OpenSea was hit by a massive data leak, what happened?

This is problematic information, to say the least, which OpenSea would have done well without. This Thursday, the NFT marketplace informed its users that it had been the target of a data breach. And that’s no small feat, because as the platform explains, anyone who has an OpenSea account or subscribes to the newsletter has reason to believe that their email address is affected.

OpenSea asks its users to be vigilant

There is good news though, as it appears that OpenSea customers’ passwords and other personal information were not affected. The service explains that an employee of its e-mail provider, Customer.io, allegedly downloaded and shared these e-mails with an unknown third party.

While waiting to shed light on this matter, OpenSea, through its security manager, Cory Hardman, advises its users: Please remain vigilant about your email practices and be alert to any attempts to impersonate OpenSea via email. ».

This data leak falls badly enough for OpenSea. Last February, a huge phishing campaign allowed hackers to steal the equivalent of $1.7 million in NFTs from dozens of large accounts. 32 accounts had been hacked, including some very famous ones such as Bored Ape Yacht Club and Azuki.

In shock, the CEO and founder of the marketplace, David Finzer, then explained: “ We believe with a high degree of confidence that this is a phishing attack. We don’t know where the phishing took place, but we were able to rule out many other hypotheses based on the conversations we had with the 32 affected users. ».

This question is particularly sensitive for OpenSea because the platform, which sees a large number of transactions pass through, must be particularly exemplary in terms of cybersecurity.

LEAVE A REPLY

Please enter your comment!
Please enter your name here