18 / I got hacked now what?

In episode 18, we talk about what to do if you get hacked. We also share tips on how to create a smart contract, review NFT platforms and dive into the topic of incident response. Join us as we discuss the most damage possible with one malicious Ethereum transaction and how to prepare for possible attacks.

Timeline

00:00 Intro

00:49 Preparing for NFT Tallinn

00:57 Blog post: Ethics in buying NFTs

01:23 The first NFT I bought

02:23 How to find the spec for writing your own NFT smart contract

04:33 The easy way to make NFTs

05:17 Reviewing NFT platforms

08:00 The fake Azuki airdrop

09:31 Why people using MetaMask keep getting hacked

10:30 Getting hacked with a bad transaction

12:20 How much damage is possible with one malicious TX?

16:11 How they can do a batch attack

17:16 The most damage possible

17:41 But will people really do that?

18:21 The most damage in one message

20:08 Something weights 100 lbs

Participants

Episode notes

Edit these notes…

First NFT, thank you https://twitter.com/VjDeliria
Blog post: ethics statement for buying NFTs https://blog.phor.net/ethics-statement-buying-nfts
How to create a smart contract
- Pick a platform https://drive.google.com/drive/u/0/folders/1Zqz4cYMCObgOTY3W4qLeO1npQpptG2zC
- https://drive.google.com/drive/u/0/folders/1PASBnEAjBL2igZjfGuzUtDm7QC-m8ngh
Azuki fake drop / What is the most damage you can do with ONE malicious Ethereum transaction?
- Targeted to customers of Azuki
- Took over Azuki account / fake Tweet to scam website
- TX https://etherscan.io/tx/0x1e505cf5d4fbecaf106a4cc2821166d6f4d9c1d8df3926b4ed689adf2f2bdde2
- Stole Origins NFT from wallet (3 ETH!) / Transferred out NFTs to hardware wallet
Looking at the MetaMask window, could I have prevented this?
If approve ONE transaction, what is the most damage someone can do?
Incident response: things you can do to check if you are safe after an attack