Pocket Universe Warns of NFT Theft by Hackers Exploiting Blur Signature Vulnerability

Pocket Universe Warns of NFT Theft by Hackers Exploiting Blur Signature Vulnerability

It is reported that the Web3 security company Pocket Universe issued a warning on social media that hackers may steal NFT by using the Blur signature vulnerability. This scam will use the forged signature request to exhaust the NFT of users’ wallets. Its operation mode is to induce the victim to sign a transaction of “selling NFT in bulk at 0 ETH price”. However, there is always a message in the Blur batch list that is unreadable, As a result, users do not know what they are signing and the message cannot be translated, which will make it easier for hackers to gain access and make it more difficult to identify malicious requests from hackers. Pocket Universe said that it has provided a security solution, that is, to mark transactions that are not from the official Blur website. However, in the first cases, hackers have been found to have stolen 5 ETHs in a signed transaction.

Security companies: hackers or use Blur signature vulnerabilities to steal NFT

Analysis based on this information:


Recently, the Web3 security company Pocket Universe has issued a warning on social media that hackers may steal non-fungible tokens (NFTs) by exploiting the Blur signature vulnerability. According to the company’s report, this scam will use the forged signature request to exhaust the NFTs of users’ wallets. The operation mode of this scam is to induce the victim to sign a transaction of “selling NFT in bulk at 0 ETH price.” However, the Blur batch list always contains an unreadable message, which makes it difficult for users to know what they are signing, and the message cannot be translated. This makes it easier for hackers to gain access and makes it more difficult to identify malicious requests from hackers.

The report warns that users need to be cautious when signing transactions and that Pocket Universe has provided a security solution by marking transactions that are not from the official Blur website. However, in the first cases, hackers have already been able to steal 5 ETHs in a signed transaction. This is a serious issue as NFTs, which are unique digital assets, have become increasingly popular and valuable. Once stolen, it is difficult to recover the NFTs or the assets they represent, as they are stored on immutable blockchain networks.

It is important to note that the vulnerability lies with the Blur signature request, not the NFTs themselves. This means that if the issue is not addressed promptly, it could have negative effects on the entire blockchain ecosystem. If users lose confidence in the security of NFTs, it may lead to a decrease in demand and a loss of value for NFTs.

In conclusion, the Pocket Universe’s warning is a reminder of the need to be vigilant when dealing with digital assets such as NFTs on blockchain networks. Users should pay close attention to the transactions they sign and only use reputable websites and platforms for their transactions. The blockchain community should also work together to identify and address vulnerabilities in the system to ensure the security and reliability of digital assets.

This article and pictures are from the Internet and do not represent Fpips's position. If you infringe, please contact us to delete:https://www.fpips.com/7139/

It is strongly recommended that you study, review, analyze and verify the content independently, use the relevant data and content carefully, and bear all risks arising therefrom.