managed only by accounts that have “community-manager” role.
Account holders with “community-manager” roles (or more enhanced roles) have to take security literacy training.
Also, AZITO members’ accounts other than these roles are able to delete posts that suspected as fraud.
For when the discord server is under hackers’ control, we prepare procedure for contacting in case of emergency.
- Create “Emergency” channel on Slack and enable to communicate there.
AZITO discord server limits users’ posts that include links and files.
Be careful and act properly when you encounter such cases;
Especially, in fake websites, they often urge you to bind your wallet without enough investigation.