🌎 Post

Posted by SHED 2 months ago on SHEDs wall | 4 comments
remember when a scammer became a mod in voxel discord through "social engineering? i was wondering who gave them a mod role


not sure how that went down, seem to remember though
The scammer "gave themselves" the mod role by overtaking a mod account with social engineering + JS malware injection in a bookmark, posing as someone in DMs who had a coding question about their project
Once the malware is bookmarked in the local browser, the script grabs that person's Discord credentials cookie from the browser, and then sends the information back
Then the scammer ran more bots to change roles and channels within 2 minutes, and made what looked like official posts within the next 3 minutes, while we worked to triangulate the issue

Sign in to comment, yo!

About | Tips | Formatting | Ops | Report | Carbon | Swag