How a Fake Job on LinkedIn Helped Hackers Steal $625 Million from Axie Infinity
Details of the hacking of the blockchain at the heart of Axie Infinity, which led to the theft of $625 million worth of cryptocurrencies, have become known. It turned out that it was all the fault of the carelessness of one employee who responded to a fake vacancy.
According to sources of The Block, a few months ago, several people under the guise of representatives of a shell company began sending out job offers to Sky Mavis employees via LinkedIn.
A senior developer of Axie Infinity responded to one of these fake vacancies. He passed several “interviews”, after which he was offered a job with an extremely attractive salary. The employee received the offer in the form of a PDF document, which he downloaded to his work computer.
As it turned out, the file contained a spyware program that allowed attackers to gain access to the Ronin network — the blockchain on which the economy of the game works.
Earlier, Sky Mavis itself stated that the leak became possible as a result of hacking the data of one of the employees. After the hacker attack, the company fired this person.