Threat List

A compilation of the various ways/methods a malicious figure may attempt to use against you or your team.

Mass DM Phishing Link

Probably the most common attack, users will use bot accounts to send out their phishing links in bulk. This is mostly done before/at/during the mint of a NFT collection.

Fake Verification Bot W/ QR Code

If any of the bots in a Discord server ask you to scan a QR code, do not scan that dang code! Replicas of the popular Captcha.Bot and other services are floating around that upon you scanning the QR code, logs your Discord account token to the hacker's server.

Link Spoofing

Spoofing links to abuse weakpoints in certain platforms (e.g. Twitter) is nothing new. By using unicode characters or characters from other languages, people are able to make a link appear as something it is not.

For example:premintlooks like premınt, though the i in this case is actually the Turkish letter. This can be very easy to overlook if you are not staying vigilant.